Cisco Firewall
Overview
Cisco Systems Firewall, the powerful and versatile firewall solutions by Cisco Systems, seamlessly integrate with Motadata AIOps to provide comprehensive monitoring and management capabilities. With this integration, organizations gain real-time visibility into the performance and security of their Cisco Systems Firewalls. Monitor critical firewall metrics such as traffic patterns, connection status, and threat activity to ensure a secure and protected network environment.
Prerequisites
Refer Adding network devices for monitoring to understand the prerequisites necessary for monitoring a network device.
List of Supported KPIs
| Metrics | Description | Type |
|---|---|---|
| ping.min.latency.ms | Minimum latency (in milliseconds) observed during ping | Count |
| ping.received.packets | Number of packets received during ping | Count |
| ping.lost.packets | Number of packets lost during ping | Count |
| ping.max.latency.ms | Maximum latency (in milliseconds) observed during ping | Count |
| object.target | Target object identifier | String |
| ping.sent.packets | Number of packets sent during ping | Count |
| ping.packet.lost.percent | Percentage of packet loss during ping | Percent |
| ping.latency.ms | Average latency (in milliseconds) observed during ping | Count |
| system.oid | System Object Identifier | String |
| started.time.sec | Uptime in Seconds for the monitor | Count |
| started.time | Uptime of the monitor | String |
| object.name | Name of the monitor | String |
| system.location | Location of the monitor | String |
| system.description | Description of the monitor | String |
| correlation.metrics | Correlation metrics between network connections | String |
| network.connection.tcp.connections | Number of TCP connections | Count |
| network.connection.udp.connections | Number of UDP connections | Count |
| network.connection.udp.error.segments | Number of UDP error segments | Count |
| network.connection.tcp.error.segments | Number of TCP error segments | Count |
| network.connection.tcp.retransmitted.segments | Number of TCP retransmitted segments | Count |
| destination.ip | Destination IP address | String |
| destination.port | Destination port number | Count |
| network.connection.protocol | Protocol used for network connection | Count |
| network.connection.state | State of the network connection | String |
| source.ip | Source IP address | String |
| source.port | Source port number | Count |
| interface.sent.discard.packets | Number of discarded packets sent on the interface | Count |
| interface.in.packets | Number of incoming packets on the interface | Count |
| interface.packets | Number of packets on the interface | Count |
| interface.error.packets | Number of error packets on the interface | Count |
| interface.sent.error.packets | Number of error packets sent on the interface | Count |
| interface.received.discard.packets | Number of discarded packets received on the interface | Count |
| interface.received.octets | Number of octets received on the interface | Count |
| interface.bit.type | Bit type of the interface | Count |
| status | Status of the interface | String |
| interface.out.packets | Number of outgoing packets on the interface | Count |
| interface.operational.status | Operational status of the interface | String |
| interface.admin.status | Admin status of the interface | Count |
| interface.sent.octets | Number of octets sent on the interface | Count |
| interface.last.change | Last change of the interface | String |
| interface.received.error.packets | Number of error packets received on the interface | Count |
| interface.discard.packets | Number of discarded packets on the interface | Count |
| started.time | Uptime of the interface | String |
| started.time.sec | Uptime in seconds of the interface | String |
| cisco.asa.active.remote.connections.rate | The rate of active remote connections on the Cisco ASA firewall. | Count (Rate) |
| cisco.asa.active.remote.user.sessions.rate | The rate of active remote user sessions on the Cisco ASA firewall. | Count (Rate) |
| cisco.asa.active.remote.group.sessions | The number of active remote group sessions on the Cisco ASA firewall. | Count |
| cisco.asa.remote.in.packets.rate | The rate of incoming packets on the Cisco ASA firewall. | Count (Rate) |
| cisco.asa.remote.out.packets.rate | The rate of outgoing packets on the Cisco ASA firewall. | Count (Rate) |
| cisco.asa.remote.received.dropped.packets | The number of received packets that were dropped on the Cisco ASA firewall. | Count |
| cisco.asa.remote.sent.dropped.packets | The number of sent packets that were dropped on the Cisco ASA firewall. | Count |
| cisco.asa.active.ipsec.sessions | The number of active IPsec sessions on the Cisco ASA firewall. | Count |
| cisco.asa.active.lan.sessions | The number of active LAN sessions on the Cisco ASA firewall. | Count |
| cisco.asa.active.load.balancer.sessions | The number of active load balancer sessions on the Cisco ASA firewall. | Count |
| cisco.asa.active.svc.sessions | The number of active service (SVC) sessions on the Cisco ASA firewall. | Count |
| cisco.asa.active.web.vpn.sessions | The number of active web VPN sessions on the Cisco ASA firewall. | Count |
| tunnel.life.time.sec | The lifetime duration of the tunnel in seconds. | Count |
| tunnel.active.time.sec | The time duration that the tunnel has been active in seconds. | Count |
| tunnel | The identifier or name of the tunnel. | String |
| tunnel.source.ip.address | The source IP address of the tunnel. | String |
| tunnel.out.traffic.bytes.rate | The rate of outgoing traffic in bytes per second through the tunnel. | Count |
| tunnel.in.traffic.bytes.rate | The rate of incoming traffic in bytes per second through the tunnel. | Count |
| tunnel.destination.ip.address | The destination IP address of the tunnel. | String |
| tunnel.name | The name or label assigned to the tunnel. | String |
| tunnel.status | The current status of the tunnel. | String |
| remote.vpn.active.connections | The number of active VPN connections from remote clients. | Count |
| remote.vpn.client.in.traffic.bytes.rate | The incoming traffic rate in bytes per second for VPN clients. | Count |
| remote.vpn.client.out.traffic.bytes.rate | The outgoing traffic rate in bytes per second for VPN clients. | Count |
| remote.vpn.client.protocol | The communication protocol used by the VPN client. | String |
| remote.vpn.client.encryption.algorithm | The encryption algorithm used by the VPN client. | String |
| remote.vpn.client | The identifier or name of the remote VPN client. | String |
| remote.vpn.client.duration.sec | The duration of the VPN client connection in seconds. | Count |
| remote.vpn.client.app.version | The version of the VPN client application. | String |
| remote.vpn.client.duration | The duration of the VPN client connection. | String |
| remote.vpn.client.status | The status of the VPN client connection. | String |
| remote.vpn.user.group | The user group associated with the remote VPN client. | String |
| remote.vpn.client.app | The application name of the remote VPN client. | String |
| ipsla.name | The name of the IP SLA (Service Level Agreement) test. | String |
| ipsla.latency.ms | The latency value in milliseconds for the IP SLA test. | Count |
| ipsla | The identifier or name of the IP SLA configuration. | String |
| ipsla.status | The status of the IP SLA test (e.g., active, inactive). | String |
| ipsla.type | The type or category of the IP SLA test. | String |
| ipsla.availability | The availability status of the IP SLA test. | String |