Monitoring and Logging Flashcards

1
Q

The VM-Series firewall on AWS can publish native PAN-OS metrics, which you can use to monitor the firewalls to what logging system?

A

AWS CloudWatch

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What do the logs in AWS Cloud Watch allow admins to do?

A

assess performance and usage patterns that can be used to take action for launching or terminating instances of the VM-Series firewalls

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

The firewalls use AWS APIs to publish the metric to a?

A

namespace

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is a namespace in AWS (CloudWatch)?

A

location on AWS where the metrics are collected at a specified time interval

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

When you configure the firewalls to publish metrics to AWS CloudWatch, there are two namespaces where you can view metrics. What are they?

A
  1. primary namespace
  2. secondary namespace
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What does the primary namespace do?

A

collects and aggregates the selected metric for all instances configured to use the namespace

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is the purpose of the secondary namespace?

A

allows to filter the metrics using the hostname and AWS instance ID metadata (or dimensions) and get visibility into the usage and performance of individual VM-Series firewalls

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

How is the secondary namespace created and with what suffix?

A

automatically with the suffix _dimensions

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What needs to be done on the firewall to be able to send logs to CloudWatch?

A

go to Device > VM-Series and enable CloudWatch montoring, specify the namespace and update interval in minutes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What is the Update Interval in the AWS CloudWatch configuration on a firewall?

A

frequency at which the firewall publishes the metrics to CloudWatch

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What is the min and max interval for firewall to publish logs to CloudWatch?

A

min 1, max 60

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What is the name of the service similar to AWS CloudWatch in Azure and GCP?

A
  • Azure = Application Insights
  • Google = Stackdriver
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What do the published metrics in CloudWatch allow admins to do?

A

assess firewall performance and usage patterns so that you can set alarms and take action to automate events such as launching or terminating instances of the VM-Series firewalls

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

How are the metrics published to firewalls?

A

through content updates; make sure that you have the minimum content release version that is required to enable this capability on your VM-Series firewall

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

In terms of data plane utilization, what metrics are available for monitoring?

A
  • Dataplane CPU Utilization (%)
  • Dataplane Packet Buffer Utilization (%)
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

In terms of GlobalProtect utilization, what metrics are available for monitoring?

A
  • GlobalProtect™ Gateway Active Tunnels
  • GlobalProtect Gateway Tunnel Utilization (%)
17
Q

In terms of session utilization, what metrics are available to monitor?

A
  • panSessionConnectionsPerSecond
  • panSessionThroughputKbps
  • panSessionThroughputPps
  • Sessions Active
  • Session Utilization (%)
18
Q
A