HP Value Series (19xx) and HP 3Com (29xx) Switch
What is Discovered and Monitored
Protocol |
Information Discovered |
Metrics collected |
Used for |
---|---|---|---|
SNMP (V1, V2c) |
Host name, software version, Hardware model, Network interfaces, |
Uptime, CPU and Memory utilization, Network Interface metrics (utilization, bytes sent and received, packets sent and received, errors, discards and queue lengths) |
Availability and Performance Monitoring |
SSH |
Configuration |
Change management |
Event Types
- CPU Monitoring: PH_DEV_MON_SYS_CPU_UTIL
- Memory Monitoring: PH_DEV_MON_SYS_MEM_UTIL
- Interface Utilization: PH_DEV_MON_NET_INTF_UTIL
- Configuration Change: PH_DEV_MON_CHANGE_STARTUP_CONFIG
Rules
Availability
- Network Device Degraded - Lossy Ping Response
- Network Device Down - no ping response
- Network Device Interface Flapping
- Critical Network Device Interface Staying Down
- Non-critical Network Device Interface Staying Down
Performance (Fixed threshold)
- Network CPU Warning
- Network CPU Critical
- Network Memory Warning
- Network Memory Critical
- Network Intf Error Warning
- Network Intf Error Critical
- Network Intf Util Warning
- Network Intf Util Critical
Performance (Dynamic threshold based on baselines)
- Sudden Increase In System CPU Usage
- Sudden Increase in System Memory Usage
- Sudden Increase in Network Interface Traffic
- Sudden Increase in Network Interface Errors
Change
- Startup Config Change
Reports
Availability
- Availability: Router/Switch Ping Monitor Statistics
Performance
- Performance: Top Routers Ranked By CPU Utilization
- Performance: Top Routers By Memory Utilization
- Performance: Top Router Network Intf By Util, Error, Discards
- Top Routers/Switches by Business Hours Network Ping Uptime Pct (Achieved Network Ping SLA)
- Top Routers/Switches by Business Hours System Uptime Pct (Achieved System SLA)
- Top Routers/Switches by Network Ping Uptime Pct (Achieved Network Ping SLA)
- Top Routers/Switches by System Uptime Pct (Achieved System SLA)
- Top Router Interfaces by Days-since-last-use
Change
- Change: Router Config Changes Detected Via Login
Configuration
SNMP
FortiSIEM uses SNMP to discover and monitor this device. Make sure SNMP is enabled for the device as directed in its product documentation. For more information, refer to sections "Discovery Settings" and "Setting Credentials" in the User Guide.
Settings for Access Credentials
Set these Access Method Definition values to allow FortiSIEM to communicate with your device.
Setting | Value |
---|---|
Name | <set name> |
Device Type | HP VSeries |
Access Protocol | See Access Credentials |
Port | See Access Credentials |
Password config | See Password Configuration |