The template to monitor Palo Alto Networks NGFW PAN-OS by Zabbix using SNMP v2c. For Zabbix version: 5.2 and higher. It may work with older versions, but was not tested. In case of errors at older Zabbix versions please choose "Zabbix_old" branch.
This template was tested on:
- PAN-OS, version 9.1
- PAN-OS, version 10.0
- PAN-OS, version 10.1
- PAN-OS, version 10.2
See Zabbix templates importing for basic instructions on how to import a template.
Create a NGFW host and link this template to it.
- Set/change the SNMP community in the host SNMP settings to match your community string. See CONFIGURING SNMP MONITORING
- Set SNMP community on the NGFW and commit. See [Enable SNMP Monitoring] (https://docs.paloaltonetworks.com/pan-os/10-0/pan-os-web-interface-help/device/device-setup-operations/enable-snmp-monitoring.html)
Linked to Template Module Interfaces SNMPv2
| Name | Description | Type | Key and additional info |
|---|---|---|---|
| FAN Discovery | Discovery for fans |
SNMP agent | entPhysicalDescr[FAN] Filter: {#SNMPVALUE} MATCHES_REGEX |
| TEMPERATURE Discovery | Discovery of temperature sensors |
SNMP agent | entPhysicalDescr[TEMPERATURE] Filter: {#SNMPVALUE} MATCHES_REGEX |
| Name | Description |
|---|---|
| App-ID content date | Currently installed application definition release date. If no release date is found, unknown is returned. |
| App-ID Version | Currently installed application definition version. If no application definition is found, 0 is returned. |
| Chassis type | Chassis type for this Palo Alto device. |
| Global Protect Client Version | Currently installed global-protect client package version. If package is not installed, 0.0.0 is returned. |
| GP active tunnels | Number of active tunnels. |
| GP gateway utilization | GlobalProtect Gateway utilization percentage. |
| GP tunnels supported | Max tunnels allowed. |
| HA Mode | Current high-availability mode (disabled, active-passive, or active-active). |
| HA Peer State | Current peer high-availability state. |
| HA State | Current high-availability state. |
| HW Version | Hardware version of the unit. |
| ICMP Check | Ping to device. |
| PAN-OS Version | Full software version. The first two components of the full version are the major and minor versions. The third component indicates the maintenance release number. |
| Processor 1 Load (mgmt) | The average, over the last minute, of the percentage of time that this processor was not idle. Implementations may approximate this one minute smoothing period if necessary. |
| Processor 2 Load (data) | The average, over the last minute, of the percentage of time that this processor was not idle. Implementations may approximate this one minute smoothing period if necessary. |
| Serial Number | The serial number of the unit. If not available, an empty string is returned. |
| Session table utilization | Session table utilization percentage. Values should be between 0 and 100. |
| SNMP availability | SNMP availability. |
| System Description | A textual description of the entity. This value should include the full name and version identification of the system's hardware type, software operating-system, and networking software. It is mandatory that this only contain printable ASCII characters. |
| System Name | An administratively-assigned name for this managed node. By convention, this is the node's fully-qualified domain name. |
| System Uptime | The time (in hundredths of a second) since the network management portion of the system was last re-initialized. Preprocessed to seconds. |
| Threat Version | Currently installed threat definition version. If no threat definition is found, 0 is returned. |
| Total active ICMP sessions | Total number of active ICMP sessions. |
| Total active sessions | Total number of active sessions. |
| Total active TCP sessions | Total number of active TCP sessions. |
| Total active UDP sessions | Total number of active UDP sessions. |
| Total supported sessions | Total number of sessions supported. |
| URL Filtering Version | Currently installed URL filtering version. If no URL filtering is installed, 0 is returned. |
Appropriate triggers are associated with the items
Please report any issues with the template here in the "Issues" tab.