Labels

Monitor Palo Alto with Solarwinds Orion via SNMPv3

It took a while to find the configuration needed to get Solarwinds to be able to monitor Palo Alto firewalls with SNMPv3. So I decided to put it here for easy reference


Palo Alto Configuration:

  • Navigate to the SNMPv3 settings
    • Device -> Setup -> Operations -> Miscellaneous -> SNMP Setup
  • Tick the V3 button
  • Create a view by clicking Add
    • Name: Solarwinds
    • Click Add again
      • view: Solarwinds
      • OID: 1.3.6.1
      • Option: include
      • Mask: 0x80
    • Click OK
  • Add a user by clicking Add
    • users: solarwinds
    • view: Solarwinds
    • Auth Password: enteryourpasswordhere
    • Priv Password: enteranotherpasswordhere
  • Click OK

  • Commit changes
  • Note: Make sure that SNMP is enabled and that the Solarwinds IP address is included in the Permitted IP addresses on the management interface.


Solarwinds Orion Configuration:

  • Navigate to the Add Node screen
    • Settings -> Manage Nodes -> Add Node

  • Fill in the following fields:
    • Enter IP address or hostname 

    • Set SNMP version to SNMPv3
    • SNMPv3 username: solarwinds
    • SNMPv3 Authentication
      • Method: SHA1
      • Password: enteryourpasswordhere
    • SNMPv3 Privacy/Encryption
      • Method: AES128
      • Password: enteranotherpasswordhere
    • Credential Set Library
      • Name: PaloAltoSNMPv3
      • Click Save

  • Leave the Read/Write SNMPv3 Credentials section empty

  • Click test
  • You should get a successful message

Labels:

Comments

Post a Comment

Popular Posts