In our latest release of User Device Tracker (UDT), you'll discover new port discovery and polling support for Cisco Nexus switching equipment. You'll also see UDT make a cameo appearance in our Network Insight™ for Palo Alto firewalls, with new visibility for devices connected to these firewalls. We'll show you where it integrates today into NPM.
Speaking of discovery, we've completely reworked the port discovery process to be very similar to node discovery. We'll show you what it looks like, and how to configure credentials for these new device types.
Finally, we'll talk briefly about some Orion® Platform enhancements, and improvements to the SDK we've recently published for working with ports.
Discovering and Importing Ports
In this release, we're adding some significant granularity in the Discovery and Import process for ports. The experience and the workflow is similar to the NPM node discovery, with granular selection criteria and port-filtering options:
It's simple to exclude operationally or administratively down ports from the import. This flexibility saves overhead and simplifies licensing by offering better, granular control.
Configuring Access for UDT
For most devices supported by UDT, all that's necessary are the SNMP credentials. For some devices—the Cisco Nexus 5K, 7K, and 9K series switches, or for the Palo Alto Firewall—a set of command-line interface (CLI) credentials are required.
You can configure devices in bulk or individually in the Port Management section of the User Device Tracker settings page. Select "Manage Ports" to see the list of devices which can be configured:
Select one or more of these devices, edit their properties, and you'll find a section for configuring SNMP polling:
You'll also find a section for CLI-based polling:
The polling interval is set in its own section of the UDT Settings page, under "Polling Interval." The default polling interval for port information is 30 minutes.
Once you’ve enabled UDT Layer-3 polling for a CLI-based device, you can expect to see port information populated in the Port Details resource on the Node Details page.
UDT SDK Updates
This release adds some basic create, read, update, and delete operations for UDT ports into the Orion SDK. Refer to the documentation available in GitHub for examples.
Along with all of the other modules in the Orion Platform, UDT can be installed now in Azure, and make use of the native Azure SQL database service to host the Orion database. This adds additional deployment flexibility—we already support deployment in AWS using the RDS service.
How Do I Get This Goodness?
To see all the features of Network Insight for Palo Alto, you’ll want to have several modules installed and working together.
- Network Performance Monitor discovers and polls your Palo Alto firewall and retrieves and displays your site-to-site VPN and GlobalProtect client VPN connection information.
- Network Configuration Manager collects your device configuration and provides a list of your security policies for zone-to-zone communication. This module tracks configuration changes over time and provides context for policies spanning multiple devices.
- NetFlow Traffic Analyzer collects flow data from the firewall and maps the traffic to policies in the Policy Details page. You can also view traffic through the firewall or through specific interfaces.
- User Device Tracker collects directly connected devices and provides a history of connections to the ports on the device.
You can demo these products individually or install/upgrade from any installer available in your Customer Portal.
We're looking forward to hearing your feedback and questions on the release in the forum below!