Question: Where does Orion get ARP from?

Question

In our networks, we have some subnets that hang off the core switch, and Orion has no issue with resolving MAC addresses to IP addresses for these networks. But, we also have a fair number of subnets which are behind PaloAlto Firewalls. Unfortunately, ARP is not resolving for those subnets. Our PAN-FW are configured in Orion to Poll for PaloAlto, and the enable CLI polling; the credentials test successfully.

When using UDT, UDT successfully obtains MAC addresses for interfaces on the switches. For the subnets which are not behind firewalls, Orion UDT resolves the MAC to IP without issue. For the subnets that are behind firewalls, ARP is not working. I would expect the Orion could obtain ARP results from the PAN-FWs, but I don't know how to tell Orion where to look for ARP resolution.

Does anyone know how to tell Orion to look to the PAN-FW, as an additional resource for resolving MAC to IP?

Thanks!

ebradford · Answer

mesverrum · Answer

I don't believe its in the database, built into the application code somewhere.  Might be risky to open it up and try making changes, but that's what test environments are for right 
?

ebradford · Answer

Thanks mesverrum​. I searched the DB information schema for 'master' and 'list'. I didn't find anything that seemed applicable. Is there any more information you can provide? Such as, what is the masterlist, where/how is it stored, how is it accessed/modified?