martinstenner ✭✭✭✭✭

I understand that NTA supports Netflow v9 without any configuration. I may need correction here as we're not using v9. All you should need to do is make sure that the device you're configuring is exporting using the correct netflow version, e.g. for Cisco: ip flow-export source <interface> ip flow-export version 9 ip…

Down/down being when the interface is physically down as opposed to administratively down? To get alert when interface down, ensure device and interface in question being monitored and then create an alert with the following trigger condition: Trigger Alert when all of the following apply interface status is equal to Down…

Not much to go on. I presume you've done some basic troubleshooting (ping etc.) from your NPM server to make sure this isn't genuine? If monitoring by SNMP? Have you confirmed credentials are correct? Are there any known bugs relating to SNMP polling for the version of Checkpoint OS you're running?

I've achieved this in the past by monitoring for syslog messages (using the Solarwinds Syslog Viewer) which contain the relevant message text. An action is then set to fire an email alert containing the original syslog message.

Happy to check over your alert if you can post a screenshot of each tab.

We run NPM, NTA and NCM together on a Hyper-V platform. I believe the product implementation guides have advice on system requirements. I would say that it's worth designating an independent network adapter to the VM however.

First check that everything is OK on the server: RDP to your Solarwinds NPM server and open 'Orion Service Manager'. Check all your services are Running/Started.

It's possible to do this if you're running Engineer's Toolset (separately licensed product) via the integration component, but not natively in NPM. In any case, I've found some issues with this working properly under Windows 8.

As Terry Auspitz mentioned, deselect the alerts you want disabled (they should then become greyed out). Short of deleting a particular alert there's no way of filtering them in the display.

There may be some SQL wizardry that will achieve what you want, but I think you've hit the same problem as me. Short of defining an alert for every single site, I can't see a way round this currently. In an ideal world, I'd like to be able to assign a custom property like 'NodeDependency' to each node, which would detail…

I'm not aware of a way of doing this natively. You could either change the warning and critical alerting thresholds for a particular interface and base an alert on this, or simply specify an alert that fires when the interface transmit/receive goes over a particular % usage.

Just to confirm you have the necessary configuration on the ASA for flow-export destination, template, class and policy-maps? In NTA, you have selected the interfaces you want to receive netflow for? Netflow Sources->Manage Sources

It's subjective. What information have you been asked to include? Is it overall health of the network or is more specific information required? For example: by device type, vendor, region/country, node-level or interface-level? What period of time do you need to report for? Should your report include any data relating to…

Carlton, You won't be able to do this with NPM alone. You'll need NCM (Network Configuration Manager) which is separately licensed. NCM will integrate with NPM. You can sign up for a trial here: Download a FREE Trial of Network Configuration Manager (NCM) from SolarWinds

Depends what polling method you're using. If SNMP you'll need to make sure you're using the correct SNMP community strings (as configured on the server) when adding the node. If WMI a domain account with sufficient privileges. Preferably a service account. Make sure WMI and SNMP are allowed through the firewall on the…

Have you cleared the events for the time period you're reporting on? If so click 'Show Cleared Events' tick box and try again. Failing that, do you get any results if you change the Event Type to 'All events'?

No direct Check Point experience, but if the device has a console you can log into via Telnet or SSH you should be able to get this set up in NCM. Are you currently backing up any other Check Point devices? If so, you may already have a suitable template to apply to the device, if not you may need to create yourself a…