| Table of Contents | ||||||
|---|---|---|---|---|---|---|
|
Purpose
Palo Alto Networks Firewalls Summary Firewall Monitoring Activeboard allows you to auto-discover all installed firewall entities deployed in your network and start collecting operational and threats intelligence from them in a unified view. You can also center the analysis of network threats and alerts on individual network elements, and filter all events related to themanalyze and monitor firewall traffic logs from different angles. In this Activeboard you will be able to:
Get data insights and filter them.
Track the traffic volume and actions.
Have access to Traffic Reputation heatmaps.
Compare the connections.
Get details about the most used Firewall rules.
Analyze denied firewall traffic and most rejected source IPs.
Pre-requisites
To use the Palo Alto Networks Firewalls Summary Firewall Monitoring Activeboard, you must have the following data sources available on your domain:
firewall.paloaltoall.trafficlearn morefirewall.paloalto.threatlearn morefirewall.paloalto.systemlearn more
Open Firewall Monitoring
Once you have installed the application, you can access the Activeboard in the following ways:
Go to Exchange in the navigation pane and look for the Activeboard you want to open. Click Open.
Go to Activeboards in the navigation paneand use the filter to open the Activeboard you downloaded.
| Info |
|---|
Refer to Manage and filter Activeboards article to know how to work with Activeboards. |
Exploring the Activeboard
When opening the Palo Alto Network Firewalls Summary Activeboard, the following info displays:
| Rw ui expands macro | ||||||
|---|---|---|---|---|---|---|
|
Active Firewalls
6
Source IP Input
7
|
Potential Threats Detected
3
Critical System Events
4
Admin Login Attempts
5
Destination IP Input
|
|
9
|
|
|