Home
  •  

Cisco PIX Firewall: Highest number of connections Health Monitor

Jalasoft.Xian.SmartManagementPacks.CiscoPix.HighestConnectionCount.1.1 (AggregateMonitor)

This monitor catches Xian events that notifies when the Highest number of connections has changed its state.

Knowledge Base article:

Summary

The highest number of connections is over/under threshold.

Over threshold: The number of connections is above the maximum threshold configured in Xian Network Manager 2012.

Under threshold: The number of connections is below the minimum threshold configured in Xian Network Manager 2012.

Causes

Over threshold: The number of connections processed is increasing, possibly due to network requirements and may consume large amounts of system resources that the firewall were not available to manage.

Under threshold: The number of processed connections is possibly reflecting real network requirements, or there are no connections with the net.

Resolutions

Over threshold: Make sure you know what solution is your firewall model designed for and the simultaneous connections it supports. If necessary, consider a faster PIX, a VPN Accelerator Card for the PIX, or a dedicated VPN Concentrator.

Under threshold: Make sure you know what solution is your firewall model designed for. If necessary, change model to optimize your network. Review the firewall connections.

Additional

Monitors the highest number of connections in use at only once since system is startup.

Element properties:

TargetJalasoft.Xian.Common.Elements.ThirdParty.Cisco.JsXCiscoPixFirewallSnmpDeviceElement
Parent MonitorSystem.Health.PerformanceState
AlgorithmWorstOf
CategoryStateCollection
EnabledTrue
Alert GenerateTrue
Alert SeverityMatchMonitorHealth
Alert PriorityLow
Alert Auto ResolveTrue
RemotableTrue
AccessibilityPublic
Alert Message
Highest number of connections Alert
{0}

Source Code:

<AggregateMonitor ID="Jalasoft.Xian.SmartManagementPacks.CiscoPix.HighestConnectionCount.1.1" Accessibility="Public" Enabled="true" Target="ThirdParty_Cisco!Jalasoft.Xian.Common.Elements.ThirdParty.Cisco.JsXCiscoPixFirewallSnmpDeviceElement" ParentMonitorID="SystemHealth!System.Health.PerformanceState" Remotable="true" Priority="Normal">

  <Category>StateCollection</Category>

  <AlertSettings AlertMessage="HighestConnectionCount_AlertMessage">

    <AlertOnState>Warning</AlertOnState>

    <AutoResolve>true</AutoResolve>

    <AlertPriority>Low</AlertPriority>

    <AlertSeverity>MatchMonitorHealth</AlertSeverity>

    <AlertParameters>

      <AlertParameter1>$Data/Context/Params/Param[3]$</AlertParameter1>

    </AlertParameters>

  </AlertSettings>

  <Algorithm>WorstOf</Algorithm>

</AggregateMonitor>