Table of Contents
Advertisement
Monitoring IDP Cluster Members
Using the Realtime Monitor
Monitoring the Management System
Copyright © 2010, Juniper Networks, Inc.
Click any IDP cluster to view details of each member in the cluster.
Table 77 on page 687 describes all of the information that is available from the IDP Cluster
Member Monitor.
Table 77: IDP Cluster Member Monitor
Item
Description
Name
Name of the device.
Status
State of the device (INIT, OK, or FAIL).
Domain
Domain in NSM in which the IDP cluster member is managed.
The following example describes a typical use case for monitoring your security devices,
VPNs, and NSRP clusters in NSM.
In this example, you are a network administrator responsible for monitoring the day-to-day
operation of all the security devices managed in your network. You are using NSM to
manage your network, and Realtime Monitor to monitor the up/down connection status
of all your security devices.
One day, you notice that the Connection Status on a mission-critical security device
indicates that the security device is DOWN. You wait several minutes to see whether the
connection status resolves itself because intermittent network problems might cause a
security device to temporarily indicate as DOWN. The Device Monitor still indicates that
the security device is DOWN.
You next try to ping the security device. If you are successful in reaching the device, you
can send a get status command to check the status of the security device.
If you cannot ping the security device, you need to investigate further. You scan the Log
Viewer for the log entry indicating that the security device has disconnected. You can
filter the log entries in the Log Viewer to display only the log entries generated for the
security device during the time just before it went down. Viewing these log entries will
also provide you with context for events leading to the security device disconnection.
This will help you to determine the cause of the problem.
You notice several very suspicious log entries that indicate that this security device may
have been the target of an attack. You flag the log entries using the predefined flag types
in the Log Viewer, and assign them to your security experts for further investigation.
Use the Server Manager to access, configure, and monitor the NSM management system.
The management system includes a GUI Server and Device Server. Refer to the Network
Chapter 17: Realtime Monitoring
687
Advertisement
Table of Contents
Related Manuals for Juniper NETWORK AND SECURITY MANAGER 2010.3 - ADMINISTRATION GUIDE REV1
Related Products for Juniper NETWORK AND SECURITY MANAGER 2010.3 - ADMINISTRATION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - CONFIGURING INTRUSION DETECTION AND PREVENTION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INTRUSION DETECTION PREVENTION DEVICES GUIDE REV 01
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - API GUIDE REV 1
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - M-SERIES AND MX-SERIES DEVICES GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.2 - ADMINISTRATION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING J SERIES SERVICES ROUTERS AND SRX SERIES SERVICES GATEWAYS GUIDE REV
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - ADMININISTRATION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - NSMXPRESS SERIES II REV 1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - M-SERIES AND MX-SERIES DEVICES GUIDE REV 1
- Juniper NETWORK AND SECURITY MANAGER 2010.2
- Juniper MEDIA FLOW MANAGER 2.0.2 - ADMINISTRATOR S GUIDE AND CLI
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - CATEGORY OFFENSE INVESTIGATION GUIDE REV 1
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 R2 - LOG MANAGEMENT ADMINISTRATION GUIDE REV 1
- Juniper MEDIA FLOW CONTROLLER 2.0.5
- Juniper 200 Series
Need help?
Do you have a question about the NETWORK AND SECURITY MANAGER 2010.3 - ADMINISTRATION GUIDE REV1 and is the answer not in the manual?
Questions and answers