On Fri, 29 May 2020 00:36:10 +0100 Edgar Matias edgar.matias@fccn.pt wrote:
Regarding standard mibs, Paloalto only has a few things available. In the case of MIB-II, is only available: System and Interfaces.
For ipAddrTable in fact I was tested different mibs and nothing was returned.
I believe that for now we have to live with this.
Sounds like Palo Alto's SNMP imeplementation is severely lacking. Does Palo Alto devices support other means of management, such as NETCONF or RESTCONF?
By the way, is there any way to do "acknowledge" an WatchDog warnig? Becouse paloalto firewall does not count switchport or routerport, I have these alerts permanently.
Unfortunately, no. WatchDog warnings were never designed to be part of NAV's alert system, they are basically just internal "health" checks to ensure NAV is operating properly.
One of those checks is to verify that devices registered as GW/GSW have at least one router port, and that devices registered as SW/GSW have at least one switch port. Typically, such a warning might signal something is wrong with either the classification of or collection from that device.
In your case, the problem is with the device itself, and if that cannot be corrected your best option might be to reclassify the device as e.g. "OTHER".
I take the opportunity to ask another question. There is some possibility of generate alerts for switchports in err-disable on network devices?
Not sure I follow you there. What is "err-disable"?