To monitor the firewalls in this deployment, you can
use Nagios, an open-source server, network, and log monitoring software.
Configure Nagios to periodically verify the response from the portal
and the gateways' pre-login page and send an alert if the response
does not match the expectations. You can also configure GlobalProtect Simple
Network Management Protocol (SNMP) Management Information Base (MIB) objects
to monitor gateway usage.
In this deployment there is only one instance of the GlobalProtect
portal. If the portal becomes unavailable, new users (who have never
connected to the portal before) will not be able to connect to GlobalProtect.
However, existing users can use the cached portal client configuration
to connect to one of the gateways.
Multiple virtual machine (VM) firewalls in AWS configured as
GlobalProtect gateways provide gateway redundancy. Therefore, configuring
gateways as a high availability (HA) pair is not required.