List of Attributes Monitored on the AWS VPC
As you provision or modify virtual machines in your AWS VPCs, you have two ways of monitoring these instances and retrieving the tags for use as match criteria in dynamic address groups.
- VM Information Source—On a next-gen firewall, you can monitor up to a total of 32 tags—14 pre-defined and 18 user-defined key-value pairs (tags).
- AWS Plugin on Panorama—The Panorama plugin for Microsoft AWS allows you to connect Panorama to your AWS VPC on the public cloud and retrieve the IP address-to-tag mapping for your virtual machines. Panorama then registers the VM information to the managed Palo Alto Networks® firewall(s) that you have configured for notification. With the plugin, Panorama can retrieve a total of 32 tags for each virtual machine, 11 predefined tags and up to 21 user-defined tags.The maximum length of a tag can be 127 characters. If a tag is longer than 127 characters, Panorama does not retrieve the tag and register it on the firewalls.
Attributes Monitored on the AWS-VPC
|VM Information Source on the Firewall||AWS Plugin on Panorama|
GuestOS.<guest OS name>
|IAM Instance Profile|
|Owner ID |
The value for this attribute is fetched from the ENI.
|Placement—Tenancy, Group Name, Availability Zone|
|Private DNS Name|
PrivateDnsName.<Private DNS Name>
|Public DNS Name|
PublicDnsName.<Public DNS Name>
|Security Group ID|
|Security Group Name|
|Tag (key, value)|
Up to a maximum of 18 user defined tags are supported. The user-defined tags are sorted alphabetically, and the first 18 tags are available for use on the firewalls.
Up to a maximum of 21 user defined tags are supported. The user-defined tags are sorted alphabetically, and the first 21 tags are available for use on Panorama and the firewalls.
Attributes Monitored in the AWS and VMware Environments
Learn about the attributes monitored on ESXi instances. ...
Attributes Monitored Using the Panorama Plugin on Azure
Proactively monitor the Virtual Machines (VMs) deployed on the Microsoft® Azure® public cloud. ...
VM Monitoring with the AWS Plugin on Panorama
Learn how you can use the AWS Plugin on Panorama to secure your AWS deployment. ...
Set Up the AWS Plugin for VM Monitoring on Panorama
Get started with installing the AWS plugin and configure it for monitoring your EC2 instances on the AWS public cloud. ...
About Panorama Plugins
Panorama supports integrations with these services through the extensible plugin architecture. ...
Use Case: Use Dynamic Address Groups to Secure New EC2 Instances within the VPC
Use Case: Use Dynamic Address Groups to Secure New EC2 Instances within the VPC In a dynamic environment such as the AWS-VPC where you launch ...
Enable VM Monitoring to Track Changes on the Virtual Networ...
Enable VM Monitoring to Track Changes on the Virtual Network VM information sources provides an automated way to gather information on the Virtual Machine (VM) ...
Device > VM Information Sources
Device > VM Information Sources Use this tab to proactively track changes on the Virtual Machines (VMs) deployed on any of these sources—VMware ESXi server, ...
About VM Monitoring on AWS
Learn about the VM Monitoring options that are available to help you monitor assets in your AWS deployment. ...