Provide a stable platform to build your defense against security threats:

• Authentication errors
• SSL State dataplane pool utilization high
• Certificate about to expire
• Panorama certificate about to expire
• HTTP server enabled
• SNMPv2c/v1 used
• Telnet enabled
• Known vulnerabilities

Automate repetitive and manual intensive maintenance tasks such as identifying if:

• Licenses about to expire
• License usage limit approaching
• Contracts about to expire
• BGP peers down
• Hardware is faulty
• Hardware end of support nearing
• Application package or signatures are not up to date

Proactively automate tasks to ensure seamless failover in the event of firewall failure. Check active and standby devices for mismatches such as:

• Static routing table does not match
• Radius Servers do not match
• Time zone
• Bond interfaces
• Cluster configuration not synced
• Configuration changed on standby member

Continuously evaluate of critical resources to avoid outages:

• Network interfaces – packet drops, errors, link utilization, data plane pool utilization
• System – CPU, TCP host, Memory, Disk, critical processes, kernel tables, hardware components
• Protocols – routing tables, Layer 2 & layer 3 protocols (BGP)
• Connections – VPN, concurrent connections, connection to SDN controllers and management applications
• Management resources – identity servers, syslog servers, Certificate Authority, DNS servers

Ensure your infrastructure meets internal and external compliance requirements:

• Configuration and misconfiguration avoiding human errors, e.g. static routing tables.
• Ensure NTP server is operational for PCI compliance
• Checks for OS software version, hotfixes, DNS servers to ensure compliance.