BGP peer(s) down-paloaltonetworks-panos

BGP peer(s) down-paloaltonetworks-panos

BGP peer(s) down-paloaltonetworks-panos

Vendor: paloaltonetworks

OS: panos

Indeni will alert one or more BGP peers isn’t communicating well.

Remediation Steps:
Review the cause for the peers being down.
Consider starting at . You can also log into the device over SSH and run “less mp-log routed.log”.

How does this work?
This alert uses the Palo Alto Networks API to retrieve the current status of the BGP peers (the equivalent of running “show routing protocol bgp peer” in CLI).

Why is this important?
Once BGP is configured on a Palo Alto Networks firewall (using a guide such as ) it is important to track the health of each BGP connection. If a BGP peer is not responding, certain dynamic routes which were expected might not be available, resulting in service disruption.

Without Indeni how would you find this?
The status of BGP peers is accessible through the CLI. An administrator would normally review their status during a service outage.


Failed to fetch the data:


// Deprecation warning : Scala template-based rules are deprecated. Please use YAML format rules instead.

package com.indeni.server.rules.library.templatebased.crossvendor

import com.indeni.server.rules.RuleContext
import com.indeni.server.rules.library.templates.StateDownTemplateRule
import com.indeni.server.rules.RemediationStepCondition

case class cross_vendor_bgp_peer_down() extends StateDownTemplateRule(
  ruleName = "cross_vendor_bgp_peer_down",
  ruleFriendlyName = "All Devices: BGP peer(s) down",
  ruleDescription = "Indeni will alert one or more BGP peers isn't communicating well.",
  metricName = "bgp-state",
  applicableMetricTag = "name",
  alertItemsHeader = "Peers Affected",
  alertDescription = "One or more BGP peers are down.",
  baseRemediationText = "Review the cause for the peers being down.")(
  RemediationStepCondition.VENDOR_CP -> "Consider reading Tobias Lachmann's blog on BGP:",
  RemediationStepCondition.VENDOR_PANOS -> "Consider starting at . You can also log into the device over SSH and run \"less mp-log routed.log\".",
  RemediationStepCondition.VENDOR_CISCO ->
      |1. Get information for all BGP neighbors by running the "show bgp vrf all sessions" NX-OS command
      |2. Get a summary list of BGP neighbors and statistics by executing the "show ip bgp vrf all summary" NX-OS command
      |3. Get detailed information from a BGP neighbor by running the "show ip bgp neighbors X.X.X.X" NX-OS command
      |4. Check global BGP process information with the "show bgp process" NX-OS command
      |5. Review the logs for relevant findings
      |6. For more information please review  following CISCO BGP troubleshooting flow chart:
  override def deviceCondition(context: RuleContext) = generateDevicePassiveAndPassiveLinkStateCondition(context.tsDao)