Device Packs

Device packs are a way to manage supported devices for Security Manager. A device pack is a FireMon-specific software package that allows a device such as a firewall to talk to FireMon's Data Collector. If there are manufacturer changes to a device's property settings, we can deploy them to the User Center for you to download and update at your convenience.

The device packs specify a matching configuration for change and for usage. The matching configuration contains one or more regular expressions and may contain group mappings to pertinent fields. These fields are captured and used in downstream processing. When a device is created, the device pack matching configuration is associated with the device in a field called extendedsettings. The default matching configuration is derived from settings in the device pack.

Device packs are updated frequently as vendor's update their software for their respective device.  Each FireMon software revision contains updated device packs.  If a firewall has normalization retrieval or other issues ensuring the device pack is updated will be one of the first troubleshooting steps that Support will try.

 

Device Pack Information

To view device pack information for a specific device, complete the following steps.

  1. On the toolbar, click Device > Devices.
  2. From the devices list, click a device name.
  3. Scroll to and expand the Device Pack Information section.

    4. Information in this section is read-only. It provides an overview of the device pack currently in use for the device, and the settings that are enabled or disabled.

The device pack framework reads input directly from STDIN, writes results to STDOUT, and writes log messages to STDERR. Device pack logging to STDERR and outputted by the data collector to the devpack.log file in the IP folder has been moved to: /var/log/firemon/dc/<ip>/devpack.log

Open Device Packs Page

To open the device packs page, on the toolbar, click Device > Device Packs.

Device Packs List

The following table defines the values in the Device Packs table. The order of packs listed can sorted by Vendor or Product (the default is ascending by Vendor).

Device Packs List
Value Description
Vendor The manufacturer of the device.
Product The vendor's name for the device.
Device Type The type of device.
Device Pack Version The version of the device pack that was included with the ISO.