Macro Overview

The following macros can be overloaded on host level.

Name	Default
{$SNMP_COMMUNITY}	public

Static Elements

Trigger Overview

Name	Description	Priority	Expression
Flow sessions (10% Available)	>90% Reaching Device limits Actions: Review traffic patterns Look for sessions with high inactivity timeouts Review Device type	High	`{Custom - HW - Juniper SRX:jnxJsSPUMonitoringAvailableFlowSession.0.last(0)}<10`
Flow sessions (20% Available)	80% -90 of Max PFE Sessions may be considered normal depending upon network traffic but requires investigation if increase is sudden Actions: Review traffic patterns Look for sessions with high inactivity timeouts Review Device type	Warning	`{Custom - HW - Juniper SRX:jnxJsSPUMonitoringAvailableFlowSession.0.last(0)}<20`
High CPU temperature for node 0		Warning	`{Custom - HW - Juniper SRX:jnxOperatingTemp.9.1.0.0.min(5m)}>65`
High CPU temperature on for node 1		Warning	`{Custom - HW - Juniper SRX:jnxOperatingTemp.9.2.0.0.min(5m)}>65`
High CPU temperature on {HOSTNAME} node 0		Average	`{Custom - HW - Juniper SRX:jnxOperatingTemp.9.1.0.0.min(15m)}>65`
High CPU temperature on {HOSTNAME} node 0		Average	`{Custom - HW - Juniper SRX:jnxOperatingTemp.9.1.0.0.min(60)}>65`
High CPU temperature on {HOSTNAME} node 1		Average	`{Custom - HW - Juniper SRX:jnxOperatingTemp.9.2.0.0.min(15m)}>65`
High CPU temperature on {HOSTNAME} node 1		Average	`{Custom - HW - Juniper SRX:jnxOperatingTemp.9.2.0.0.min(60)}>65`
node 0 high PFE CPU usage	>95% Device responsiveness for transit traffic is likely to be impacted including session buildup Actions: Review Traffic pattern Review PPS Review Session counts	Warning	`{Custom - HW - Juniper SRX:jnxJsSPUMonitoringCPUUsage.0.min(5m)}>95`
node 0 high PFE memory usage	>95% Transit traffic may be impacted due to inability for forwarding operations Actions: Review system logs Verify configuration for unused features that be removed Disable non needed ALGs	Average	`{Custom - HW - Juniper SRX:jnxJsSPUMonitoringMemoryUsage.0.min(5m)}>95`
node 0 high RE CPU usage	>95% Device responsiveness for self traffic is likely to be impacted Actions: Disable traceoptions Clean up storage Verify system processes	Warning	`{Custom - HW - Juniper SRX:jnxOperatingCPU.9.1.0.0.min(5m)}>95`
node 0 high RE memory usage	>95% Device will begin active memory clean up attempts Actions: Verify routing table size Verify System Processes in use Review system logs	Average	`{Custom - HW - Juniper SRX:jnxOperatingBuffer.9.1.0.0.min(5m)}>95`
node 1 high PFE CPU usage	>95% Device responsiveness for transit traffic is likely to be impacted including session buildup Actions: Review Traffic pattern Review PPS Review Session counts	Warning	`{Custom - HW - Juniper SRX:jnxJsSPUMonitoringCPUUsage.10.min(5m)}>95`
node 1 high PFE memory usage	>95% Transit traffic may be impacted due to inability for forwarding operations Actions: Review system logs Verify configuration for unused features that be removed Disable non needed ALGs	Average	`{Custom - HW - Juniper SRX:jnxJsSPUMonitoringMemoryUsage.10.min(15m)}>95`
node 1 high RE CPU usage	>95% Device responsiveness for self traffic is likely to be impacted Actions: Disable traceoptions Clean up storage Verify system processes	Warning	`{Custom - HW - Juniper SRX:jnxOperatingCPU.9.2.0.0.min(5m)}>95`
node 1 high RE memory usage	>95% Device will begin active memory clean up attempts Actions: Verify routing table size Verify System Processes in use Review system logs	Average	`{Custom - HW - Juniper SRX:jnxOperatingBuffer.9.2.0.0.min(5m)}>95`
no monitoring data	System does not provide snmp measurement data.	Average	`{Custom - HW - Juniper SRX:Uptime.nodata(15m)}=1`
Ping check	The firewall device has stopped responding. This could indicate a failure and needs to be investigated.	Disaster	`{Custom - HW - Juniper SRX:icmpping.sum(#3)}=0 or ({TRIGGER.VALUE}=1 and {Custom - HW - Juniper SRX:icmpping.sum(#3)}<>3)`
Red alarm on {HOSTNAME}		High	`{Custom - HW - Juniper SRX:jnxRedAlarmState.last(0)}<>2`
system has been restarted	System hast been restarted. Confirm restart by manual close.	Warning	`{Custom - HW - Juniper SRX:Uptime.last()}<600`
Yellow alarm on {HOSTNAME}		Warning	`{Custom - HW - Juniper SRX:jnxYellowAlarmState.last(0)}<>2`
{HOSTNAME} Has just been restarted		Average	`{Custom - HW - Juniper SRX:Uptime.last(0)}<600`
{HOSTNAME} node 0 high PFE CPU usage	>95% Device responsiveness for transit traffic is likely to be impacted including session buildup Actions: Review Traffic pattern Review PPS Review Session counts	Average	`{Custom - HW - Juniper SRX:jnxJsSPUMonitoringCPUUsage.0.min(60)}>95`
{HOSTNAME} node 0 high PFE memory usage	>95% Transit traffic may be impacted due to inability for forwarding operations Actions: Review system logs Verify configuration for unused features that be removed Disable non needed ALGs	Average	`{Custom - HW - Juniper SRX:jnxJsSPUMonitoringMemoryUsage.0.min(30)}>95`
{HOSTNAME} node 0 high RE CPU usage	>95% Device responsiveness for self traffic is likely to be impacted Actions: Disable traceoptions Clean up storage Verify system processes	Average	`{Custom - HW - Juniper SRX:jnxOperatingCPU.9.1.0.0.min(60)}>95`
{HOSTNAME} node 0 high RE memory usage	>95% Device will begin active memory clean up attempts Actions: Verify routing table size Verify System Processes in use Review system logs	Average	`{Custom - HW - Juniper SRX:jnxOperatingBuffer.9.1.0.0.min(30)}>95`
{HOSTNAME} node 1 high PFE CPU usage	>95% Device responsiveness for transit traffic is likely to be impacted including session buildup Actions: Review Traffic pattern Review PPS Review Session counts	Average	`{Custom - HW - Juniper SRX:jnxJsSPUMonitoringCPUUsage.10.min(60)}>95`
{HOSTNAME} node 1 high PFE memory usage	>95% Transit traffic may be impacted due to inability for forwarding operations Actions: Review system logs Verify configuration for unused features that be removed Disable non needed ALGs	Average	`{Custom - HW - Juniper SRX:jnxJsSPUMonitoringMemoryUsage.10.min(30)}>95`
{HOSTNAME} node 1 high RE CPU usage	>95% Device responsiveness for self traffic is likely to be impacted Actions: Disable traceoptions Clean up storage Verify system processes	Average	`{Custom - HW - Juniper SRX:jnxOperatingCPU.9.2.0.0.min(60)}>95`
{HOSTNAME} node 1 high RE memory usage	>95% Device will begin active memory clean up attempts Actions: Verify routing table size Verify System Processes in use Review system logs	Average	`{Custom - HW - Juniper SRX:jnxOperatingBuffer.9.2.0.0.min(30)}>95`

Graph Overview

Name	Elements
Juniper SRX Flow CPU Usage	`jnxJsSPUMonitoringCPUUsage.0 jnxOperatingCPU.9.1.0.0 jnxJsSPUMonitoringCPUUsage.10 jnxOperatingCPU.9.2.0.0`
Juniper SRX Flow Session	`jnxJsSPUMonitoringAvailableFlowSession.0 jnxJsSPUMonitoringCurrentFlowSession.0 jnxJsSPUMonitoringMaxFlowSession.0`
Juniper SRX Flow Temperature	`jnxOperatingTemp.9.1.0.0 jnxOperatingTemp.9.2.0.0`

Item Overview

Type	Name	Key	Interval (sec)	History Days	Trend Days
Simple check	Ping check	`icmpping`	120s	90d	365d
Calculated	Flow sessions (Available)	`jnxJsSPUMonitoringAvailableFlowSession.0`	120s	90d	365d
ERROR - Unknown	Node 0 PFE CPU usage	`jnxJsSPUMonitoringCPUUsage.0`	120s	90d	365d
ERROR - Unknown	Node1 PFE CPU usage	`jnxJsSPUMonitoringCPUUsage.10`	120s	90d	365d
ERROR - Unknown	Flow sessions (Current)	`jnxJsSPUMonitoringCurrentFlowSession.0`	120s	90d	365d
ERROR - Unknown	Flow sessions (Max)	`jnxJsSPUMonitoringMaxFlowSession.0`	120s	90d	365d
ERROR - Unknown	Node 0 PFE Memory usage	`jnxJsSPUMonitoringMemoryUsage.0`	120s	90d	365d
ERROR - Unknown	Node 1 PFE Memory usage	`jnxJsSPUMonitoringMemoryUsage.10`	120s	90d	365d
ERROR - Unknown	Node 0 RE Memory usage	`jnxOperatingBuffer.9.1.0.0`	120s	90d	365d
ERROR - Unknown	Node 1 RE Memory usage	`jnxOperatingBuffer.9.2.0.0`	120s	90d	365d
ERROR - Unknown	Node 0 RE CPU usage	`jnxOperatingCPU.9.1.0.0`	120s	90d	365d
ERROR - Unknown	Node 1 RE CPU usage	`jnxOperatingCPU.9.2.0.0`	120s	90d	365d
ERROR - Unknown	Node 0 CPU temperature	`jnxOperatingTemp.9.1.0.0`	120s	90d	365d
ERROR - Unknown	Node 1 CPU temperature	`jnxOperatingTemp.9.2.0.0`	120s	90d	365d
ERROR - Unknown	Red alarm	`jnxRedAlarmState`	120s	90d	365d
ERROR - Unknown	Yellow alarm	`jnxYellowAlarmState`	120s	90d	365d
ERROR - Unknown	Uptime	`Uptime`	120s	90d	365d

Discovery rule "JunOS Interfaces"

Name	Value
Name	JunOS Interfaces
Key	discovery.ifDescr
Type	ERROR - Unknown
Delay	300s

Trigger Overview

Name	Priority	Expression
{#SNMPVALUE} / {#IFALIAS} - discarded packets : {ITEM.VALUE1}/{ITEM.VALUE2}	Information	`({Custom - HW - Juniper SRX:.1.3.6.1.2.1.2.2.1.13.[{#SNMPINDEX}].last()} + {Custom - HW - Juniper SRX:1.3.6.1.2.1.2.2.1.19.[{#SNMPINDEX}].last()}) > {$ALERT_LIMIT_DISCARD}`
{#SNMPVALUE} / {#IFALIAS} - errors : {ITEM.VALUE1}/{ITEM.VALUE2}	Information	`({Custom - HW - Juniper SRX:1.3.6.1.2.1.2.2.1.14.[{#SNMPINDEX}].last()} + {Custom - HW - Juniper SRX:1.3.6.1.2.1.2.2.1.20.[{#SNMPINDEX}].last()}) > {$ALERT_LIMIT_IF_ERROR}`
{#SNMPVALUE} / {#IFALIAS} - Interface not active, OperStatus={ITEM.VALUE3}	Information	`{Custom - HW - Juniper SRX:1.3.6.1.2.1.2.2.1.7.[{#SNMPINDEX}].last()}=1 and {Custom - HW - Juniper SRX:1.3.6.1.2.1.2.2.1.8.[{#SNMPINDEX}].last()}<>1`

Graph Overview

Name	Elements
Interface {#SNMPVALUE} - {#IFALIAS}	`1.3.6.1.2.1.2.2.1.10.[{#SNMPINDEX}] .1.3.6.1.2.1.2.2.1.13.[{#SNMPINDEX}] 1.3.6.1.2.1.2.2.1.14.[{#SNMPINDEX}] 1.3.6.1.2.1.2.2.1.16.[{#SNMPINDEX}] 1.3.6.1.2.1.2.2.1.19.[{#SNMPINDEX}] 1.3.6.1.2.1.2.2.1.20.[{#SNMPINDEX}]`

Item Overview

Type	Name	Key	Description	Interval (sec)	History Days	Trend Days
ERROR - Unknown	{#SNMPVALUE} - Inbound discarded packets	`.1.3.6.1.2.1.2.2.1.13.[{#SNMPINDEX}]`		120	7d	365d
ERROR - Unknown	{#SNMPVALUE} - AdminStatus	`1.3.6.1.2.1.2.2.1.7.[{#SNMPINDEX}]`	ifAdminStatus OBJECT-TYPE SYNTAX INTEGER { up(1), -- ready to pass packets down(2), testing(3) -- in some test mode } MAX-ACCESS read-write STATUS current DESCRIPTION "The desired state of the interface. The testing(3) state indicates that no operational packets can be passed. When a managed system initializes, all interfaces start with ifAdminStatus in the down(2) state. As a result of either explicit management action or per configuration information retained by the managed system, ifAdminStatus is then changed to either the up(1) or testing(3) states (or remains in the down(2) state)." ::= { ifEntry 7 }	120	7d	90d
ERROR - Unknown	{#SNMPVALUE} - OperStatus	`1.3.6.1.2.1.2.2.1.8.[{#SNMPINDEX}]`	ifOperStatus OBJECT-TYPE SYNTAX INTEGER { up(1), -- ready to pass packets down(2), testing(3), -- in some test mode unknown(4), -- status can not be determined -- for some reason. dormant(5), notPresent(6), -- some component is missing lowerLayerDown(7) -- down due to state of -- lower-layer interface(s) } MAX-ACCESS read-only STATUS current DESCRIPTION "The current operational state of the interface. The testing(3) state indicates that no operational packets can be passed. If ifAdminStatus is down(2) then ifOperStatus should be down(2). If ifAdminStatus is changed to up(1) then ifOperStatus should change to up(1) if the interface is ready to transmit and receive network traffic; it should change to dormant(5) if the interface is waiting for external actions (such as a serial line waiting for an incoming connection); it should remain in the down(2) state if and only if there is a fault that prevents it from going to the up(1) state; it should remain in the notPresent(6) state if the interface has missing (typically, hardware) components	120	7d	90d
ERROR - Unknown	{#SNMPVALUE} - Inbound traffic	`1.3.6.1.2.1.2.2.1.10.[{#SNMPINDEX}]`		120	7d	365d
ERROR - Unknown	{#SNMPVALUE} - Inbound errors	`1.3.6.1.2.1.2.2.1.14.[{#SNMPINDEX}]`		120	7d	365d
ERROR - Unknown	{#SNMPVALUE} - Outbound traffic	`1.3.6.1.2.1.2.2.1.16.[{#SNMPINDEX}]`		120	7d	365d
ERROR - Unknown	{#SNMPVALUE} - Outbound discarded packets	`1.3.6.1.2.1.2.2.1.19.[{#SNMPINDEX}]`		120	7d	365d
ERROR - Unknown	{#SNMPVALUE} - Outbound errors	`1.3.6.1.2.1.2.2.1.20.[{#SNMPINDEX}]`		120	7d	365d
ERROR - Unknown	{#SNMPVALUE} - Description	`1.3.6.1.2.1.31.1.1.1.18[{#SNMPINDEX}]`		1h	7d	0