Monitoring Firewalls
Monitor the health, capacity, and performance of your firewalls by using metrics, alarms, and notifications.
This topic describes the metrics emitted by the metric namespace
oci_network_firewall.
Available metrics: oci_network_firewall
The metrics in the following table are available for any firewall you create. You don't need to enable monitoring on the resource to get these metrics. However, you must have the firewall set up with network traffic passing through it to make the oci_network_firewall metric space available in the Metrics Explorer. Firewalls without network traffic emit no metric data.
Each metric includes one or more of the following dimensions:
- resourceID
- The OCID of the firewall.
- resourceName
- The name of the firewall.
| Metric | Display name | Unit | Description | Dimensions | Frequency (minutes) |
|---|---|---|---|---|---|
| ByteReceivedCount | Byte received count | count | The number of bytes received through the firewall. |
resourceID resourceName |
5 |
| ByteSentCount | Byte sent count | count | The number of bytes sent through the firewall. |
resourceID resourceName |
5 |
| Decryption RuleHitCount | Decryption rule hits | count | The number of times a connection matches a decryption rule. |
resourceID resourceName ruleName |
5 |
| ICMPFragmentAttacksCount | ICMP fragment attacks | count | The number of ICMP fragment attacks detected. |
resourceID resourceName |
5 |
| IPSpoofCount | IP spoof | count | Number of IPI spoof attacks detected. |
resourceID resourceName |
5 |
| LandAttacksCount | Land attacks | count | The number of land attacks detected. |
resourceID resourceName |
5 |
| MacSpoofCount | Mac spoof | count | The number of MAC spoof attacks detected. |
resourceID resourceName |
5 |
| PacketDropCount | Packet drop count | count | The number of packets dropped through the firewall. |
resourceID resourceName dropReason |
5 |
| PacketReceivedCount | Packets received | count | The number of packets received at the firewall from the network, after drops. |
resourceID resourceName |
5 |
| PacketReceivedInErrorCount | Packets received in error | count | Number of packets received through the firewall that have errors. |
resourceID resourceName |
5 |
| PacketSentCount | Packets sent | count | The number of packets sent from the firewall to the network, after drops. |
resourceID resourceName |
5 |
| PingOfDeathAttacksCount | Ping of death attacks | count | The number of ping of death attacks detected. |
resourceID resourceName |
5 |
| SecurityRuleHitCount | Security rule hits | count | The number of times a connection matches a security rule. |
resourceID resourceName ruleName |
5 |
| TeardropAttacksCount | Teardrop attacks | count | The number of teardrop attacks detected. |
resourceID resourceName |
5 |