NewNet Security Gateway
Introduction
NewNet AccessGuard is a secure payment transaction routing and transport gateway that sits between IP-based payment front-ends (POS, ATMs, mobile / web / wallet apps) and backend authorization or host systems, providing high-performance TLS/SSL termination, encryption, routing, and switching for large volumes of digital payment traffic.
Getting Started
Compatibility
NewNet AccessGuard Security Gateway O11ySource supports SNMP versions v1, v2c and v3.
Data Collection Method
NewNet AccessGuard Security Gateway supports SNMP, Syslog, CLI, and Trap-based monitoring to collect system health, session and transaction metrics such as CPU, memory, active & failed sessions, TLS activity, and successful & failed transaction metrics, enabling seamless integration with SIEMs and observability platforms
Prerequisites
Dependent Configuration
To configure this O11ySource, create a 'credential' of type 'snmp' under the 'Definition' tab.
Inputs for Configuring Data Source
- Group Name: This field is for grouping devices for SNMP polling, making it easier to manage devices with common characteristics or within the same network segment.
- Number of Retries: Number of times the system should reattempt polling if the initial attempt fails. Default is set to 7 retries
- Timeout Duration: Specify how long the system should wait for a response from a device before considering the attempt unsuccessful. Default timeout is 5 seconds
- Device: Details needed to collect health data from the devices using SNMP
- Device IP: Enter the IP address of the device.
- SNMP Credential: Select the SNMP credential from the dropdown list that corresponds to this device.
- Vendor: Select the vendor of the device from the dropdown list
- Model: Select the model of the device from dropdown list.
- MIB Groups: Define what MIBs to be queried and how often
- MIB Group: Default: 'ALL_SUPPORTED_MIB_GROUPS'.
- Interval: Default: 360 seconds
Firewall Requirement
To collect data from this O11ySource, ensure the following ports are opened:
| Source IP | Destination IP | Destination Port | Protocol | Direction |
|---|---|---|---|---|
| vuSmartMaps IP | IP address of the SNMP device | 161* | UDP | Outbound |
*Before providing the firewall requirements, please update the port based on the customer environment.
Configuring the Target
Configure SNMP on NewNet AccessGuard Security Gateway devices and grant SNMP access permissions to vuSmartMaps designated IP address.
Configuration Steps
Enablethe O11ySource.- Select the sources tab and press the
+button to add a new instance that has to be monitored. - Provide the required configurations:
- *Resource Name
- *Period (in seconds)
- *Credential
- *Resource ID
- Click
Saveto close the data source window.
Metrics Collected
| Name | Description | Data Type |
|---|---|---|
| @timestamp | Timestamp string | String |
| timestamp | Timestamp with precision | DateTime64 |
| bu_id | Business unit ID | LowCardinality(String) |
| tenant_id | Tenant ID | LowCardinality(String) |
| host | Host IP Address | IPv4 |
| target | Target system | String |
| DeviceIP | Device IP Address | IPv4 |
| data_type | Type of data | LowCardinality(String) |
| type | Event type | LowCardinality(String) |
| vendor_name | Vendor name | LowCardinality(String) |
| device_type | Device type | LowCardinality(String) |
| period | Time period | Int32 |
| system_name | System name | String |
| name | Name of the Interface | String |
| index | Index value | String |
| vublock_name | VuBlock Name | String |
| topic_of | Topic associated | String |
| CPU Utilization | CPU Utilization | Float64 |
| CPU Name | CPU Name | LowCardinality(String) |
| Memory Utilization | Memory Utilization | Float64 |
| Uptime | System Uptime | UInt64 |
| Uptime in seconds | System Uptime in Seconds | Float64 |
| Total Memory | Total Real Memory | UInt64 |
| Used Memory | Active Real Memory | UInt64 |
| Free Memory | Free Real Memory | UInt64 |
| Temperature Identifier | Temperature Identifier | String |
| Temperatue Value | Temperature Value | Int64 |
| HA State | High Availability State | LowCardinality(String) |
| Redundancy Group ID | Redundancy Group IP | String |
| HA Peer State | High Availability Peer Node Status | String |
| Active Sessions – Total | Total Active Sessions | UInt64 |
| Active Sessions – SSL | SSL Active Sessions | UInt64 |
| Active Sessions – non-SSL | Non-SSL Active Sessions | UInt64 |
| TLS Sessions – Established | Total established TLS sessions | UInt64 |
| TLS Handshake Failures | Total TLS handshake failures | UInt64 |
| Ingress Group Index | Ingress Group Index | UInt64 |
| Total Disk Size | Disk Size | UInt64 |
| Free Disk Space | Disk space available in the partition | UInt64 |
| Disk Used Percentage | Disk Used Percentage | Float64 |
| Total Transactions | Cumulative count of all transaction calls attempted | UInt64 |
| Total Success Transactions | Cumulative count of successful transaction calls | UInt64 |
| Total Failed Transactions | Cumulative count of failed transaction calls | UInt64 |
| Total Retransmitted Transactions | Cumulative count of transaction retransmissions | UInt64 |
| Total Duplicate Transactions | Cumulative count of duplicate transactions detected | UInt64 |
| Total HTTP Server Connections Established | Cumulative count of HTTP server connections established | UInt64 |
| Total HTTP Requests | Cumulative count of inbound HTTP Requests | UInt64 |
| Total HTTP Success Responses | Cumulative count of HTTP success (2xx) responses sent | UInt64 |
| Total HTTP Failure Responses | Cumulative count of HTTP error responses sent | UInt64 |
| Total Number of HTTP Connections Closed | Cumulative count of HTTP server connections closed | UInt64 |
| Total Number of inbound HTTP Connections | Cumulative count of HTTP incoming connections | UInt64 |
| Total Number of HTTP connection failures | Cumulative count of HTTP server connection failures | UInt64 |
