Supported Devices and Platforms

The listings below are applicable to the latest hotfix available for this release.

You can configure SecureTrack to monitor and analyze these devices:

Amazon AWS

Amazon AWS EC2

Check Point

Any gateway that is connected to these devices:

Domains (CMA and SmartCenter)

R81.10 (supporting Check Point API version 1.8)
R81 GA
R81 (supporting Check Point API version 1.7)
R80.40 (supporting Check Point API versions 1.5 and 1.6)
R80.30 (supporting Check Point API versions 1.4 and 1.5)
R80.20 (supporting Check Point API versions 1.1 and 1.4)
R80.10 Jumbo Hotfix T70 and above
R80
R81.10
NGX R65 to R77.30

Multi-Domain Security Management (MDS, Provider-1)

R81.10 (supporting Check Point API version 1.8)
R81 (supporting Check Point API version 1.7)
R80.40 (supporting Check Point API versions 1.5 and 1.6)
R80.30 (supporting Check Point API versions 1.4 and 1.5)
R80.20 (supporting Check Point API versions 1.1 and 1.4)
R80.10 Jumbo Hotfix T70 and above
R80
R81.10
NGX R65 to R77.30

All Gateways

R80.10 Jumbo Hotfix T70 and above
NGX R65 to R77.30

VSX

R80.10 Jumbo Hotfix T70 and above
NGX R65 to R77.30

Edge Devices

7.5 or higher

VPN-1 VSX Virtual Edition (VE) Edge

7.5 or higher

Check Point CloudGuard integration with Azure, Amazon AWS, Cisco ACI, and VMware NSX

In addition, you can purchase a license to monitor the performance and health of a device (Firewall OS Monitoring) for these operating systems: GAiA R75 and R77 (not including GAiA embedded devices, such as SG80), IPSO 3.9 or higher, Crossbeam C series R65 or higher, Security Gateway VE gateways in Network Mode and Hypervisor Mode (In Hypervisor mode, changes made using sysconfig are not monitored)

Cisco

Application Centric Infrastructure (ACI) - Cisco Application Policy Infrastructure Controller (APIC)

5.2
5.1
4.2
4.0
2.0

ASA

9.13 (from version 8.3 includes forward reference support and Virtual Contexts)
9.1 - 9.9
8.4
8.3

FWSM

5 (including Virtual Contexts)
4

Cisco Security Manager

4.15
4.12
4.9
4.8
4.5
4.3
  • Supports real-time change management for managed devices in text format only
  • You must have a Cisco API license for the CSM device

ASR9000/CRS

IOS-XR 5.1.1

Nexus

7.0
6.2.1
switch Nexus 1000v versions 4.2 and 5.1

Switches and Routers

IOS

12.1
12.2(44)se5
15.1(4)m2

IOS XE

17.3

IOS XR

7.5.x (from R21-3 HF2)

Context Services

Supported with custom TOP plugin only

Ironport

Supported with custom TOP plugin only

Firepower Management Center (FMC)

7.2 (from R21-3 HF5 and later)
7.0.1
6.3 - 6.7
6.2.3
6.2.1
  • Firepower Threat Defense is supported via Firepower Management Center

F5

BIG-IP Local Traffic Manager

16.1.2
15.1(iApps are not supported for all versions)
14.1
13.1
13.1.1.5 beta
13.0
12.1
11.5
11.2

BIG-IP Local Traffic Manager

9.4.2 and above (Supported with preinstalled TOP plugin only)

Forcepoint (formerly Stonesoft)

Sidewinder (formerly Firewall Enterprise)

8.3

SMC

6.10 (from R21-3 PHF3.0.0)

6.9 (SMC 6.9 and above supports API version 6.8)
6.8
6.7
6.5
6.4 (SMC 6.4 through 6.8 supports API version 6.4 and 6.5)
6.3
6.1
5.10 (SMC 5.10 through SMC 6.3 supports API version 5.10 )
5.6 - 5.9

Fortinet

FortiGate

7.2.x (requires FortiManager)
7.0.x (requires FortiManager)
6.4.6
6.4.5
6.2
6.0.5
5.6.3
5.6
5.4.7
5.4.4
5.2.11
5.2.9
5.2.2
5.0

FortiManager

7.2.x
7.0.x
7.0
6.4.6
6.4.5
6.2
6.0.5
6.0.2
5.6.3
5.6
5.4.1 -5.4.4
5.4
5.2.9
5.2 GA
5.0

Versions 6.4 and above are supported from 21-3HF1.1.

Juniper

NetScreen

SSG 6.3
ISG 6.3 (All versions include Virtual Systems)

SRX

22.1R1 - (Separate configuration required for logical system)
19.4 (All versions include Logical Systems)
15.1
12.3x48
12.1
10.4

Version 22.1R1 is supported for 21-3 HF4 and above

M/MX

16.1 R4 (All versions support stateful policies, they do not support stateless filters)
13.3 R10.2
12.3

NSM

2012.2 R7
2012.2 R4

SSL SA

6.5 and above (Supported with custom TOP plugin only)

Linux (Netfilter)

iptables

Kernel 2.4 and 2.6 (Supported with preinstalled TOP plugin only)

Microsoft Azure

Azure Resource Manager

OpenStack

OpenStack Liberty (OpenStack API v.3)

Palo Alto Networks

Panorama devices and PanOS firewalls

10.1.2
10.1
10.0.1
9.1
9.0.4
9.0.3 (includes NSX-v support for SecureTrack)
9.0.2
9.0
8.1
8.0.1
7.0 - 7.1
6.1.1 - 6.1.4
6.0

Symantec (formerly Blue Coat)

SGOS

5.3.2.1
6.7.1.1 (Supported with preinstalled TOP plugin only)

Proxy AV/SG

400 (Supported with custom TOP plugin only)

VMware

VMware NSX-V

6.4.9
6.4.6
6.4.4
6.4.0
6.3.3
6.2.4
6.1
6.0

VMware NSX-T

3.1
3.0
2.5
2.4

vCenter

6.5
6.0
5.5

With an appropriate TOP plugin, SecureTrack can monitor any device's configuration that can be retrieved as a text file. To develop a TOP plugin, see the TOP Developer Alliance. Additional TOP plugins are available from Tufin.