On This Page
Supported Devices and Platforms
The listings below are applicable to the latest hotfix available for this release.
You can configure SecureTrack to monitor and analyze these devices:
Amazon AWS
Amazon AWS EC2
Check Point
Any gateway that is connected to these devices:
Provider-1 CMAs
- R81.10 (supporting Check Point API version 1.8)
- R81 GA
- R81 (supporting Check Point API version 1.7)
- R80.40 (supporting Check Point API versions 1.5 and 1.6)
- R80.30 (supporting Check Point API versions 1.4 and 1.5)
- R80.20 (supporting Check Point API versions 1.1 and 1.4)
- R80.10 Jumbo Hotfix T70 and above
- R80
- R81.10
- NGX R65 to R77.30
Provider-1 MDS (Multi-Domain Security Management)
- R81.10 (supporting Check Point API version 1.8)
- R81 (supporting Check Point API version 1.7)
- R80.40 (supporting Check Point API versions 1.5 and 1.6)
- R80.30 (supporting Check Point API versions 1.4 and 1.5)
- R80.20 (supporting Check Point API versions 1.1 and 1.4)
- R80.10 Jumbo Hotfix T70 and above
- R80
- R81.10
- NGX R65 to R77.30
SmartCenter
- R81.10 (supporting Check Point API version 1.8)
- R81 (supporting Check Point API version 1.7)
- R80.40 (supporting Check Point API versions 1.5 and 1.6)
- R80.30 (supporting Check Point API versions 1.4 and 1.5)
- R80.20 (supporting Check Point API versions 1.1 and 1.4)
- R80.10 Jumbo Hotfix T70 and above
- R80
- R81.10
- NGX R65 to R77.30
All Gateways
- R80.10 Jumbo Hotfix T70 and above
- NGX R65 to R77.30
VSX
- R80.10 Jumbo Hotfix T70 and above
- NGX R65 to R77.30
Edge Devices
- 7.5 or higher
VPN-1 VSX Virtual Edition (VE) Edge
- 7.5 or higher
Check Point CloudGuard integration with Azure, Amazon AWS, Cisco ACI, and VMware NSX
In addition, you can purchase a license to monitor the performance and health of a device (Firewall OS Monitoring) for these operating systems: GAiA R75 and R77 (not including GAiA embedded devices, such as SG80), IPSO 3.9 or higher, Crossbeam C series R65 or higher, Security Gateway VE gateways in Network Mode and Hypervisor Mode (In Hypervisor mode, changes made using sysconfig are not monitored)
Cisco
Application Centric Infrastructure (ACI) - Cisco Application Policy Infrastructure Controller (APIC)
- 5.2
- 5.1
- 4.2
- 4.0
- 2.0
ASA
- 9.13 (from version 8.3 includes forward reference support and Virtual Contexts)
- 9.1 - 9.9
- 8.4
- 8.3
FWSM
- 5 (including Virtual Contexts)
- 4
Cisco Security Manager
- 4.15
- 4.12
- 4.9
- 4.8
- 4.5
- 4.3
- Supports real-time change management for managed devices in text format only
- You must have a Cisco API license for the CSM device
ASR9000/CRS
- IOS-XR 5.1.1
Nexus
- 7.0
- 6.2.1
- switch Nexus 1000v versions 4.2 and 5.1
Switches
- 12.1
- L3 switches - 15.0
- Routers - 15, 15.1
- Catalyst
Context Services
- Supported with custom TOP plugin only
Ironport
- Supported with custom TOP plugin only
Firepower Management Center (FMC)
- 7.0.1
- 6.3 - 6.7
- 6.2.3
- 6.2.1
- Firepower Threat Defense is supported via Firepower Management Center
F5
BIG-IP Local Traffic Manager
- 15.1(iApps are not supported for all versions)
- 14.1
- 13.1
- 13.1.1.5 beta
- 13.0
- 12.1
- 11.5
- 11.2
BIG-IP Local Traffic Manager
- 9.4.2 and above (Supported with preinstalled TOP plugin only)
Forcepoint (formerly Stonesoft)
Sidewinder (formerly Firewall Enterprise)
- 8.3
SMC
- 6.9 (SMC 6.9 and above supports API version 6.8)
- 6.8
- 6.7
- 6.5
- 6.4 (SMC 6.4 through 6.8 supports API version 6.4 and 6.5)
- 6.3
- 6.1
- 5.10 (SMC 5.10 through SMC 6.3 supports API version 5.10 )
- 5.6 - 5.9
Fortinet
FortiGate
- 7.0.1 (requires FortiManager)
- 6.4.6
- 6.4.5
- 6.2
- 6.0.5
- 5.6.3
- 5.6
- 5.4.7
- 5.4.4
- 5.2.11
- 5.2.9
- 5.2.2
- 5.0
FortiManager
- 7.0.1
- 7.0
- 6.4.6
- 6.4.5
- 6.2
- 6.0.5
- 6.0.2
- 5.6.3
- 5.6
- 5.4.1 -5.4.4
- 5.4
- 5.2.9
- 5.2 GA
- 5.0
Juniper
NetScreen
- SSG 6.3
- ISG 6.3 (All versions include Virtual Systems)
SRX
- 19.4 (All versions include Logical Systems)
- 15.1
- 12.3x48
- 12.1
- 10.4
M/MX
- 16.1 R4 (All versions support stateful policies, they do not support stateless filters)
- 13.3 R10.2
- 12.3
NSM
- 2012.2 R7
- 2012.2 R4
SSL SA
- 6.5 and above (Supported with custom TOP plugin only)
Linux (Netfilter)
iptables
- Kernel 2.4 and 2.6 (Supported with preinstalled TOP plugin only)
Microsoft Azure
Azure Resource Manager
OpenStack
OpenStack Liberty (OpenStack API v.3)
Palo Alto Networks
Panorama devices and PanOS firewalls
- 10.1.2
- 10.1
- 10.0.1
- 9.1
- 9.0.4
- 9.0.3 (includes NSX-v support for SecureTrack)
- 9.0.2
- 9.0
- 8.1
- 8.0.1
- 7.0 - 7.1
- 6.1.1 - 6.1.4
- 6.0
Symantec (formerly Blue Coat)
SGOS
- 5.3.2.1
- 6.7.1.1 (Supported with preinstalled TOP plugin only)
Proxy AV/SG
- 400 (Supported with custom TOP plugin only)
VMware
VMware NSX-V
- 6.4.9
- 6.4.6
- 6.4.4
- 6.4.0
- 6.3.3
- 6.2.4
- 6.1
- 6.0
VMware NSX-T
- 3.1
- 3.0
- 2.5
- 2.4
vCenter
- 6.5
- 6.0
- 5.5
With an appropriate TOP plugin, SecureTrack can monitor any device's configuration that can be retrieved as a text file. To develop a TOP plugin, see the TOP Developer Alliance. Additional TOP plugins are available from Tufin.