On this page
Akamai Guardicore
- Dashboard Widgets
-
General (General overview of the system)
-
USP Compliance (The number of rules with violations, according to their severity level)
-
Cleanup (Summary of the number of rules that are disabled, and, from 5.2, rules that have not been hit in the past year or are highly permissive)
- Browsers
-
Rule Viewer (see Rule Viewer)
-
USP Viewer (see USP Viewer)
-
USP Alert Manager Viewer (see USP Alerts Manager)
-
USP Exceptions Viewer (see USP Exceptions)
-
Device Viewer (see Device Viewer)
- (From 5.2) Topology
-
Static Topology
-
Dynamic Topology
-
Calculate impact of NAT rules
-
Calculate impact of VPN policies
-
User Identity
-
IPv6 routes
Notes
Visibility and search in Rule Viewer
-
In TOS, Guardicore labels display as tags.
-
For rules with tags, the Rule Viewer displays the tag value. Hovering over the tag shows the tag key, the tag value, and, starting from TOS 5.2, the assets associated with the tag.
-
The Rule Viewer supports Guardicore-specific TQL fields.
-
destination.tag, source.tag
-
(from 5.2) source.assetTag and destination.assetTag
These fields require key:value pairs within single quotes.
For example: destination.tag=('application:tufin')
See TQL and TQL fields for Rule Viewer.
-
-
To get rule and object usage collection and analysis you must configure Guardicore to allow TOS to analyze syslog information. After configuration, the Last Hit field will be populated in Rule Viewer. From Rule Viewer, search timeLastHit to identify unused rules, You can also search object.timeLastHit and object.notHit to identify unused objects within rules. For details, see TQL queries in the Rule Viewer.
Asset types
Tags apply to workload assets or endpoint assets.
Tag expressions and tag groups
-
A tag expression is a single key-value pair, or multiple comma-separated key-value pairs.
-
A tag group is a set of one or more tag expressions.
-
AND and OR relationships in tag expressions and tag groups
-
Within a tag expression, multiple tags (same line) have an AND relationship, represented in TOSby commas.
-
Multiple tag expressions on different lines have an OR relationship between them.
-
Compliance support for tag-based policies
Adding Guardicore tags to zones allows you to use tag-based zones in Unified Security Policies (USPs). This enables compliance management and validation for Guardicore microsegmentation policies that use Guardicore tags and networks in zone definitions.
See adding tags to zones.
Was this helpful?
Thank you!
We’d love your feedback
We really appreciate your feedback
Send this page to a colleague