Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
ON THIS PAGE
 

Arbor Networks Pravail

The JSA DSM for Arbor Networks Pravail receives event logs from your Arbor Networks Pravail servers.

The following table identifies the specifications for the Arbor Networks Pravail DSM:

Table 1: Arbor Networks Pravail DSM Specifications

Specification

Value

Manufacturer

Arbor Networks

DSM

Arbor Networks Pravail

RPM file name

DSM-ArborNetworksPravail-build_number.noarch.rpm

Protocol

Syslog

Recorded events

All relevant events

Automatically discovered?

Yes

Includes identity?

No

Includes custom properties?

No

More information

Arbor Networks website

To send Arbor Networks Pravail events to JSA, complete the following steps:

  1. If automatic updates are not enabled, download and install the most recent version of the Arbor Networks Pravail RPM from the https://support.juniper.net/support/downloads/ onto your JSA console.

  2. Configure each Arbor Networks Pravail system to send events to JSA.

  3. If JSA does not automatically discover the Arbor Pravail system, create a log source on the JSA console. Configure the required parameters, and use the following table for the Arbor Pravail specific parameters:

    Table 2: Arbor Pravail Parameters

    Parameter

    Value

    Log Source Type

    Arbor Networks Pravail

    Protocol Configuration

    Syslog

Configuring Your Arbor Networks Pravail System to Send Events to JSA

To collect all audit logs and system events from Arbor Networks Pravail, you must add a destination that specifies JSA as the syslog server.

  1. Log in to your Arbor Networks Pravail server.

  2. Click Settings & Reports.

  3. Click Administration >Notifications.

  4. On the Configure Notifications page, click Add Destinations.

  5. Select Syslog.

  6. Configure the following parameters:

    Table 3: Syslog Parameters

    Parameter

    Description

    Host

    The IP address of the JSA console

    Port

    514

    Severity

    Info

    Alert Types

    The alert types that you want to send to the JSA console

  7. Click Save.

Arbor Networks Pravail Sample Event Message

Use this sample event message to verify a successful integration with JSA.

Note:

Due to formatting issues, paste the message format into a text editor and then remove any carriage return or line feed characters.

Arbor Networks Pravail sample message when you use the Syslog protocol

The following sample event message shows that a malformed SIP traffic is blocked.

Table 4: Highlighted Values in the Arbor Pravail Sample Event

JSA field name

Highlighted values in the event payload

Event ID

Block Malformed SIP Traffic

Event Category

Blocked Host

Source IP

192.168.124.175

Source Port

5060

Destination IP

192.168.161.35

Destination Port

5060

Device Time

May 15 17:17:31