Health Policy
Location in GUI: Troubleshooting » Health » Policy
Diagram
Section titled “Diagram”
Classes
Section titled “Classes”policies (fmc.domains)
Section titled “policies (fmc.domains)”| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| health_policies | List | [health_policies] | No |
health_policies (fmc.domains.policies)
Section titled “health_policies (fmc.domains.policies)”| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| name | String | Regex: ^[a-zA-Z0-9_.+ -]{1,64}$ | Yes | |
| description | String | max: 255 | No | |
| policy_type | Choice | DevicePolicy | Yes | DevicePolicy |
| is_default_policy | Boolean | true, false | No | false |
| health_module_run_time_interval | Integer | min: 5, max: 60 | No | 5 |
| metric_collection_interval | Integer | min: 1, max: 60 | No | 1 |
| health_modules | List | [health_modules] | No |
health_modules (fmc.domains.policies.health_policies)
Section titled “health_modules (fmc.domains.policies.health_policies)”| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| name | Choice | hm_disk_status, hm_asp_drop, hm_tds, hm_db, hm_conn_status_sse, hm_is5800_powersupply, hm_card_reset, hm_ntp_server, hm_threat_grid_amp, hm_ftd_ha, hm_talosagent, hm_conn_status_amp, hm_snort_stats, hm_critical_process, hm_fsic, hm_ftd_csdac_identity_services, hm_deployed_configuration, hm_ftd_config_resource, hm_routing_stats, hm_vpn_stats, hm_snortstats, hm_is5800_alarm, hm_cluster, hm_bypass, hm_mu, hm_reconfig_detection, hm_xTLS, hm_pathmonitoring, hm_cpu, hm_process, hm_simu, hm_fmcaccess_config_change, hm_linkstate_propagation, hm_adv_snort_stats, hm_sdwan, hm_static_analysis, hm_chm, hm_platform_faults, hm_conn_stats, hm_fxos_health, hm_chassis_status_ftd, hm_du, hm_ifconfig, hm_flow_offload, hm_inlinelink_alarm | Yes | |
| enabled | Boolean | true, false | No | true |
| type | Choice | FTD, FMC_FTD, SENSOR, FMC | Yes | |
| alert_severity | Choice | Critical, Major, Warning, Minor, Info | No | |
| critical_threshold | Integer | min: 1, max: 99 | No | |
| warning_threshold | Integer | min: 1, max: 99 | No | |
| alert_configs | List | [alert_configs] | No | |
| custom_thresholds | List | [custom_thresholds] | No |
alert_configs (fmc.domains.policies.health_policies.health_modules)
Section titled “alert_configs (fmc.domains.policies.health_policies.health_modules)”| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| name | String | Yes | ||
| enabled | Boolean | true, false | No | true |
| thresholds | List | [thresholds] | No |
custom_thresholds (fmc.domains.policies.health_policies.health_modules)
Section titled “custom_thresholds (fmc.domains.policies.health_policies.health_modules)”| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| type | Choice | Red-FC, Yellow-FC | Yes | |
| threshold | Integer | min: 1, max: 99 | Yes |
thresholds (fmc.domains.policies.health_policies.health_modules.alert_configs)
Section titled “thresholds (fmc.domains.policies.health_policies.health_modules.alert_configs)”| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| type | Choice | red, yellow | Yes | |
| threshold | Integer | min: 1, max: 99 | Yes |
Examples
Section titled “Examples”Health Policy
fmc: domains: - name: Global policies: health_policies: - name: MyHealthPolicyName1 policy_type: DevicePolicy description: My Health Policy Description health_module_run_time_interval: 5 metric_collection_interval: 1 health_modules: - name: hm_db # Database type: FMC_FTD - name: hm_ntp_server # NTP Server type: FTD enabled: false - name: hm_fsic # File System Integrity Check type: FMC_FTD - name: hm_adv_snort_stats # Snort 3 Statistics type: FTD - name: hm_asp_drop # ASP Drop type: FTD alert_configs: - name: nat-no-xlate-to-pat-pool enabled: false - name: nat-rpf-failed enabled: false - name: no-route enabled: false - name: snort-down enabled: false - name: nat-xlate-failed enabled: false - name: conn-limit-exceeded # Connection Limit Exceeded - name: pdts-punt-limit-exceeded enabled: false - name: snort-busy enabled: false - name: punt-limit enabled: false - name: hm_conn_status_sse type: FTD enabled: false - name: hm_snort_stats # Snort Statistics type: FTD - name: hm_threat_grid_amp # AMP Threat Grid Connectivity type: FTD - name: hm_static_analysis # Local Malware Analysis type: FMC_FTD - name: hm_fmcaccess_config_change # Out of band Configuration Changes type: FTD - name: hm_fxos_health # FXOS Health type: FTD - name: hm_flow_offload # Flow Offload Statistics type: FTD - name: hm_vpn_stats # VPN Statistics type: FTD - name: hm_cpu # CPU Usage type: FMC_FTD critical_threshold: 90 warning_threshold: 80 alert_configs: - name: alert_cpu_system thresholds: - type: red threshold: 90 - type: yellow threshold: 80 - name: alert_cpu enabled: false thresholds: - type: red threshold: 90 - type: yellow threshold: 80 - name: alert_cpu_snort thresholds: - type: red threshold: 90 - type: yellow threshold: 80 - name: alert_cpu_lina thresholds: - type: red threshold: 90 - type: yellow threshold: 80 - name: hm_sdwan # SD-WAN Monitoring type: FTD - name: hm_tds # Threat Data Updates on Devices type: FMC_FTD warning_threshold: 1 critical_threshold: 24 - name: hm_critical_process # Critical Process Statistics type: FMC_FTD - name: hm_snortstats # Intrusion and File Event Rate type: FTD warning_threshold: 30 critical_threshold: 50 - name: hm_chm # Certificate Monitoring type: FMC_FTD warning_threshold: 90 critical_threshold: 30 - name: hm_talosagent # Talos Connectivity Status type: FMC_FTD warning_threshold: 30 critical_threshold: 90 - name: hm_du # Disk Usage type: FMC_FTD warning_threshold: 85 critical_threshold: 90 custom_thresholds: - type: Red-FC threshold: 99 - type: Yellow-FC threshold: 97 - name: hm_card_reset type: SENSOR enabled: false - name: hm_deployed_configuration # Deployed Configuration Statistics type: FTD - name: hm_conn_status_amp type: FTD enabled: false - name: hm_is5800_powersupply # Power Supply type: SENSOR - name: hm_bypass # Automatic Application Bypass type: FTD - name: hm_ftd_ha # Firewall Threat Defense HA (Split-brain check) type: FMC_FTD - name: hm_is5800_alarm # Hardware Alarms type: FTD - name: hm_xTLS type: FTD enabled: false - name: hm_pathmonitoring type: FTD enabled: false - name: hm_ifconfig # Interface Statistics type: FMC_FTD - name: hm_inlinelink_alarm # Inline Link Mismatch Alarms type: SENSOR - name: hm_simu # Snort Identity Memory Usage type: FTD critical_threshold: 80 - name: hm_chassis_status_ftd # Chassis Environment Status type: FTD warning_threshold: 75 critical_threshold: 85 - name: hm_conn_stats # Connection Statistics type: FTD - name: hm_process # Process Status type: FMC_FTD - name: hm_ftd_csdac_identity_services # Identity Process type: FTD - name: hm_reconfig_detection # Snort Reconfiguration Detection type: FTD - name: hm_cluster # Cluster/HA Failure Status type: FTD - name: hm_platform_faults type: FTD enabled: false alert_severity: Critical - name: hm_mu # Memory Usage type: FMC_FTD warning_threshold: 88 critical_threshold: 90 alert_configs: - name: alert_mu # Memory Usage thresholds: - type: red threshold: 90 - type: yellow threshold: 88 - name: alert_mu_lina # Data Plane Memory Usage thresholds: - type: red threshold: 90 - type: yellow threshold: 80 - name: alert_mu_snort # Snort Memory Usage thresholds: - type: red threshold: 90 - type: yellow threshold: 80 - name: hm_ftd_config_resource # Configuration Resource Utilization type: FTD - name: hm_linkstate_propagation # Link State Propagation type: FTD - name: hm_routing_stats # Routing Statistics type: FTD - name: hm_disk_status # Disk Status type: FMC_FTD