There are two ways to add network devices such as firewalls, routers, and switches into NP-Live:
- Manually: you can drag-and-drop a configuration file directly into a workspace
- Automatically: you can setup a connector to a remote server so NP-Live can download configuration files and periodically check for new versions to import
Manual configuration file import:
The first step is to export configuration files from network devices that are supported by NP-Live. The table in the supported devices page provides commands and instructions to export configuration files in a format that NP-Live understands.
Once exported from your devices, the configuration files can be imported manually into NP-Live through the Data Import option of the search bar menu inside an existing workspace. The Data Import panel includes a drag-and-drop area as well as an upload button so you can select the files from your local file system and import them into NP-Live through your Web browser.
Once imported, NP-Live will parse each file. The parsing operation can take a few minutes depending on the size of your configuration file. When all files have been parsed, NP-Live will generate a topology map of your network and run a path analysis.
Setting up a connector:
NP-Live can automatically connect to remote servers and download device configuration files once or periodically. The following connection protocols are currently supported:
- AWS: to automatically download security policies and instances from Amazon Cloud
- Azure: to automatically download security policies and instances from Microsoft Cloud
- Cisco: to connect directly to a Cisco device through SSH on port TCP/22
- HP Network Automation: connect to the SOAP API of HP Network Automation and download the latest set of configurations from port TCP/80 or TCP/443
- Panorama: to connecto the REST API of Palo Alto Panorama and automatically download device configuration files
- Samba: mount and monitor a network folder using the SMB protocol on Netbios ports (UDP/137, UDP/138, TCP/139, TCP/445)
- Solarwinds: connect to the API of Solarwinds NCM and download the latest set of configuration files
- SSH: mount and monitor a network folder using the SSH protocol on port TCP/22
- Tripwire: to connecto the REST API of Tripwire Enterprise and automatically download device configuration files
To setup a connector, select the Data Import option of the search bar menu inside an existing workspace. The Data Import panel includes a new connector form in which you can select a connector type from the list above, and then enter your credentials, as well as the frequency at which you'd like NP-Live to check for new configuration file versions. The credentials supported include login/password and SSH keys. The new connector form also includes a file name white list and black list input boxes so you can filter which files should be ignored or selected when the connector checks for a new version.
Once added, NP-Live will automatically login to the remove server(s) with the credentials you provided. If new files or new file versions are identified and match your name filtering criteria, then NP-Live will retrieve and parse them. The parsing operation can take a few minutes per file depending on the size of your configuration files. When all files have been parsed, NP-Live will generate a topology map of your network and run a path analysis in the background.