Firewall extension classes

  • Release version: Xanadu
  • Updated August 1, 2024
  • 3 minutes to read

    • The CMDB CI Class Models store app adds or updates classes for firewall devices.

    The app adds class models that extend the CMDB class hierarchy, including class descriptions, identification rules, identifier entries, and dependent relationships (if applicable). You can use the added classes as any other CMDB class. Applications such as Discovery and Service Mapping patterns can use these class extensions to populate CIs and discover various technologies and software.

    Request apps on the Store

    Visit the ServiceNow Store website to view all the available apps and for information about submitting requests to the store. For cumulative release notes information for all released apps, see the ServiceNow Store version history release notes.

    Firewalls

    A firewall is a network security system that monitors and controls incoming and outgoing network traffic, based on security policies. Firewalls typically form a barrier between an internal network and an untrusted external network, such as the internet. It usually consists of security policies that help secure an organization from external threats and cyber attacks. Firewall vendors may provide a centralized firewall manager to manage many firewall devices and the security policies residing on them. For example, Panoramaâ„¢ is the centralized management system for Palo Alto Networks firewalls.

    Figure 1. Firewall extension classes integrated with the CMDB class hierarchy (CMDB CI Class Models: Release 1.11.0)

    Firewall extension classes integrated with the CMDB class hierarchy.
    Figure 2. Firewall extension classes integrated with the CMDB class hierarchy (CMDB CI Class Models: Release 1.10.0)

    Firewall extension classes integrated with the CMDB class hierarchy.

    Classes

    This section lists the classes that the CMDB CI Class Models store app adds or updates.

    CMDB CI Class Models: Release 1.10.0 adds or updates the following classes for the discovery of network firewall devices. For the list of CMDB classes in a base system, including ones that this store app might be extending, see CMDB tables descriptions.

    Class Extends Description
    IP Firewall [cmdb_ci_ip_firewall] NETGEAR [cmdb_ci_netgear] Contains all network firewalls.
    Firewall Device [cmdb_ci_firewall_device] IP Firewall [cmdb_ci_ip_firewall] Network security system that monitors and controls incoming and outgoing network traffic, based on security policies.
    Fortinet Firewall Device [cmdb_ci_firewall_device_fortinet] Firewall Device [cmdb_ci_firewall_device] Fortinet firewall device.
    Juniper Firewall Device [cmdb_ci_firewall_device_juniper] Firewall Device [cmdb_ci_firewall_device] Juniper firewall device.
    Firewall Device Group [cmdb_ci_firewall_device_group] CMDB CI [cmdb_ci] Group of firewall devices.
    Panorama Firewall Device Group [cmdb_ci_firewall_device_group_panorama] Firewall Device Group [cmdb_ci_firewall_device_group] Group of Panorama firewall devices.
    Palo Alto Firewall Device [cmdb_ci_firewall_device_palo_alto] Firewall Device [cmdb_ci_firewall_device] Palo Alto firewall device.
    Firewall Cluster [cmdb_ci_firewall_cluster] [cmdb_ci_cluster] Group of firewall nodes that work as a single logical entity.
    Fortinet Firewall Cluster [cmdb_ci_firewall_cluster_fortinet] Firewall Cluster [cmdb_ci_firewall_cluster] Fortinet firewall cluster.
    Juniper Firewall Cluster [cmdb_ci_firewall_cluster_juniper] Firewall Cluster [cmdb_ci_firewall_cluster] Juniper firewall cluster.
    Firewall Manager [cmdb_ci_firewall_manager] CMDB CI [cmdb_ci] System that provides centralized management for many firewall devices and the security policies residing on them.
    Panorama Firewall Manager [cmdb_ci_firewall_manager_panorama] Firewall Manager [cmdb_ci_firewall_manager] The centralized network security management tool for Palo Alto Networks firewalls.
    Firewall Security Policy [cmdb_ci_firewall_sec_policy] CMDB CI [cmdb_ci] The security policy that the firewall device enforces.
    Panorama Firewall Security Policy [cmdb_ci_firewall_sec_policy_panorama] Firewall Security Policy [cmdb_ci_firewall_sec_policy] The security policy that the Panorama firewall device enforces.
    CMDB CI Class Models: Release 1.12.0 adds the following class for the discovery of network firewall devices.
    Class Extends Description
    Cisco Firewall Device [cmdb_ci_firewall_device_cisco] Firewall Device [cmdb_ci_firewall_device] All Cisco Firewall devices.

    Class columns

    CMDB CI Class Models: Release 1.10.0 adds the following columns to the respective classes.

    Table 1. IP Firewall [cmdb_ci_ip_firewall] class
    Added columns Description
    Hardware Operating System OS running on the hardware.
    Hardware OS Version OS version running on the hardware.
    Table 2. Firewall Cluster [cmdb_ci_firewall_cluster] class
    Added columns Description
    Hardware Operating System OS running on the hardware.
    Hardware OS Version OS version running on the hardware.

    CMDB CI Class Models: Release 1.12.0 adds no columns to the existing classes.