Arista EOS
Version: Arista EOS 4.23.x and above
Extensible Operating System (EOS) is Arista’ s network operating system. It comes as one image that runs across all Arista devices and in virtual machines (VM). EOS is a scalable network Operating System (OS) that offers high availability, streamlined maintenance processes, and enhanced network security.
Arista EOS when configured, sends events to Netsurion using syslog.
Arista EOS sends events like switch configuration, interface status, user logon activities, etc. Generates reports on user login success, user logout, and configuration changes on Arista EOS. It contains username, client IP address, login status, interface status, and message. Graphically displays user login and logout by usernames, configuration changes by usernames, etc. It generates alerts, network interface card shutdown, user login fails and switch restart, etc.
- Security – User login failed events
- Operations – User login and logout, switch interface events
- Compliance – Switch configuration events
Once Arista EOS is configured to deliver events to Netsurion Open XDR then alerts, dashboards, and reports can be configured into Netsurion Open XDR.
The following are the key Data Source Integration available in Netsurion Open XDR.
Alerts
| Type | Name | Description |
|---|---|---|
| Security | Arista EOS – user login failed | This alert will trigger whenever the user tries to login to Arista switch but fails. |
| Operations | Arista EOS – Agent restarted | This alert will trigger whenever Arista switch agent restarts. |
| Operations | Arista EOS – Network interface card shutdown | This alert will trigger whenever Arista switch network interface card shuts down. |
| Operations | Arista EOS – System restarted | This alert will trigger whenever the Arista switch restarts. |
| Compliance | Arista EOS – Configuration changed | This alert will trigger whenever the Arista switch configuration is changed. |
Reports
| Type | Name | Description |
|---|---|---|
| Security | Arista EOS – User login failed | This report provides information related to user login failed, and reason for failed login. |
| Operations | Arista EOS – User login and logout activities | This report provides information related to user login and logout into Arista switch. |
| Operations | Arista EOS – Switch Interface status | This report provides information related to Arista switch interface status like instance, interface detail, and interface status. |
| Compliance | Arista EOS – Commands executed | This report provides information related to the command executed on the Arista switch like username, executed command detail, etc. |
Documentation
The configuration details are consistent with Netsurion Open XDR 9.2 and later, and Arista EOS.
Download Integration Guide and How to Guide for configuration instructions and more information.