Show conn info via snmp

Similar Messages

• LLDP info via SNMP

  I'm aware of the show cdp and show lldp CLI commands, but I want to pull the same information out of the devices using SNMP Gets, but cannot seem to find any information relating to that.
  Thanks in advance.
  Walt

  2 years later, how's LLDP support via SNMP?
  If Cisco does not support LLDP via SNMP, please remove the wrong information from
  http://tools.cisco.com/ITDIT/MIBS/MainServlet?ReleaseSel=2514&PlatformSel=231&fsSel=705
  Stop lying!

• Cisco ASA get 'show conn all long' info through snmp

  Hi,
  I would need to gather the info about all established connections that I can see on the ASA terminal by using the command
  show conn all long
  for monitoring purposes through snmp. I am browsing several MIBs&OIDs but no one seems to contain this info.
  Does anyone know if this is possible ?
  Thanks.
  Vlad

  im looking for the solution ? did u ever find out if this was possible?

• Get PIX Connections via SNMP

  Hello Experts!
  Is there any way to query my PIX 515e to get a list of all it's current connections? I realize this could be ALOT, but if I get a trap that the connection upper-threshold has been reached, I would like to know what those connections are. Is there a way to do this via SNMP? Or any other way than logging in and doing a show conn? Thanks in advance!

  There is no SNMP message that can be used to define a upper threshold for the connections that can be used to check the connection status. You can use a script that can automatically login and check the connections on your device or you can use some network management software for this.

• Xlate count via SNMP on a ASA

  Hi
  Does anyone know of af OID to get the count of active xlate´s per PAT IP address?
  I have a firewall that is performing PAT on several IPs that is defined via object. I need to find a way to get the ammount of xlates on a "per public IP" level.
  I know that i can get the "show conn" via SNMP but this is all the connections globally to the ASA and not on a per-PAT bases. 
  So far the only way i have managed to get something out of the ASA is to do a "show xlate | inc [PUBLIC-IP]" and then count the lines.

  Those don't seem to be supported in ASA 9.x... not in "show snmp-server oidlist".
  natAddrMapAddrUsed might be what you're looking for... but, if you have multiple sources NATed to the same destination, finding the appropriate entry in that table will take some doing.

• How do I get the Username of an AnyConnect VPN session via SNMP?

  I would like to monitor the usernames of my AnyConnect sessions via SNMP.  This will allow me to monitor, graph, report, and alert using Solarwinds Orion (or any other SNMP software).
  I would like to monitor this on my ASA 5520. I have run the show snmp-server oidlist command and I can see all of the OID's that I can poll. However, the OID I would like to poll crasUsername (1.3.6.1.4.1.9.9.392.1.3.21.1.1) is not working.
  Does anyone know how I can monitor the username of a AnyConnect session via SNMP?
  Below is a link to a great MIB reference for ASA Remote Access Monitor OID list.
  http://www.mibdepot.com/cgi-bin/getmib3.cgi?i=1&n=CISCO-REMOTE-ACCESS-MONITOR-MIB&r=cisco&f=CISCO-REMOTE-ACCESS-MONITOR-MIB.my&v=v2&t=tree

  Hello PDX,
  Welcome to the HP Support Forums!
  To get your issue more exposure I would suggest posting it in the commercial forums since this is a commercial product. You can do this at Commercial Forums.
  Regards,
  JERENDS
  I work on behalf of HP
  Please click “Accept as Solution” if you feel my post solved your issue, it will help others find the solution.
  Click the “Kudos Thumbs Up" to the left of the reply button to say “Thanks” for helping!

• Bridge does not shows file info, just thumbnails, what's going on? already adjusted in preferences, but still only thumbnails and not the info of the file

  Bridge 8.5 does not shows file info, already adjusted in preferences but still just showing thumbnails only.
  Can anyone please help?
  Thanks

  The single download means that you won't be able to redownload it from the store without paying, either on a computer's iTunes or an iOS device - it doesn't stop you from copying the audiobook to your other computers or syncing it to your iOS devices, you just can't redownload it. (I believe that they are all supplied to Apple by audible.com, so I assume that it's them requiring the one-time download.)
  You can download audiobooks on your computer's iTunes and sync them to iOS devices, you do not have to buy them directly on the device (if you do then you can copy them back to your computer's iTunes library by connecting the device and using the File > Devices > Transfer Purchases menu option on your computer's iTunes).
  What you are doing to sync them should work i.e.
  - connecting the iPad to your Mac
  - selecting the iPad on your Mac's iTunes
  - selecting its Books tab and selecting the audiobooks that you want to sync to the iPad and syncing/applying that selection.
  You should then get an audiobooks option in the Music app on your iPad. If they aren't appearing there  then do they show in Settings > General > Usage > Music on the device - if you have audiobooks on the iPad then they should be listed there under an 'audiobooks' heading.
  By 'restart the iPad' do you mean a soft-reset : press and hold both the sleep and home buttons for about 10 to 15 seconds (ignore the red slider), after which the Apple logo should appear - you won't lose any content, it's the iPad equivalent of a reboot.
  You could also try closing its Music app via the iPad's taskbar : Force an app to close in iOS.
  And do a soft-reset and retry syncing.
  I assume that music and other items sync ok ?

• Question about ACE show Conn command (tcp duration)

  Hello,
  I was checking connections and noticed that I would see the initial connection, but after a short time the connection quits showing up in the counters and the “show conn” command. However the user is still up and working.
  This is the command I used:
  sho conn serverfarm STAGING-HTTPS detail
  The output shows all the connection info from source to destination, and in the ESTABLISHED state.
  However, after maybe 2~3 minutes, when I up arrow I don't see any connection info. The web page is still up. If I refresh the web page, I do see the connections come in.
  Can someone kindly point me to a document or provide an answer on how long should the connection be stored before they are flushed?
  Config profile:
  4 real servers
  HTTPS protocol
  Leastconn for predictor
  sticky based on src/dst IP
  Thanks,
  Raman

  Raman,
  If you would play with a sniffer capture, you could answer the question yourself.
  If the browser loads a flash object or a java applet, once it is loaded, you can still work on the page but there is no data transfer.
  with a sniffer tool you could see the browser closing the connections.
  The default TCP idle timeout on ACE is 1 hour.
  Gilles.

• No ifIndex table when querying via SNMP

  Hello, looking for suggestions before opening up a TAC case.
  Just received a Nexus 3000 with NX-OS 6.0(2)U2(1) and when I attempt to walk the ifTable via SNMP the ifIndex table is not present. Walking the ifIndex table itself results in  "IF-MIB::ifIndex = No Such Instance currently exists at this OID". show interface snmp-ifindex is fine and the rest of the ifTable displays properly.
  My switch config is just a basic RO community with no ACL's or anything yet. A pair of the same switches with NX-OS 5.0(3)U5(1a) display the table no problem.
  Any suggestions, or has anyone else seen this?

  Did you navigate the FireFox plugin to the DB file that is in the Simulator app bundle:
  /Users/YOURUSERID/Library/Application Support/iPhone Simulator/User/Applications/SYSTEMGENERATED_NAME/YOURAPP.app
  or
  /Users/YOURUSERID/Library/Application Support/iPhone Simulator/User/Applications/SYSTEMGENERATEDNAME/Documents
  Message was edited by: xnav

• Incorrect bandwidth values via snmp?

  I have two cat 2900 16 port switches, for some reason when i read the bandwidth utiliz. values via snmp (PRTG, and MRTG give same results) i only show a steady 1-1.5 kbps up and down flow with occasianal spikes of the upstream to 2 or 3kbps..this is the same across all ports, now if i send something across the switch, nothing changes, nor is any other traffic i throw at the switch reflected... the peculiar thing is if i access the switch's web interface while conducting a 10.5 mbit transfer across the switch, i will see a spike of correct values (as i read on the hosts machines) reported by the snmp agents but only for 2 or 3 reads across 5 second periods..then its back to what i described again.. I've done factory resets on both and both of these snmp agents correctly read the bandwidht values from my dell and intel switches so i've ruled the agents out..
  any ideas?
  thanks, joe

  Thanks for the quick reply but thats not the problem. its not a units issue as i see somekind of traffic but when i'm maxing out the 100mbps port i see no change in the snmp reported graphs..but like i said i will see the actual values if i'm reloading or access the switches web interface.
  this is such a weird issue..and its affecting two swithces that are the same model but from different places.
  any ideas?

• Conn id in 'show conn' display - ACE

  I would like to identify the latest connections in the 'show conn' table. Does the table build up in a linear fashion i.e. the latest con is the last row. Can timestamp be enabled on the 'show conn' display. Also, how is the conn id generated. I don't see it in sequence.

  ACE is actually the combination of 3 CPU.
  The Control Plane (CP) which is the management side - holds the configuration, answers snmp queries, sends probes,...
  The IXP are the 2 CPU actually switching the traffic.
  They are also called network processors or NP.
  This is the 2nd column of the 'show conn'.
  Gilles.

• Monitor pki certificate status via snmp

  I recently discovered that a number of our remote sites could not connect to each other via dmvpn due to various certificate problems.
  They could all connect to our hubs due to pre shared keys, so the problem was never discovered before a colleague discovered MM_KEY_EXCH states on some of the routers.
  I therefore want to monitor the state of the certificates, preferably via snmp.
  I found a nice looking mib,CISCO-PKI-PARTICIPATION-MIB, on http://tools.cisco.com/Support/SNMP/do/BrowseOID.do?local=en&translate=Translate&objectInput=1.3.6.1.4.1.9.9.505
  but none of our routers seem to support it, and when you click on "view supporting images", it also specifies: "There is no supporting images available for
  CISCO-PKI-PARTICIPATION-MIB"
  Do you have any experience on how to monitor certificate status on your Cisco routers?

  No real solution. I found that they all needed to connect to one specific router, so I fire off "show crypto isakmp sa | inc MM_KEY_EXCH" on that specific router via our management platform, and receive a mail with the output on a daily basis.

• N5K - monitor vPC status via SNMP

  Can I monitor a vPC via SNMP?
  I'm interested in "Peer status", "vPC keep-alive status", "Configuration consistency status" and "vPC role".
  N5K1(config-if)# show vpc
  Legend:
  (*) - local vPC is down, forwarding via vPC peer-link
  vPC domain id                   : 1
  Peer status                     : peer adjacency formed ok
  vPC keep-alive status           : peer is alive
  Configuration consistency status: success
  vPC role                        : primary

  Good question, I also want to know how we can do that.
  Sent from Cisco Technical Support iPad App

• Polling port-profile max-ports via snmp

  Team,
  We have been caught out by the default setting of max-ports=32 in our cloud environment. Our processes dictate that we cannot simply go and change this setting across all customers so instead we need to monitor the setting for any customers geting clsoe to 32.
  Can someone tell me if there's an oid to query port-profile information via snmp for a Nexus 1000V?
  I've done some simple searching and couldn't find it.
  Failing that, do we have to execute a script to login and do a show run?
  Ryan

  BRIDGE-MIB has the OIDs to monitor RSTP. 
    topologyChange NOTIFICATION-TYPE
         -- OBJECTS     { }
         STATUS      current
         DESCRIPTION
             "A topologyChange trap is sent by a bridge when any of
             its configured ports transitions from the Learning state
             to the Forwarding state, or from the Forwarding state to
             the Blocking state.  The trap is not sent if a newRoot
             trap is sent for the same transition.  Implementation of
             this trap is optional."
         ::= { dot1dNotifications 2 }
  dot1dStpPortState OBJECT-TYPE
         SYNTAX      INTEGER {
                         disabled(1),
                         blocking(2),
                         listening(3),
                         learning(4),
                         forwarding(5),
                         broken(6)
         MAX-ACCESS  read-only
         STATUS      current
         DESCRIPTION
             "The port's current state, as defined by application of
             the Spanning Tree Protocol.  This state controls what
             action a port takes on reception of a frame.  If the
             bridge has detected a port that is malfunctioning, it
             will place that port into the broken(6) state.  For
             ports that are disabled (see dot1dStpPortEnable), this
             object will have a value of disabled(1)."
         REFERENCE
             "IEEE 802.1D-1998: clause 8.5.5.2"
         ::= { dot1dStpPortEntry 3 }

• GSS monitor via snmp

  Hello,
  Is it possible to get the dns stat's of the GSS via snmp?
  On this moment we have found OID's of same basic stuf like memory; cpu load; interface stats
  memAvailReal 1.3.6.1.4.1.2021.4.6
  ssCpuRawIdle 1.3.6.1.4.1.2021.11.53
  ifInOctets 1.3.6.1.2.1.2.2.1.10
  Kind Regards,
  Gerrit Frans van pelt

  Good question. I would like this info too.