SNMP Monitoring VPN 3000

I'm monitoring a set of 3060 concentrators using SNMP but all I'm getting is bandwidth. I would like to know if I can get more information from it like CPU, Load and what ever else I can get from it? What application do you think I would be able to get more information from it.
Thanks in advanced.

Ruben,
The MIBs for the concentrator is here:
http://www.cisco.com/public/sw-center/netmgmt/cmtk/mibs.shtml . The link takes you to the page where you can get to all the Cisco MIBs. I found the OIDs that I wanted to monitor which were the following:
.1.3.6.1.4.1.3076.2.1.2.17.1.6.0 - Peak VPN Users
.1.3.6.1.4.1.3076.2.1.2.17.1.9.0 - Active Sessions
What you probably want to see as well is active Site-To-Site, you can use this OID:
.1.3.6.1.4.1.3076.2.1.2.17.1.7.0 - Active L2L Sessions
In order to find the OIDs, use the GetIF utility and download the MIB package they have. It is a large zip file and contains all these MIBs too. Use the MIB walker and go down the tree to .iso.org.dod.internet.private.enterprises.altigaRoot.altigaGeneric.altigaMib
Javier

Similar Messages

  • SNMP Monitor PIX throught VPN tunnel

    I have two Cisco PIX 515e firewalls configured in fail-over. The primary PIX has private address 192.168.1.5 and the secondary PIX (standby) has a private address 192.168.1.6. The PIX firewalls are running IOS 6.3.3. I'm connecting to the PIX firewalls through a VPN tunnel (PIXes terminate VPN tunnel) and my monitoring system uses SNMP to monitor devices behind the PIX firewalls and the primary PIX private IP address. I would also like to monitor the standby IP address 192.168.1.6 from the tunnel and have been unsuccessful thus far. I can do this from behind the PIX, but not through the tunnel (only the primary PIX).
    Is there a way I can SNMP monitor (and PING) the IP address of the standby PIX through the VPN tunnel?
    Please send email to [email protected]
    Thank you,
    frank

    Paul,
    Thank you for your email. Yes, we currently use this command to monitor the active private IP of the active PIX firewall through the VPN tunnel. What I would like to be able to monitor is the private IP address of the standby PIX firewall (has a different IP address while in standby mode) – would like to make sure that it too is up and running (I can do this today for other PIX firewalls from the inside, but not through the tunnel.
    Best regards,
    Frank Pikelner
    Hi Frank,
    Don’t think you are going to get that to work due to the routing issues. Sending syslog messages to the snmp server is the only way I’ve done it in the past. Have you given this a try?
    http://cisco.com/en/US/products/sw/secursw/ps2120/products_configuration_guide_chapter09186a008017278a.html#wp1052111
    http://cisco.com/en/US/products/sw/secursw/ps2120/products_system_message_guide09186a00800896ac.html
    I hope this is of some help.
    Cheers,
    Paul.

  • How to get the traffic split up in VPN 3000 Concentrator?

    Hi,
    Requirement:
    I want to parse & analyze the Cisco VPN 3000 Concentrator logs and provide the report for the happenings using the log.
    Issue:
    I am able to get the traffic split up for Cisco Pix501 thro' it's logs for the VPN connections. But in Cisco3000VPN Concentartor, i am not able to get the traffic details for any PPTP/IPSec connections. It simply provide the overall traffic log when the seeion is closed. For example below is my traffic log,
    <189>14014 07/23/2004 19:16:24.640 SEV=4 AUTH/28 RPT=41 192.168.101.41 User [sarav] Group [Base Group] disconnected: Session Type: PPTP Duration: 0:16:37 Bytes xmt: 216 Bytes rcv: 38023 Reason: User Requested
    My Question:
    Is there any configuration/solution available to get the live traffic[traffic split up] thro' that VPN connection for Cisco3000VPN Concentartor?
    Please help me in getting this issue resolved.
    Thanks to all helping me to resolve the issue.
    Thanks.

    You get the details from the Pix logs not because of VPN functionality but because the Pix is a stateful device the manages and logs each and every session.
    The VPN 3000 is not stateful or session aware. The best you could do is provide packet level logging, but this would generate enormous log files that would need to be statistically analyzed to provide useful information.
    Your best options are to run their traffic through a Pix firewall for the session logging, use the first hop router inside the network that can provide Netflow export for analysis, or use a probe to monitor the traffic that can discern the indivdual flows. For the last two, ntop can analyze netflow of mirrored sessions to provide protocol analysis by src/dest IP, top protocols used, etc.
    -Shannon

  • Can't Ciscoworks LMS 4.2.2 back up the configuration of Cisco VPN 3000 concerntrator?

    Hi All,
    In VPN 3000 concerntrator, I've enabled tftp, telnet, snmp. I've also successfully added the concerntrator into Ciscoworks LMS 4.2.2. All the ports are verified open to Ciscoworks. No question mark shows next to this device in the device management of LMS. However, when I run configuration Achive Job, I always get the following failed message. Can anybody tell me how to to back up the configuration of Cisco VPN 3000 concerntrator in Ciscoworks LMS 4.2.2? Thanks in advance.

    Sorry, but apparently not. Please see the supported devices table (here).
    That table states, among other things:
    The following features are not supported:
    Network Topology Layer 2 Services
    Fault Management
    Configuration Deploy Protocols: HTTPS, TELNET, SSH, SCP, TFTP, RCP
    Configuration Fetch Protocols: HTTPS, TELNET, SSH, SCP, TFTP, RCP

  • VPN 3000 and Radius authentication/authorization

    hello.
    I have to configure RADIUS authentication
    with a VPN 3000 concentrator.
    I'm completely new with this product
    (the concentrator).
    It seems that, if I want to perform authentication
    of username and password with Radius, then I also have to download the entire VPN configuration from the same Radius, using the attibute set loaded with the appropriate dictionary.
    am I rigth with this supposition?
    I mean: should be possible to authenticate only an username and password externally on RADIUS, while continuing to mantain the user (or group) VPN configuration locally in the concentrator?
    thank you.
    Davide

    No, downloading the entire VPN configuration from the RADIUS server is not necessary. If you are new to configuring VPN's on concentrators or the Concentrator iself, having a look at the support page will be agood idea. It is accessible at http://www.cisco.com/pcgi-bin/Support/browse/psp_view.pl?p=Hardware:Cisco_VPN_3000_Concentrator

  • SNMP monitoring of Oracle 10g?

    Hi there,
    I'm curious about using SNMP technology to monitor Oracle 10g databases.
    I've done some light reading on the subject and I'm now at the stage
    where I have a few questions.
    -What exactly do I need to configure in my Oracle 10g environment?
    -Is Enterprise Manager the best and/or only UI available for me
    to carry out configuration chores?
    -I see no SNMP specific documentation for 10g; why is that?
    -I do see a good document for 9i:
    Oracle SNMP Support Reference Guide Release 9.2.0 Part Number A96672-01
    http://download-west.oracle.com/docs/cd/B10501_01/em.920/a96672/toc.htm
    Is the above document suitable for configuring SNMP monitoring of Oracle
    in a 10g environment?
    -moi

    I'm able to set up traps via the EM website following these instructions:
    http://download-west.oracle.com/docs/cd/B19306_01/em.102/b40002/notification.htm
    However, what I'm really looking for is the ability to do snmp gets. I need functionality similar to how the old school DBSNMP under OMS used to work. These commands seem to be totally missing. I found the following documentation:
    http://download-east.oracle.com/docs/cd/B19306_01/em.102/b16244/chap2.htm#sthref74
    Which indicates there should be an snmp subfolder under $ORACLE_HOME/sysman, but that folder does not exist in my installation. I installed Oracle EE. Is there another package I need to install in order to make the subagent run like a normal snmp agent?
    So far if I do a:
    emctl start dbconsole
    that starts up the EM Website and I can use that no probelm. If I...
    emctl start agent -- I get:
    Starting agent ... started.
    issuing a 'emctl staus agent' gives me a normal status message. Things start to get strange when I try to start the subagent, which to my understanding is what I need running in order to to talk to net-snmp, which is the master agent running on this host. Here's what happens:
    [zaro@cheetah bin]$ ./emctl start subagent
    Oracle Enterprise Manager 10g Database Control Release 10.2.0.1.0
    Copyright (c) 1996, 2005 Oracle Corporation. All rights reserved.
    Starting sub agent .....started
    [zaro@cheetah bin]$ ./emctl status subagent
    Oracle Enterprise Manager 10g Database Control Release 10.2.0.1.0
    Copyright (c) 1996, 2005 Oracle Corporation. All rights reserved.
    Sub agent is not running..
    I guess my question is how do I get to have the ability I used to have back in 8i to start up dbsnmp and then have my SNMP monitoring app "discover" the agent and use its instrumentation to get data?

  • Is there anyway to monitor network traffic on the newer Time Capsules, similar to the SNMP monitoring previously?

    Is there anyway to monitor network traffic on the newer Time Capsules, similar to the SNMP monitoring previously?

    Can I use a real router and still have the Time Capsule for backups etc?
    Yes, that is what Bridge Mode is for.  Just connect the Time Capsule to a LAN <--> Ethernet port on your "main" router.

  • Prime\SNMP Monitoring of dynamic interfaces

    Hi - Is anyone aware of a method of monitoring the bandwidth utilisation on a dynamic interface on a WLC?
    I'd like to monitor the traffic on each dynamic interface to generate usage stats on centrally switched guest and employee SSID's.
    Thanks

    You have to get that stats from switch where you defined those SVI. WLC dynamic interface not terminate any L3 traffic  & switch SVI is the place to go.
    If you have netflow monitoring or simple snmp monitoring tool, you can get that stats from the switch.
    HTH
    Rasika
    **** Pls rate all useful responses ****

  • Recommended product for syslogging and snmp monitoring

    Hi,
        We currently use KIWI syslog but can anyone recommend a better product for syslogs from Firewalls, Routers and Switches. Our current product creates a seperate text file per day per device. Ideally I would like all these to be combined (or combinable for display purposes) into one log that shows to update realtime and have the ability to filterout "background noise" - stuff we know is acceptable, as well as being able to run simple or quick searches and reports. Ideally for asbout 200+ devices.
         Am I too hopeful or is there a product out there that can do this (that also will not break my companies bank account).
         Also, recommended products for SNMP monitoring if better than we currently use would be useful - currently using Orion and SNMPc.
    Regards
    Adrian

    Adrian,
    We use syslog-ng for RHEL. It can do what you need as far as writing to files and filtering out background noise, but it is not a search/reporting tool. If KIWI does the latter, I imagine you could tell it to read from the file that syslog-ng creates.
    It is open source for writing files through version 3.1.4. Later versions require licensing to write to files or if you are using a Windows OS.
    http://www.balabit.com/downloads/files/syslog-ng/open-source-edition/3.1.4
    Here are some other options:
    Rsyslog: http://www.rsyslog.com/
    Splunk: http://www.splunk.com/
    Snare: http://www.intersectalliance.com/projects/index.html
    Hope this helps.
    Steve Lee
    Emory University

  • Monitoring VPN Clients

    Hi guys,
    I have a need to monitor VPN clients where I have TMG 2010 as my VPN server.
    I just want to know from where clients are initiated their vpns.I mean their vlaid IPs not which TMG gives them.
    Is there any third party software to do this?
    Thanks

    Hi,
    When configuring the VPN connection on the TMG server, which kind of IP address assignment method you had selected?
    If you select the static address pool, then the remote VPN clients would obtain IP addresses from this range.
    If you have a DHCP server and select DHCP option, then
    TMG firewall will request 10 IP addresses from the DHCP scope each time to assign its VPN interface an IP address and to assign IP addresses to the VPN clients.
    More information:
    Configuring VPN address assignment
    Best regards,
    Susie

  • Monitoring VPN activity

    Hello all,
    I have couple of IKE/IPSEC VPN client connexions enabled over an ASA 5515 and I would like to log VPN activity (user login name, connection time and duration, ...) like information I can see going to "Monitoring >> VPN >> VPN Statistics >> Sessions.
    Thanks for you help
    Regards,

    Thanks Jeff.
    I use Syslog Wacther.
    I have looked for "%ASA-4-722051" or "%ASA-4-113019" but I will get 113019 and it reffers to a disconnection ... :/
    I will check around for the global list of identifiers ... and let you know

  • SCOM 2012 SP1 - Setup SNMP monitoring = ping OK, no response SNMP.

    Hello, 
    I've tried the snmp monitoring in lab domain, everthing work. Now I work in the production environment, but I can't  make work the snmp. I've tried only snmp, but the same error occure. The Ping is ok, all my firewalls rules allows snmp and ping over
    the domain. 
    But when I launche the discovery, I've got an error after "No Response SNMP". I've analized the network with wireshark, I see the snmp get send to scom to the network device, but the netowrk device, reply " Destionation unreachable (Port unreachable)".
    I've check with "netstat -ano -p udp" but I don't see the port 162, the 161 is open and snmp.exe service use it. But 162 is not open and Healthservice.exe doesn't use it.
    I tried to reboot the server, but nothing change. And I check all my configuration, and it's the same in my lab domain and te production.
    Anybody have the same issue? Or a workaround? 
    Thank you in advance.
    KimBaxZ

    Hello Roger, 
    1. Windows Firewall 
    a. SNMP service authorized 
    b. SNMP trap not authorized 
    c. PING.exe authorized 
    d. HealthService.exe authorized 
    2. SNMP service configuration 
    a. Security => Community name + Right OK
    b. Security => Accept SNMP packets from any host
    3. SNMP trap service disabled 
    4. The network device (cisco switch is already configured and the snmp work well)
    a. It's possible to execute a snmp walk on the switch, and we get all the data (we use a différents
    computer to do this, like a linux server on the same network) 
    5. We use snmp v2 on the switch, and during the discovery scom, send v2c snmp get to the switch with the good community name.
    6. I tried to forge a snmp v2 packet and send them to the scom server, wireshark see the packet
    During the discovery the switch get the snmp request, but he can't reply, the snmp trap port (162) on the scom server is not open. And I don't know why. 

  • Nagios SNMP Monitoring for NSS devices ?

    Has anyone managed to utilise the inbuilt SNMP functions of the NSS with nagios efficiently ?
    if so, what plugins are you using and how have you got them configured ?
    Steve

    There are some threads in this forum regarding this already. It is not as easy as monitoring a switch or router. the controllers combine the AP mac with the oid for unique lines. You can glean some snmp info off the controllers by using some of the generic OIDs and controller specific OIDs, but you will need an snmp monitoring program that you can load the WLC MIBs into and then tailor your monitoring of the controller based on that. I use Cacti, which is really awesome, but I would need to grab the complete OID off each controller based on the APs on it, which is fine as long as the AP is on that particular controller and not another one. snmpwalk is your friend in this case.
    OID+mac = results

  • SNMP Monitoring behind SCOM Gateway Server

    Hi All
    Is it possible to monitor Network devices / SNMP that sit behind a SCOM Gateway server? If so, how do these get discovered?
    I have a need to monitor devices like HP printers, WAP, JetDirect cards, EPOS equipment etc. on a site that doesn't have SCOM on-premise.
    Are there any limitations to this?
    Thanks

    Hi,
    Yes, it is possible. when you create discovery, you may specify that it should run from gateway server.
    On the device you want to monitor, set your SNMP public community string to point to the IP address of the SCOM Gateway server. In the SCOM Administration console, choose Network Devices in the Discovery Managment Wizard choose network device and click next.
    In the next screen enter the IP address of the network device you want to monitor and under the mangment server drop down choose the gateway server who’s IP you entered in the SNMP string earlier.
    Here is a similar thread for you reference:
    https://social.technet.microsoft.com/Forums/systemcenter/en-US/475cf4f5-c724-4c7c-808e-7265b304b0ba/snmp-monitoring-over-gatewayserver?forum=operationsmanagergeneral
    In addition, you may check is there any management pack for your devices and import them into your management group.
    Regards,
    Yan Li
    Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact [email protected]

  • SNMP Monitoring shows bandwidth x2

    I have tried a couple SNMP monitoring applications on both my Mac and Windows machines and both are showing my WAN usage as double what it should be.  I have a 15Mbps connection to the Internet and when I do a speedtest it shows as 30Mbps on the mgi1 interface.  I have noticed this for awhile (pretty sure several firmware versions) but thought I would reach out to the community finally.  I am running 7.6.4 on my TC Gen4.

    Hi deepu vc,
    For bandwidth monitoring you should use the SNMP Traffic Sensor or a NetFlow Sensor. PRTG offers various versions:
    NetFlow 5
    NetFlow 9
    IPFIX
    I linked the corresponding pages of the PRTG manual. Within the next few weeks there will also be a new Trap Receiver Sensor.
    I hope this helps...
    Kind regards,
    Florian from Paessler AG

Maybe you are looking for

  • How do I use the fonts in my font book in Word?

    I have created several documents and used fonts that I like, such as Sand, Verdana, and Textile. I imported them into my font book, but they are not available in my Word or Excel documents. Anyone have any ideas on how I can use them?

  • Help with Places no longer working in iPhoto 9

    Since an update about a month ago, Places no longer works with iPhoto 9 version 8.1.2 (424). Where GPS data is present, the map tries to open but all I get is a dull green screen where the map should be. My Nikon View software Geotag works with the s

  • White screen - HW issue or not?  Fix?

    A couple of days ago, my iPhone's screen went entirely white.  It's a 3GS. I'm thiking some hardware failed, but that's not entirely true.  If I reboot it, I see the normal black background, white apple logo.  Then it comes up and I see my normal loc

  • LR4.3 "Correction" Brush doesn´t work anymore_ Overlay arrow active

    Hello LR 4.3 world I´m working with LR 4.3 for 3 month but since  days the "correction" brush doesn´t work anymore. The overlay button is still active and the system reboot I tried more than once ;-). I miss this function and maybe one of you is able

  • AirTunes Speaker Names Not Updating

    Recently I moved each of my two Airport Express units to different rooms in my house. As a result, I decided to rename each unit to match the room it is now located in. When I open Airport Utility each unit is listed with its new name. However, when