Re: Cisco 151e PIX & MRTG

From: Spack (news_at_worldofspack.co.uk)
Date: 03/09/05

  • Next message: Systemguy: "Re: Urgent help needed. How do I shutdown ZA from command line?" 
    Date: Wed, 9 Mar 2005 16:54:01 -0000

    "charleh" <charleh@macburgerdonaldsking.com> wrote in message
    news:398in8F60nfimU1@individual.net...
    > sorry thats a 515e
    >
    >
    > "charleh" <charleh@macburgerdonaldsking.com> wrote in message
    > news:398hmvF5tvr68U1@individual.net...
    >> Hello and help.
    >>
    >> I'm pretty new to this cisco firewall business being a support monkey. We
    >> have MRTG and would like to get it running to monitor our PIX (obviously)
    >> but I'm stuck at the first hurdle. According to the MRTG guide for
    >> Windows
    > I
    >> need the SNMP port number, the SNMPOID and the read-only SNMP community
    >> string for the device.
    >>
    >> I know the latter isn't public as I've tried that and I've managed to
    > telnet
    >> into the device but that's about it.
    >>
    >> I'm also thinking that I'll need to see if SNMP is configured or indeed
    >> turned on?
    >>
    >> Can anyone help me out and list the commands I need to gather this info?
    >>
    >> Many thanks.

    I've got MRTG working with mine here.

    First enable SNMP, and set the host that is going to be allowed to do the
    SNMP query.

    snmp-server host inside a.b.c.d

    Then setup the SNMP read string.

    snmp-server community <snmpstring>

    There is a MIB download somewhere on the Cisco site for the OIDs, I vaguely
    remember using that in conjunction with SNMPWalk to find the OIDs I wanted
    to use. However, the traffic OIDs are standard and MRTG can use the single
    number requests to get them. Interface names below might not match yours, if
    not just switch the numbers as necessary. w.x.y.z should be replaced with
    your PIX internal address, and snmpstring with your SNMP read string. I have
    a PIX 515UR with 3 interfaces - inside (interface 1), outside (interface 2),
    and dmz (interface 3).

    Outside interface
    Target[w.x.y.z_1]: 1:snmpstring@w.x.y.z

    Inside interface:
    Target[w.x.y.z_2]: 2:snmpstring@w.x.y.z

    DMZ interface:
    Target[w.x.y.z_3]: 3:snmpstring@w.x.y.z

    To get the connections in use figure, you need the OIDs.

    Target[w.x.y.z_con]:1.3.6.1.4.1.9.9.147.1.2.2.2.1.5.40.6&1.3.6.1.4.1.9.9.147.1.2.2.2.1.5.40.6:snmpstring@w.x.y.z

    I only use MRTG to generate 4 charts, so that's all I have in my config.

    Dan

  • Next message: Systemguy: "Re: Urgent help needed. How do I shutdown ZA from command line?"

    Relevant Pages

    • Re: MRTG IP Traffic for one IP address
      ... :>the MRTG Linux version program with SNMP. ... you can't get at netflow information via SNMP. ... of the IP addresses on the interface. ... and then read out the stats as interface stats... ...
      (comp.dcom.sys.cisco)
    • Re: Cisco 151e PIX & MRTG
      ... Enable SNMP is not a recommended practice in general. ... > There is a MIB download somewhere on the Cisco site for the OIDs, ... Interface names below might not match yours, ...
      (comp.security.firewalls)
    • Re: Compiling daily network usage statistics
      ... > you might try mrtg? ... > ethernet useage on any interface a box has via snmp. ... perl script and maintaining a little state someplace would've been a better ...
      (comp.os.linux.security)
    • Re: Marina base station coverage?
      ... the QoS system and SNMP based usage tracking and billing system. ... I use SNMP and MRTG to gather per IP traffic statistics. ... The accumulated traffic graphs are setup to reset on the first of the ...
      (alt.internet.wireless)
    • Re: SNMP Fundamentals (Hardware vs. Software)
      ... > SNMP is wrong. ... > multiple cards, and two interfaces on each card. ... > count on the individual interface, the total on a card, and the total on the ... > SNMP implementation before the pattern continues. ...
      (comp.programming)
    • Quantcast