SNMP Monitoring over VPN tunnel

Unanswered Question
Mar 28th, 2008

I am trying to monitor my ASA 5505. This asa is connect via a ip-sec tunnel to our network.

I have no problems with snmp monitoring devices behind the ASA, but when trying to monitor the asa itself I do not get a SNMP response.

Has some got a solution for this?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
acomiskey Fri, 03/28/2008 - 08:18

Add the outside interface to the interesting traffic acl....

access-list outside_1_cryptomap extended permit ip host

Also, add the mirror of this acl to the other end.....

access-list outside_1_cryptomap extended permit ip host

merabtavart Fri, 07/22/2011 - 02:28


Advantage    of VPNTTG over other SNMP based monitoring software’s is  following:    Other (commonly used) software’s are working with static OID  numbers,    i.e. whenever tunnel disconnects and reconnects, it gets  assigned a   new  OID number. This means that the historical data, gathered  on the    connection, is lost each time. However, VPNTTG works with VPN  peer’s   IP  address and it stores for each VPN tunnel historical  monitoring   data  into the SQL server and into the RRD (Round Robin  Database) file.



This Discussion