I am trying to monitor traffic on an ASA 5510. I was hoping to use SNMP to get this data to a monitoring/graphing tool such as cacti. I already have SNMP giving me the overall traffic picture.
I can easily see the data I want to capture by using ASDM and the Firewall Dashboard: the info is Usage Status, top 10 services. I want to capture this for network management reasons.
The published OIDs for the ASA device do include tables enabled by 126.96.36.199.188.8.131.52.4184.108.40.206.1.0 etc.
which might help me get this info, but most of the useful 491 isn't available or applicable it seems.
Am I right in thinking that I ought to be able to get this info out and logged, or is this a trickier exercise than I anticipated?
Is SNMP the wrong way to go about this?
To be precise, I want to know how much of the passed traffic is in the VPN tunnels, how much is http, how much is email, how much is FTP etc..
Any suggestions welcome, no matter how lateral