PIX with SNMP

Answered Question
Aug 3rd, 2009
User Badges:

I have a PIX 515 version 6.3 software.


I use What's UP Gold for some basic network monitoring. What I really want to keep an eye on for the PIX is


sho connections


How do I do that with SNMP? I can't seem to find it in the MIB at all...and does Cisco offer any sort of software to make monitoring the PIX (CPU, Memory, Connections, etc) nice and easy?


Thank you.

Correct Answer by Collin Clark about 7 years 7 months ago

Chief-


No easy way, just have to use the MIBs. Hope these help.


PIX/ASA/FWSM

System: 1.3.6.1.2.1.1

Interfaces: 1.3.6.1.2.1.2

IP: 1.3.6.1.2.1.4

Memory: 1.3.6.1.2.1.4.1.9.9.48

CPU: 1.3.6.1.2.1.4.1.9.9.109

Firewall: 1.3.6.1.2.1.4.1.9.9.147

Buffers: 1.3.6.1.2.1.4.1.9.9.147.1.2.2.1

Connections: 1.3.6.1.2.1.4.1.9.9.147.1.2.2.2

SSL Stats: 1.3.6.1.4.1.3076.2.2.26

IPSec Stats: 1.3.6.1.2.1.4.1.9.9.171

Remote Access Stats: 1.3.6.1.2.1.4.1.9.9.392

FIPS Stats: 1.3.6.1.2.1.4.1.9.9.999999

Active Connections in PIX/ASA Firewall: 1.3.6.1.4.1.9.9.147.1.2.2.2.1.5.40.7

The total number of currently active IPsec Phase-2 Tunnels: 1.3.6.1.4.1.9.9.171.1.3.1.1.0


You will need the following MIBs: IF-MIB, RFC1213-MIB, CISCO-MEMORY-POOLMIB, CISCO-PROCESS-MIB, ENTITY-MIB, CISCO-SMI, CISCO-FIREWALL-MIB, ASA also adds CISCO-IPSEC-FLOW-MONITOR-MIB, CISCO-FIPS-STAT-MIB, and ALTIGA-SSL-STATS-MIB.


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Correct Answer
Collin Clark Mon, 08/03/2009 - 11:43
User Badges:
  • Purple, 4500 points or more

Chief-


No easy way, just have to use the MIBs. Hope these help.


PIX/ASA/FWSM

System: 1.3.6.1.2.1.1

Interfaces: 1.3.6.1.2.1.2

IP: 1.3.6.1.2.1.4

Memory: 1.3.6.1.2.1.4.1.9.9.48

CPU: 1.3.6.1.2.1.4.1.9.9.109

Firewall: 1.3.6.1.2.1.4.1.9.9.147

Buffers: 1.3.6.1.2.1.4.1.9.9.147.1.2.2.1

Connections: 1.3.6.1.2.1.4.1.9.9.147.1.2.2.2

SSL Stats: 1.3.6.1.4.1.3076.2.2.26

IPSec Stats: 1.3.6.1.2.1.4.1.9.9.171

Remote Access Stats: 1.3.6.1.2.1.4.1.9.9.392

FIPS Stats: 1.3.6.1.2.1.4.1.9.9.999999

Active Connections in PIX/ASA Firewall: 1.3.6.1.4.1.9.9.147.1.2.2.2.1.5.40.7

The total number of currently active IPsec Phase-2 Tunnels: 1.3.6.1.4.1.9.9.171.1.3.1.1.0


You will need the following MIBs: IF-MIB, RFC1213-MIB, CISCO-MEMORY-POOLMIB, CISCO-PROCESS-MIB, ENTITY-MIB, CISCO-SMI, CISCO-FIREWALL-MIB, ASA also adds CISCO-IPSEC-FLOW-MONITOR-MIB, CISCO-FIPS-STAT-MIB, and ALTIGA-SSL-STATS-MIB.


GRANT GATHAGAN Mon, 08/03/2009 - 16:03
User Badges:

Take a look at FireGen reporter for PIX from Altair Technology.

It's not the most intuitive piece of software that I've ever set up, but it does a good job in analyzing syslog files.


It wouldn't be a real-time monitor, but you could probably set it up to generate reports as frequently as you desire.


http://www.altairtech.ca/

Actions

This Discussion