How to monitor connections dropped and rejected on the PIX/ASA firewall?

Answered Question
Jan 19th, 2010

I need to monitor OID SNMP of the connections dropped and rejected on the PIX and ASA firewall. Is it possible?

If it is, which OID SNMP should I to monitor?

I have this problem too.
0 votes
Correct Answer by Panos Kampanakis about 6 years 10 months ago

Syslogs and Netflow (introduced in 8.2 version) are your options.

No MIB can give you the conn numbers.

PK

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Farrukh Haroon Wed, 02/03/2010 - 01:59

Do you just want the count (number)?


Syslog would be the way of choice to get insight into these connections and not SNMP. I don't think any SNMP MIB is supported offering this functionality.

Regards

Farrukh

fjmendonca Wed, 02/03/2010 - 12:31

Yes, I need only the count (number) of connections dropped and rejected.

Correct Answer
Panos Kampanakis Wed, 02/03/2010 - 16:15

Syslogs and Netflow (introduced in 8.2 version) are your options.

No MIB can give you the conn numbers.

PK

Actions

This Discussion