Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
631
Views
0
Helpful
2
Replies

SNMP Through CSS

Go to solution
normanzhang
Level 1
Level 1

‎04-24-2010 04:46 PM

I read that SNMP is not a mapped as flows on CSS by default. Thus, I can't see SNMP traffic via "flow statics".

I have SW's behind CSS's setup as services, and my SNMP server cannot reach to the SW's that are behind the CSS.

circuit VLAN803

  ip address 192.168.213.3 255.255.255.0
    ip virtual-router 213 preempt
    ...
    ip redundant-vip 213 192.168.213.251
    ip redundant-vip 213 192.168.213.252

circuit VLAN50
  ip address 192.168.50.14 255.255.255.0
    ip virtual-router 50 preempt
    ip redundant-interface 50 192.168.50.15

    ....

service SW1
  ip address 192.168.50.251
  active
service SW2
  ip address 192.168.50.252
  active

owner ABC
  ...
  content SSW1
    vip address 192.168.213.251
    add service SW1
    active
  content SSW2
    vip address 192.168.213.252
    add service SW2
    active

Should I just remove the SW IP's as services and permit SNMP server to reach the real IP (i.e., no NAT)?

Or do I enable SNMP flows (i.e., flow-state 161 udp flow-enable)?

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Sean Merrow
Level 4
Level 4

‎04-26-2010 11:13 AM

Hello,

With the example config you posted, you really aren't load balancing anyway, since you have only one service per VIP.  Therefore, it seems like it would be simpler to just let the server connect directly to the real IP addresses of the two SNMP hosts through the CSS.  The CSS will simply route or switch the UDP packets as necessary.

Unless I'm missing something, using the VIPs is just adding unnecessary complexity.

Hope this helps,

Sean

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Sean Merrow
Level 4
Level 4

‎04-26-2010 11:13 AM

Hello,

With the example config you posted, you really aren't load balancing anyway, since you have only one service per VIP.  Therefore, it seems like it would be simpler to just let the server connect directly to the real IP addresses of the two SNMP hosts through the CSS.  The CSS will simply route or switch the UDP packets as necessary.

Unless I'm missing something, using the VIPs is just adding unnecessary complexity.

Hope this helps,

Sean

0 Helpful

Go to solution
normanzhang
Level 1
Level 1
In response to Sean Merrow

‎04-26-2010 11:39 AM

I agree completely. I will hit the real IP instead. Thanks.

0 Helpful
Customers Also Viewed These Support Documents