We have a monitoring tool at our host site. We need to be able to monitor
devices at a remote site that are not accessible directly from our host site. We have a router at the remote site that is accessible by the host site monitoring tool. The remote
router is able to access the remote device that we need to monitor. The desire is for an SNMP request to be requested by the host tool and for the remote router to receive the request and in turn direct to the devices internal to that remote router and return information to the tool at the host site. I am not sure if this is possible. If so what if anything needs to be configured on the remote router.
This kind of proxying is not supported by IOS. But what you might consider instead is a VPN tunnel which terminates on your remote router, and allows you to reach the remote devices. The advantage of this approach would be extra security.
That said, there is a feature coming in Embedded Event Manager 3.1 which will allow one to write policies to intercept SNMP messages. You could probably develop an application which would do what you want. EEM 3.1, however, is still a few months out at least.
I assumed you've already ruled out NAT as a possibility, but certainly if you could do static NAT on the remote router, that could work. That is, map the inside devices to externally reachable NAT'd addresses. There are some caveats when using SNMP though NAT, though. You will not see any of the IP addresses embedded in SNMP PDUs translated. They will all appear as if they were internal.
This you could do with IPM. That is, set up IP SLA ICMP echo collectors on your reachable remote router. Have those collectors ping the internal target devices. You can then run reports in IPM to look at latency and availability.
To do this, add the IP addresses of the internal devices as adhoc targets under IPM > Collector Mgmt > Devices. Then, go to Collectors, and add collectors choosing your remote router as a source, and the adhoc targets as targets. For operation, choose Echo > DefaultIpEcho.
There is another option using the CISCO-PING-MIB, but there are no hooks in LMS for configuring it, and I think using IPM might be a better solution for you.
Hi everyone, I would like to thank you in advance for any help you can provide a newcomer like myself!
Im studying the 100-105 book by Odom and am currently on the topic of Port security. I purchased a used 2960 and I'm trying to follow a...
While deploying a number of 18xx/2802/3802 model access points (APs), which run AP-COS as their operating platform. It can be observed on some occasions that while many of their access points were able to join the fabric WLC withou...
I am going to design and build an LAN network under a tunnel underground with long distance between the switches.
I will have 2 Catalyst switches and 8 Industrial IE3000, and they will be connected with fiber.
For now I am planning on use Layer-2 s...