Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1149
Views
0
Helpful
2
Replies

PIX failover notification via SNMP

yjdabear
VIP Alumni
VIP Alumni

‎03-15-2006 07:32 AM

Does anyone know if the following is implying that the only way to receive PIX failover notification via SNMP is to send syslogs as SNMP traps?

http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_62/config/failover.htm

"To receive SNMP syslog traps (SNMP failover traps), configure the SNMP agent to send SNMP traps to SNMP management stations, define a syslog host, and compile the Cisco syslog MIB into your SNMP management station. See the snmp-server and logging command in the Cisco PIX Firewall Command Reference for more information."

Had a stateful failover between two PIXes recently, a syslog was received, but no SNMP trap. "snmp-server enable traps" is configured.

Labels:
0 Helpful
2 Replies 2

thomas.chen
Level 6
Level 6

‎03-21-2006 08:36 AM

You need to have the "logging history debug" command to generate all standard and syslog traps

Refer to 'Configuring PIX 5.1 and Later for a Subset of Traps' section of

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_tech_note09186a0080094a13.shtml#snmptothepixtraps

0 Helpful

yjdabear
VIP Alumni
VIP Alumni
In response to thomas.chen

‎03-22-2006 09:12 AM

We have this config:

logging history errors

snmp-server enable traps

The way I read that doc, even "logging history alert" should have gotten us a failover trap, should it not?

0 Helpful
Customers Also Viewed These Support Documents