Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

How to find Live VPN users using SNMP?

Does SNMP allows to query the device to get the VPN users who are alive?

I need to produce a trend report for VPN user connections to my management. If there exists an OID to query, it would help me.

I appreciate any help in directing me to appropriate doc or MIB file for my own analysis.

Cheers

-Senthil-

3 ACCEPTED SOLUTIONS

Accepted Solutions
Cisco Employee

Re: How to find Live VPN users using SNMP?

Hey Senthil,

I think this is the link you are looking for:

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_tech_note09186a0080094a13.shtml#mibsupportbyversion

and more particularly you might be interested in the following MIB:

http://tools.cisco.com/Support/SNMP/do/BrowseMIB.do?local=en&mibName=CISCO-REMOTE-ACCESS-MONITOR-MIB

There was a bug that was filed to register the incomplete information registered in these MIBs. The bug number is CSCso02912.

Regards

Atri.

Cisco Employee

Re: How to find Live VPN users using SNMP?

This enhancement was performed and new OID's are available for all the information you want, but you need to be on:
8.1(1.101) or 8.2(0.151)

These are the OID's added to CISCO-REMOTE-ACCESS-MONITOR mib to provide sesssion statistics info. :

        crasEmailNumSessions (Oid: 1.3.6.1.4.1.9.9.392.1.3.23 )
        crasEmailCumulateSessions (Oid: 1.3.6.1.4.1.9.9.392.1.3.24 )
        crasEmailPeakConcurrentSessions(Oid: 1.3. 6. 1. 4. 1. 9. 9. 392. 1.3. 25 )
        crasIPSecNumSessions (Oid: 1.3. 6. 1. 4. 1. 9. 9. 392. 1. 3. 26 )
        crasIPSecCumulateSessions (Oid: 1.3. 6. 1. 4. 1. 9. 9. 392. 1. 3. 27 )
        crasIPSecPeakConcurrentSessions (Oid: 1.3. 6. 1. 4. 1. 9. 9. 392. 1.3. 28)
        crasL2LNumSessions (Oid: 1.3. 6. 1. 4. 1. 9. 9. 392. 1. 3. 29 )
        crasL2LCumulateSessions (Oid: 1.3. 6. 1. 4. 1. 9. 9. 392. 1. 3. 30 )
        crasL2LPeakConcurrentSessions (Oid: 1.3. 6. 1. 4. 1. 9. 9. 392. 1.3. 31 )
        crasLBNumSessions (Oid: 1.3. 6. 1. 4. 1. 9. 9. 392. 1. 3. 32 )
        crasLBCumulateSessions (Oid: 1.3. 6. 1. 4. 1. 9. 9. 392. 1. 3. 33 )
        crasLBPeakConcurrentSessions(Oid: 1.3. 6. 1. 4. 1. 9. 9. 392. 1. 3.34 )
        crasSVCNumSessions (Oid: 1.3. 6. 1. 4. 1. 9. 9. 392. 1. 3. 35 )
        crasSVCCumulateSessions (Oid: 1.3. 6. 1. 4. 1. 9. 9. 392. 1. 3. 36 )
        crasSVCPeakConcurrentSessions(Oid: 1.3. 6. 1. 4. 1. 9. 9. 392. 1. 3.37)
        crasWebvpnNumSessions (Oid: 1.3. 6. 1. 4. 1. 9. 9. 392. 1. 3. 38 )
        crasWebvpnCumulateSessions (Oid: 1.3. 6. 1. 4. 1. 9. 9. 392. 1. 3.39 )
        crasWebvpnPeakConcurrentSessions (Oid: 1.3. 6. 1. 4. 1. 9. 9. 392. 1. 3. 40 )

Community Member

Re: How to find Live VPN users using SNMP?

8 REPLIES
Cisco Employee

Re: How to find Live VPN users using SNMP?

Hey Senthil,

I think this is the link you are looking for:

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_tech_note09186a0080094a13.shtml#mibsupportbyversion

and more particularly you might be interested in the following MIB:

http://tools.cisco.com/Support/SNMP/do/BrowseMIB.do?local=en&mibName=CISCO-REMOTE-ACCESS-MONITOR-MIB

There was a bug that was filed to register the incomplete information registered in these MIBs. The bug number is CSCso02912.

Regards

Atri.

Cisco Employee

Re: How to find Live VPN users using SNMP?

This enhancement was performed and new OID's are available for all the information you want, but you need to be on:
8.1(1.101) or 8.2(0.151)

These are the OID's added to CISCO-REMOTE-ACCESS-MONITOR mib to provide sesssion statistics info. :

        crasEmailNumSessions (Oid: 1.3.6.1.4.1.9.9.392.1.3.23 )
        crasEmailCumulateSessions (Oid: 1.3.6.1.4.1.9.9.392.1.3.24 )
        crasEmailPeakConcurrentSessions(Oid: 1.3. 6. 1. 4. 1. 9. 9. 392. 1.3. 25 )
        crasIPSecNumSessions (Oid: 1.3. 6. 1. 4. 1. 9. 9. 392. 1. 3. 26 )
        crasIPSecCumulateSessions (Oid: 1.3. 6. 1. 4. 1. 9. 9. 392. 1. 3. 27 )
        crasIPSecPeakConcurrentSessions (Oid: 1.3. 6. 1. 4. 1. 9. 9. 392. 1.3. 28)
        crasL2LNumSessions (Oid: 1.3. 6. 1. 4. 1. 9. 9. 392. 1. 3. 29 )
        crasL2LCumulateSessions (Oid: 1.3. 6. 1. 4. 1. 9. 9. 392. 1. 3. 30 )
        crasL2LPeakConcurrentSessions (Oid: 1.3. 6. 1. 4. 1. 9. 9. 392. 1.3. 31 )
        crasLBNumSessions (Oid: 1.3. 6. 1. 4. 1. 9. 9. 392. 1. 3. 32 )
        crasLBCumulateSessions (Oid: 1.3. 6. 1. 4. 1. 9. 9. 392. 1. 3. 33 )
        crasLBPeakConcurrentSessions(Oid: 1.3. 6. 1. 4. 1. 9. 9. 392. 1. 3.34 )
        crasSVCNumSessions (Oid: 1.3. 6. 1. 4. 1. 9. 9. 392. 1. 3. 35 )
        crasSVCCumulateSessions (Oid: 1.3. 6. 1. 4. 1. 9. 9. 392. 1. 3. 36 )
        crasSVCPeakConcurrentSessions(Oid: 1.3. 6. 1. 4. 1. 9. 9. 392. 1. 3.37)
        crasWebvpnNumSessions (Oid: 1.3. 6. 1. 4. 1. 9. 9. 392. 1. 3. 38 )
        crasWebvpnCumulateSessions (Oid: 1.3. 6. 1. 4. 1. 9. 9. 392. 1. 3.39 )
        crasWebvpnPeakConcurrentSessions (Oid: 1.3. 6. 1. 4. 1. 9. 9. 392. 1. 3. 40 )

Community Member

Re: How to find Live VPN users using SNMP?

Hi Atri,

Many thanks for your ideas. It is really helpful to produce a trend report.

With your directions I have planned to produce "Live user detail" report beyond the trend report. I found the below information usefull to produce "Live user detail" report from Object crasSessionEntry  - 1.3.6.1.4.1.9.9.392.1.3.21.1.

username of the session - crasUsername  1.3.6.1.4.1.9.9.392.1.3.21.1.1

duration of the session -  crasSessionDuration 1.3.6.1.4.1.9.9.392.1.3.21.1.6

session type - crasSessionProtocol    1.3.6.1.4.1.9.9.392.1.3.21.1.11.  The values of crasSessionProtocol are

1:other
2:ipsec
3:l2tp
4:l2tpoveripsec
5:pptp
6:l2f
7:ssl

I believe my above assumptions were right.

Thank you

-Senthil-

Cisco Employee

Re: How to find Live VPN users using SNMP?

Hey Senthil,

I am glad I could be of assistance. If your question is answered please mark it as such and also rate the answer as it well help others locate this response faster.

If however you have any further questions regarding this issue then please let me know.

Regards,

Atri.

Community Member

Re: How to find Live VPN users using SNMP?

Hi Atri,

The Object name crasSessionTable in CISCO-REMOTE-ACCESS-MONITOR-MIB gives the remote access connection details.

crasSessionTable     ->     "This table lists all the currently active sessions.For each session, it lists the attributes (user,group, protocol, security), statistics packet and octets) and status."

But when I browse through the ALTIGA-SESSION-STATS-MIB, I see the below Object names as well

alActiveSessionTable (1.3.6.1.4.1.3076.2.1.2.17.2)          ->    "List of active sessions."

alPptpStatsSessionTable  (1.3.6.1.4.1.3076.2.1.2.3.3)     ->     "List of active sessions within tunnels."

Does ALTIGA-SESSION-STATS-MIB serves a different purpose? Or the same info is repetitive in CISCO-REMOTE-ACCESS-MONITOR-MIB?

Cheers

Senthil.S

Cisco Employee

Re: How to find Live VPN users using SNMP?

Hey Senthil,

My apologies for the delayed response. Altiga Networks was a company that was acquired by Cisco which used to provide Virtual Private Networking in the US. The ALTIGA-SESSION-STATS-MIB was the MIB they had created for their sessions. It is highly likely that when the company was acquired to provide backward compatibility this MIB was retained while an indigenous MIB, the CISCO-REMOTE-ACCESS-MONITOR-MIB. This might have resulted in replication.

I would suggest that you use the CISCO-REMOTE-ACCESS-MONITOR-MIB.


Regards,

Atri.

Community Member

Re: How to find Live VPN users using SNMP?

Community Member

Re: How to find Live VPN users using SNMP?

Hi Puseth,

Many thanks you for the reference. Your post is very descriptive. I will check this in my device and then rate it.

Hi Atri,

I thank you for clarifying the difference between ALTIGA-SESSION-STATS-MIB and CISCO-REMOTE-ACCESS-MONITOR-MIB.

-Cheers-

Senthil

1568
Views
0
Helpful
8
Replies
CreatePlease to create content