Does anyone know the SNMP OIDS numbers to monitor the # of active l2l and remote access VPN connections on an ASA? The version I'm running is 7.2.4. We started migrating from the VPN concentrators, we had been using Cacti to monitor the # of active l2l and remote VPN connections but the SNMP parameters don't work for the ASA. I can't find anywhere on the IPSEC FLOW MIB that will pull this information. I'm able to see the total of VPN connections but unable to break them out.
we're using the cacti ASA template http://forums.cacti.net/about10589.html to monitor our ASA 5550s - originally with software rev 7.x but now on 8.3. the template plots active VPN tunnels (we use this to monitor site to site ipsec) and RAS (usinng this to monitor AnyConnect connections).
Check out VPNTTG (VPN Tunnel Traffic Grapher) is a software for SNMP monitoring and measuring the traffic load for IPsec (Site-to-Site, Remote Access) and SSL (With Client, Clientless) VPN tunnels on a Cisco ASA. It allows the user to see traffic load on a VPN tunnel over time in graphical form.
Advantage of VPNTTG over other SNMP based monitoring software's is following: Other (commonly used) software's are working with static OID numbers, i.e. whenever tunnel disconnects and reconnects, it gets assigned a new OID number. This means that the historical data, gathered on the connection, is lost each time. However, VPNTTG works with VPN peer's IP address and it stores for each VPN tunnel historical monitoring data into the Database.
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...