Join the Conversation

To sign in, use your existing MySonicWall account. To create a free MySonicWall account click "Register".

Monitor by SNMP


A customer of us wants to monitor interfaces, subinterfaces and L2L IPSEC VPNs using SNMP CACTI tool.

I have no problem with interfaces. But I cannot figure out how to see subinterfaces and L2L VPNs.

Any idea?


Category: Firewall Management and Analytics

Best Answer


  • BWCBWC Cybersecurity Overlord ✭✭✭
    edited May 19


    I'am not sure, but I guess L2L stands for lan-to-lan, also known as Site-to-Site? AFAIK you can't monitor VPN connections via SNMP, a feature I really myself as a ZABBIX fan. There are some entities, but IMHO not usable for dynamic monitoring.

    UPDATE: if you know all of your VPN tunnels (no dynamic discovery) you could check sonicSAStatUserName for their existence. This entry is only available via SNMP if the connection is active. Not perfect but better than nothing.




    I know PRTG does this. It identifies VPNs lan-to-lan from Sonicwall.

    But I need it to work with CACTI.

  • BWCBWC Cybersecurity Overlord ✭✭✭
    edited May 19


    Cacti is IMHO a bit limited for that, but sonicwallFwVpnIPSecStats is all what you've got VPN-wise. Check with SONICWALL-FIREWALL-IP-STATISTICS-MIB, sonicSAStatEncryptByteCount can be used for bandwith calculation.

    The subinterfaces (VLAN?) are in the interfaces section, like all the other Ethernet interfaces. Dunno anything about the SNMP view of other interface types.


Sign In or Register to comment.