Join the Conversation

To sign in, use your existing MySonicWall account. To create a free MySonicWall account click "Register".

Monitor by SNMP

Hi!


A customer of us wants to monitor interfaces, subinterfaces and L2L IPSEC VPNs using SNMP CACTI tool.

I have no problem with interfaces. But I cannot figure out how to see subinterfaces and L2L VPNs.


Any idea?


Thanks.

Category: Firewall Management and Analytics
Reply

Best Answer

Answers

  • BWCBWC Cybersecurity Overlord ✭✭✭
    edited May 19

    Hi @SEBASTIAN

    I'am not sure, but I guess L2L stands for lan-to-lan, also known as Site-to-Site? AFAIK you can't monitor VPN connections via SNMP, a feature I really myself as a ZABBIX fan. There are some entities, but IMHO not usable for dynamic monitoring.

    UPDATE: if you know all of your VPN tunnels (no dynamic discovery) you could check sonicSAStatUserName for their existence. This entry is only available via SNMP if the connection is active. Not perfect but better than nothing.

    --Michael@BWC

  • SEBASTIANSEBASTIAN Newbie

    Hi!

    I know PRTG does this. It identifies VPNs lan-to-lan from Sonicwall.

    But I need it to work with CACTI.

  • BWCBWC Cybersecurity Overlord ✭✭✭
    edited May 19

    Hi,

    Cacti is IMHO a bit limited for that, but sonicwallFwVpnIPSecStats is all what you've got VPN-wise. Check with SONICWALL-FIREWALL-IP-STATISTICS-MIB, sonicSAStatEncryptByteCount can be used for bandwith calculation.

    The subinterfaces (VLAN?) are in the interfaces section, like all the other Ethernet interfaces. Dunno anything about the SNMP view of other interface types.

    --Michael@BWC

Sign In or Register to comment.