cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
11463
Views
0
Helpful
3
Replies

Cisco ftd snmp oid cpu and memory

duyennv10
Level 1
Level 1

Could you help me check oid of cpu and memory as the cli command below ?

> show cpu usage
CPU utilization for 5 seconds = 8%; 1 minute: 9%; 5 minutes: 9%

>
> show memory
Free memory: 46568759296 bytes (62%)
Used memory: 29531140096 bytes (38%)
------------- ------------------
Total memory: 76099899392 bytes (100%)

I used snmp walk like this threat: https://supportforums.cisco.com/t5/%E3%82%BB%E3%82%AD%E3%83%A5%E3%83%AA%E3%83%86%E3%82%A3-%E3%83%89%E3%82%AD%E3%83%A5%E3%83%A1%E3%83%B3%E3%83%88/firepower-system-snmp%E7%9B%A3%E8%A6%96%E6%99%82%E3%81%AEoid%E4%BE%8B-cpu-memory-etc/ta-p/3165792

But something went wrong, there is differrent result from cli command and snmp walk

thank you!

3 Replies 3

Oliver Kaiser
Level 7
Level 7

CPU MIB

 

1.3.6.1.4.1.9.9.109.1.1.1.1.3.  cpmCPUTotal5sec
1.3.6.1.4.1.9.9.109.1.1.1.1.4.  cpmCPUTotal1min
1.3.6.1.4.1.9.9.109.1.1.1.1.5.  cpmCPUTotal5min

Memory MIB

1.3.6.1.4.1.9.9.48.1.1.1.5.     ciscoMemoryPoolUsed
1.3.6.1.4.1.9.9.48.1.1.1.6.     ciscoMemoryPoolFree

... keep in mind that this is only the lina part of FTD. As you may know FTD consists of two parts. Lina, which is basically the ASA code running in userspace and snort. Using the listed MIBs you will get stats for lina but not the various snort instances which handle L7 traffic. 

As far as I am aware of there is no way to poll the linux part to get stats for snort instances using SNMP.

 

Hope that helps

1.3.6.1.4.1.9.9.48.1.1.1.5.     ciscoMemoryPoolUsed
1.3.6.1.4.1.9.9.48.1.1.1.6.     ciscoMemoryPoolFree

i am using this OIDs but all of my FTDs have no memory usage data in our monitoring tool. CPU usage is okay though.

 

SEWdatacom
Level 1
Level 1

Hi duyennv10;

 

The link below shows FTD's snmp OIDs:

 

https://www.cisco.com/c/en/us/products/collateral/security/firepower-ngfw/white-paper-c11-741739.html

 

I have just configured CPU 5 minutes OID (.1.3.6.1.4.1.9.9.109.1.1.1.1.8.1) on my CACTI server and it is working fine.

 

Regards.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: