Hello everyone. Currently we are trying to monitor the capacity of our NAT pools for our customers. We currently have around 450 NAT pools on the firewall.

I have noticed two OIDs that appear to be of use in monitoring this from "show snmp-server oidlist":

[231]    1.3.6.1.2.1.123.1.4.1.12.    natAddrMapGlobalAddrTo

[235]    1.3.6.1.2.1.123.1.4.1.19.    natAddrMapAddrUsed

Although we use Dynamic NAT we only NAT to one external IP per pool and not ranges of publics.

When I walk these I can clearly see my Global Addresses listed in Hex per value and a gauge value to match. There are several hundred of these:

iso.3.6.1.2.1.123.1.4.1.11.14.54 = Hex-STRING: C0 A8 01 01

iso.3.6.1.2.1.123.1.4.1.19.14.54 = Gauge32: 52

Note that the last value in the OID appears to change per pool (ranges from 1 - 400 usually).

The issue I am having is that if I do a "show xlate global 192.168.1.1" on the firewall I see a different amount of xlates displayed, sometimes several thousand off the result from the SNMPwalk.

Am I correlating the gauge value to the nat Xlate properly?

Thank you for your help.