Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
910
Views
0
Helpful
0
Replies

vpn user bandwidth monitoring

Helmeczi Zoltan
Level 1
Level 1

‎05-05-2011 05:05 AM

Hi all,

I try to monitoring our remote access vpn tunells bandwidth per user, with snmp and nagios.

I think we can write a script for this but i don't know how to define automatically the mibs which contains the active tunells index.

     In the cipSecTunnelTable there is all information that i have to know (cipSecTunActivetime, cipSecTunInOctets, cipSecTunOutOctets),

     but i can't query it for one user or tunell because the needed oid ends with the actual tunell index. And this index is not the same all the time for one user. it is dinamically changing if a the tunell for example goes up one time, then goes up in another time. Because of these problems i don't know which oid i have to query.

cipsectuntable.JPG

cipSecTunIndex: .1.3.6.1.4.1.9.9.171.1.3.2.1.1 if i want this for one user then i have to query this: .1.3.6.1.4.1.9.9.171.1.3.2.1.1.418

If i can define indexes (or if i know how to asa give this indexes, which is the first and last value, what happens if asa reload)

then i can query the values of cipSecTunActivetime, cipSecTunInOctets, cipSecTunOutOctets for the wanted tunnel and then,

i can do this: cipSecTunActivetime value conversion to seconds then (cipSecTunInOctets + cipSecTunOutOctets)/cipSecTunActivetime=bandwidth ?

and query the cipSecEndPtRemoteAddr1 which is the vpn user inside ip address so i have the wanted user.

cipsectunendpttable.JPG

Anybody can help me about this?

or Exist an easier way, software to do this?

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents