Re: How To Monitor FWSM Connection Rate?

doxenhandler · ‎06-14-2013

I am looking for a way to remotely monitor the number of connections per second coming in to an FWSM module in 7613 switch. If anyone knows how to do this via snmp, that would be ideal.

The only command I know to expose this information is the "show resource usage" command from the system context (we have multiple contexts enabled). I could script something in Expect, but hoping there is a simpler way to get this. Ultimately we'd like to monitor this in Nagios, and be able to set some alarms if the connection rate exceeds certain thresholds.

Any suggestions appreciated!

Kureli Sankar · ‎06-19-2013

Connections:

1.3.6.1.4.1.9.9.491.1.1.1.6.
cufwConnGlobalNumActive
Total no. of active connections
(TCP + UDP)

1.3.6.1.4.1.9.9.491.1.1.1.10.
cufwConnGlobalConnSetupRate1
Rate of connections for one minute

1.3.6.1.4.1.9.9.491.1.1.1.11.
cufwConnGlobalConnSetupRate5
Rate of connections for five minutes

1.3.6.1.4.1.9.9.491.1.1.4.1.1.9.6
Rate of UDP connections for one minute

1.3.6.1.4.1.9.9.491.1.1.4.1.1.9.7
Rate of TCP connections for one minute

1.3.6.1.4.1.9.9.491.1.1.4.1.1.10.6
Rate of UDP connections for five minutes

1.3.6.1.4.1.9.9.491.1.1.4.1.1.10.7
Rate of TCP connections for five minutes


The following CCO URL contains in detail the MIB/OID to CLI mapping:
http://www.cisco.com/en/US/docs/security/fwsm/fwsm32/configuration/guide/mibcli_f.html

-Kureli

Checkout my breakout session at Cisco Live 2013, Orlando, Florida.

BRKSEC-2024 Deploying Next-Generation Firewall Services on the ASA
Room 314A Tuesday, June 25 3:00 PM - 4:30 PM