Solved: monitor SFR module on asa with firepower services via snmp

MaErre21325 · ‎10-08-2021

Hello everybody,

i need to know if is possible to monitor via snmp the SFR modules of an asa with firepower services pair.

i've configured snmp both on asa and fmc but i'm not able to monitor the SFR modules, what can i do to fix(if it possibile)?

asa is running version 9.8.4, fmc 6.6.0 and sfr module is 6.6.4.

thanks

regards

M.

Marvin Rhoads · ‎10-08-2021

No - there's no SNMP support on the Firepower service modules.

View solution in original post

Marvin Rhoads · ‎10-08-2021

No - there's no SNMP support on the Firepower service modules.

MaErre21325 · ‎10-11-2021

thanks MArvin,

this helped me a lot

regards

andrew.butterworth · ‎12-12-2022

Is this still the case? I've configured the platform settings for FTD's, but never for a SFR module. It looks like you can create a FirePower policy that includes SNMP.

Marvin Rhoads · ‎12-12-2022

@andrew.butterworth platform policies for Firepower (vs. FTD) are for classic Firepower devices like the old 7000 and 8000 series appliances from Sourcefire/Cisco.

andrew.butterworth · ‎12-12-2022

Thanks for the reply Martin. I've just tried it on an ASA5508-X I have in the lab and it does work. I created a Firepower platform policy, configured SNMPv2 and added an ACL rule to permit UDP/161 from any.

I'm not sure what useful stuff we can pull, however I've just done a SNMP walk and it returned 2441 lines.

Is the SFR considered a 'classic' device?