Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
4470
Views
5
Helpful
2
Replies

SNMP does not work on the standby ASA firewalls

rishikesh_khedkar
Level 1
Level 1

‎09-05-2012 05:04 AM - edited ‎03-11-2019 04:50 PM

Hello Everyone,

I have a pair of 5 pairs of active/standby ASA firewalls running 8.4.4(1)

All the active firewall respond to the SNMP requests, but the standby firewalls do not. I'm using SNMP v3. The configuration of primary and secondary firewalls is replica of each other, apart from the ip addressess.

I want the secondary firewall to respond to SNMP requests coming in from the monitoring server. Can someone please help ?

Thanks,

Rishi

Labels:
0 Helpful
2 Replies 2

varrao
Level 10
Level 10

‎09-05-2012 06:46 AM

Are you able to reach the SNMP server from the standby firewalls?? What information are you trying to poll from the standby machine?

Thanks,
Varun Rao
Security Team,
Cisco TAC

Thanks,
Varun Rao
0 Helpful

pdesch
Level 1
Level 1

‎09-05-2012 01:15 PM

Assuming you can ping both firewalls, the problem is that the firewall pair shares the same config and therefore, the same SNMPv3 engineID. Some NMSs (e.g. WhatsUp Gold) do not support this and therefore only 1 firewall in the pair can be queried.

Doesn't look like this has been fixed yet:

Bug info: CSCtl88556 - ASA5520 failover pair has duplicate snmp v3 engine id

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card