Hi,I think this OID will help

Rasmus Kiilerich · ‎10-01-2014

Hi

Does anyone know of af OID to get the count of active xlate´s per PAT IP address?

I have a firewall that is performing PAT on several IPs that is defined via object. I need to find a way to get the ammount of xlates on a "per public IP" level.

I know that i can get the "show conn" via SNMP but this is all the connections globally to the ASA and not on a per-PAT bases.

So far the only way i have managed to get something out of the ASA is to do a "show xlate | inc [PUBLIC-IP]" and then count the lines.

Vibhor Amrodia · ‎10-07-2014

Hi,

I think this OID will help:-

cnatAddrBindTable and CnatAddrBindSessionCount

Thanks and Regards

Vibhor Amrodia

ALAN HARKRADER · ‎02-16-2015

Those don't seem to be supported in ASA 9.x... not in "show snmp-server oidlist".

natAddrMapAddrUsed might be what you're looking for... but, if you have multiple sources NATed to the same destination, finding the appropriate entry in that table will take some doing.

dukenuk96 · ‎02-10-2016

Try this

sh conn count

oid .1.3.6.1.4.1.9.9.147.1.2.2.2.1.5.40.6

Rasmus Kiilerich · ‎06-09-2016

The OID ".1.3.6.1.4.1.9.9.147.1.2.2.2.1.5.40.6" are sadly not supported

xlate count via SNMP on a ASA