12-19-2020 01:08 AM
We have an instance of a VFTD firewall on our infrastructure and we would like to monitor it's sessions that are coming to our network via snmp but we couldn't find any OIDs related to that .
12-19-2020 10:59 AM
what kind of sessions? VPN?
12-19-2020 11:27 AM - edited 12-19-2020 11:28 AM
We have a webserver and all of our traffics goes through our edge firewall which is a VFTD appliance ..
just like google analytics that provides you with a graph below , we want to monitor how many connections do we have and where are these connections come from ! currently we don't have a parameter (such the picture blow) in our NSM.. and we also have a Firepower management center that provides us connection stats which is exactly what we want but it seems there is no OIDs related to that .
01-10-2021 06:16 AM
Cisco doesn't expose that connection information via SNMP. You can export connection events to a SIEM in addition to (or instead of) FMC if you have one that supports such functionality but that would be a lot of work just to duplicate what's available in FMC. You could also export Netflow data (from your firewall) to something like StealthWatch which has similar functionality.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide