[mrtg] Re: Graphing VPN SAs from Sonicwall
Andrew Davis
andrew at socallinuxsolutions.com
Mon Mar 3 23:24:39 MET 2003
Peter... I am sorry that I cannot help you with your VPN issue, however
I couldn't help but note that you have a Sonicwall Pro100. There are
many people on this list that have tried to use the SW MIBs to get
SNMP/MRTG working, but haven't been able to. I noticed the ... after
your MIB entry. Are you able to get stats out of your WAN/LAN/DMZ
interfaces? Would you mind sharing your entire sonicwall config to help
out the rest of us?
AD
Peter Erickson wrote:
> I am trying to graph the amount of information that is encrypted from our vpn gateway, but am running into a problem. Within the sonicwall, there is an index into a table for each SA. Since the sonicwall doest have a OID for all info encrypted and decrypted, im taking each SA and adding them all together. So currently, the cfg file looks like:
>
> Target[Sonic_vpn]: 1.3.6.1.4.1.8741.1.3.2.1.1.1.9.38&1.3.6.1.4.1.8741.1.3.2.1.1.1.11.38:user at 172.20.1.2
> + 1.3.6.1.4.1.8741.1.3.2.1.1.1.9.39&1.3.6.1.4.1.8741.1.3.2.1.1.1.11.39:user at 172.20.1.2
> + ...
> SetEnv[Sonic_vpn]: MRTG_INT_IP="172.20.1.2" MRTG_INT_DESCR="eth0"
> Options[Sonic_vpn]: noinfo,nopercent
> MaxBytes[Sonic_vpn]: 1250000
> Title[Sonic_vpn]: VPN Traffic Analysis for SonicWALL PRO/100
> PageTop[Sonic_vpn]: <H1>VPN Traffic Analysis for SonicWALL PRO/100</H1>
> <TABLE>
> <TR><TD>System:</TD> <TD>PRO/100 in Edina</TD></TR>
> <TR><TD>Maintainer:</TD> <TD>hostmaster at evalumed.com</TD></TR>
> <TR><TD>Description:</TD><TD>eth0 </TD></TR>
> <TR><TD>ifType:</TD> <TD>ethernetCsmacd (6)</TD></TR>
> <TR><TD>ifName:</TD> <TD></TD></TR>
> <TR><TD>Max Speed:</TD> <TD>1250.0 kBytes/s</TD></TR>
> <TR><TD>Ip:</TD> <TD>172.20.1.2</TD></TR>
> </TABLE>
>
> As I was running MRTG, I just realized that as these SAs are created and torn down, the index into the tables change and when an SA goes away,. MRTG stops graphing an starts emailing me all these errors. The first value of the target is EncryptedByteCount and the second is DecryptedByteCount. The question that I have is this. Is there a way to setup the target so that it goes through all possible values within the ByteCount arrays and adds the values or do I need to write a custom script that will do this for me and set the target to that value? And if I need to write a script, can someone point me in the right direction for finding out how to do this?
>
> I really appreciate any help on this one. Im on a short timeline. Thanks.
--
Unsubscribe mailto:mrtg-request at list.ee.ethz.ch?subject=unsubscribe
Archive http://www.ee.ethz.ch/~slist/mrtg
FAQ http://faq.mrtg.org Homepage http://www.mrtg.org
WebAdmin http://www.ee.ethz.ch/~slist/lsg2.cgi
More information about the mrtg
mailing list