[mrtg] Re: Graphing VPN SAs from Sonicwall

Andrew Davis andrew at socallinuxsolutions.com
Mon Mar 3 23:24:39 MET 2003 

Peter... I am sorry that I cannot help you with your VPN issue, however 
I couldn't help but note that you have a Sonicwall Pro100. There are 
many people on this list that have tried to use the SW MIBs to get 
SNMP/MRTG working, but haven't been able to. I noticed the ... after 
your MIB entry. Are you able to get stats out of your WAN/LAN/DMZ 
interfaces? Would you mind sharing your entire sonicwall config to help 
out the rest of us?

AD

Peter Erickson wrote:
> I am trying to graph the amount of information that is encrypted from our vpn gateway, but am running into a problem. Within the sonicwall, there is an index into a table for each SA. Since the sonicwall doest have a OID for all info encrypted and decrypted, im taking each SA and adding them all together. So currently, the cfg file looks like:
> 
> Target[Sonic_vpn]:    1.3.6.1.4.1.8741.1.3.2.1.1.1.9.38&1.3.6.1.4.1.8741.1.3.2.1.1.1.11.38:user at 172.20.1.2
>                     + 1.3.6.1.4.1.8741.1.3.2.1.1.1.9.39&1.3.6.1.4.1.8741.1.3.2.1.1.1.11.39:user at 172.20.1.2
>                     + ...
> SetEnv[Sonic_vpn]: MRTG_INT_IP="172.20.1.2" MRTG_INT_DESCR="eth0"
> Options[Sonic_vpn]: noinfo,nopercent
> MaxBytes[Sonic_vpn]: 1250000
> Title[Sonic_vpn]: VPN Traffic Analysis for SonicWALL PRO/100
> PageTop[Sonic_vpn]: <H1>VPN Traffic Analysis for SonicWALL PRO/100</H1>
>  <TABLE>
>    <TR><TD>System:</TD>     <TD>PRO/100 in Edina</TD></TR>
>    <TR><TD>Maintainer:</TD> <TD>hostmaster at evalumed.com</TD></TR>
>    <TR><TD>Description:</TD><TD>eth0  </TD></TR>
>    <TR><TD>ifType:</TD>     <TD>ethernetCsmacd (6)</TD></TR>
>    <TR><TD>ifName:</TD>     <TD></TD></TR>
>    <TR><TD>Max Speed:</TD>  <TD>1250.0 kBytes/s</TD></TR>
>    <TR><TD>Ip:</TD>         <TD>172.20.1.2</TD></TR>
>  </TABLE>
> 
> As I was running MRTG, I just realized that as these SAs are created and torn down, the index into the tables change and when an SA goes away,. MRTG stops graphing an starts emailing me all these errors. The first value of the target is EncryptedByteCount and the second is DecryptedByteCount. The question that I have is this. Is there a way to setup the target so that it goes through all possible values within the ByteCount arrays and adds the values or do I need to write a custom script that will do this for me and set the target to that value? And if I need to write a script, can someone point me in the right direction for finding out how to do this?
> 
> I really appreciate any help on this one. Im on a short timeline. Thanks.

--
Unsubscribe mailto:mrtg-request at list.ee.ethz.ch?subject=unsubscribe
Archive     http://www.ee.ethz.ch/~slist/mrtg
FAQ         http://faq.mrtg.org    Homepage     http://www.mrtg.org
WebAdmin    http://www.ee.ethz.ch/~slist/lsg2.cgi

More information about the mrtg mailing list