Nagios Support Forum

Hi Support Team,

Our NagiosXI(5.8.4) system is been installed through OVA on Centos7.
We have a request to monitor VPN tunnel in NagiosXI.
Its an logical IPsec VPN interface(AWS VPN) created on Paloalto firewall.
Is it possible to monitor this VPN? If yes, then please us with the steps.

Thanks,
Supriya.

Hello,

There may be a metric that the vendor provides via SNMP, or another mechanism, that tells you the status of various VPN tunnels. That might require looking through the vendor's documentation on SNMP, or using the SNMP Walk Wizard (after uploading the vendor's MIB file for the device) and seeing if there are VPN related metrics that can be had.

However, if that's not an option, there is always the option of pinging a device on the far side of the VPN tunnel. If the device is unreachable, the tunnel is likely down.

Hi Team,

1st option mentioned by you is not available.
Client is asking whether we can monitor VPN but its FQDN/name and not by its IP.
Because there is a possibility that VPN IP may match with the host machine IP (whose IP is dynamic and there are chances of having same IP as of VPN).
Kindly suggest whether we can monitor VPN throught its name?

Hi

Yes, you can query by hostname, but you would have to do a few things:

Since Nagios runs on Linux you would have to install samba and samba-client. Then configure the smb.conf
file to talk to a WINS server so it can do a hostname lookup and retrieve the IP assigned to that hostname.
This requires enabling the nmb service, etc

Then you would need to write a custom plugin to take the hostname and get it's assigned IP. Once
you have that then you could ping the IP.

Since most of the above is OS changes/configurations we cannot go into depth as how to perform
each step. However if you have an XI server configured as above, and your custom plugin runs correctly
from the Linux command line, then we can help you with any errors you get when running the plugin
via Nagios XI.

I am going to lock this thread, but if you get to the point where your plugin works from the command line
and not from Nagios XI please open a ticket in our new Support system:

We're moving to a new support system!

The Nagios Answer Hub is a place where you can get help with technical questions from our experts. There, you can quickly open tickets and join discussion boards.

Request Nagios Answer Hub access here: https://info.nagios.com/answer-hub-access-new-users

After completing the access form, you will be given access to a portal where new tickets can be created. We will keep the old customer forum sections and ticket system available for current cases to be resolved.

Thanks