Need help to monitor VPN tunnel in NagiosXI

This support forum board is for support questions relating to Nagios XI, our flagship commercial network monitoring solution.
Locked
capgemtools
Posts: 56
Joined: Wed Aug 12, 2020 3:16 pm

Need help to monitor VPN tunnel in NagiosXI

Post by capgemtools »

Hi Support Team,

Our NagiosXI(5.8.4) system is been installed through OVA on Centos7.
We have a request to monitor VPN tunnel in NagiosXI.
Its an logical IPsec VPN interface(AWS VPN) created on Paloalto firewall.
Is it possible to monitor this VPN? If yes, then please us with the steps.

Thanks,
Supriya.
Thanks,
Supriya
User avatar
mbellerue
Posts: 1403
Joined: Fri Jul 12, 2019 11:10 am

Re: Need help to monitor VPN tunnel in NagiosXI

Post by mbellerue »

Hello,

There may be a metric that the vendor provides via SNMP, or another mechanism, that tells you the status of various VPN tunnels. That might require looking through the vendor's documentation on SNMP, or using the SNMP Walk Wizard (after uploading the vendor's MIB file for the device) and seeing if there are VPN related metrics that can be had.

However, if that's not an option, there is always the option of pinging a device on the far side of the VPN tunnel. If the device is unreachable, the tunnel is likely down.
As of May 25th, 2018, all communications with Nagios Enterprises and its employees are covered under our new Privacy Policy.

Be sure to check out our Knowledgebase for helpful articles and solutions!
capgemtools
Posts: 56
Joined: Wed Aug 12, 2020 3:16 pm

Re: Need help to monitor VPN tunnel in NagiosXI

Post by capgemtools »

Hi Team,

1st option mentioned by you is not available.
Client is asking whether we can monitor VPN but its FQDN/name and not by its IP.
Because there is a possibility that VPN IP may match with the host machine IP (whose IP is dynamic and there are chances of having same IP as of VPN).
Kindly suggest whether we can monitor VPN throught its name?
Thanks,
Supriya
gsmith
Posts: 1253
Joined: Tue Mar 02, 2021 11:15 am

Re: Need help to monitor VPN tunnel in NagiosXI

Post by gsmith »

Hi

Yes, you can query by hostname, but you would have to do a few things:

Since Nagios runs on Linux you would have to install samba and samba-client. Then configure the smb.conf
file to talk to a WINS server so it can do a hostname lookup and retrieve the IP assigned to that hostname.
This requires enabling the nmb service, etc

Then you would need to write a custom plugin to take the hostname and get it's assigned IP. Once
you have that then you could ping the IP.

Since most of the above is OS changes/configurations we cannot go into depth as how to perform
each step. However if you have an XI server configured as above, and your custom plugin runs correctly
from the Linux command line, then we can help you with any errors you get when running the plugin
via Nagios XI.

I am going to lock this thread, but if you get to the point where your plugin works from the command line
and not from Nagios XI please open a ticket in our new Support system:
We're moving to a new support system!

The Nagios Answer Hub is a place where you can get help with technical questions from our experts. There, you can quickly open tickets and join discussion boards.

Request Nagios Answer Hub access here: https://info.nagios.com/answer-hub-access-new-users

After completing the access form, you will be given access to a portal where new tickets can be created. We will keep the old customer forum sections and ticket system available for current cases to be resolved.
Thanks
Locked