Page 1 of 1
How to discover ports on Juniper SRX
Posted: Fri Apr 08, 2016 11:17 am
by algray316
I have been trying to use every configuration wizard available to get interface discovery of my Juniper SRX firewalls. I have followed all of Junipers directions for enabling the SNMP and my Cacti can pull everything from the firewalls but not Nagios XI. Can someone please tell me what i am missing?
Re: How to discover ports on Juniper SRX
Posted: Fri Apr 08, 2016 12:19 pm
by bwallace
From the Nagios XI CLI, what is the result of running an snmpwalk against one of these firewalls?
snmpwalk -v2c -c <community> <IP ADDRESS OF HOST>
or snmpget:
snmpget -v2c -c <community> <IP ADDRESS OF HOST>
Re: How to discover ports on Juniper SRX
Posted: Fri Apr 08, 2016 1:44 pm
by algray316
I was able to get the the interfaces discovered by using the Network Switch / Router configuration wizard. but it is unable to create the graphs. My firewall is configured as such
auth-trap-disable;
view jweb-view-all {
oid .1 include;
}
community CSA-Auburn {
view jweb-view-all;
authorization read-write;
}
trap-group CSA-Auburn {
version v2;
categories {
chassis;
link;
routing;
startup;
rmon-alarm;
configuration;
}
targets {
10.18.22.166; - "Cacti"
10.18.22.192; - "Nagios XI"
}
set policy-options prefix-list snmp-addresses 10.18.22.192 (This corrected the issue)
The service detail screen starts out like the image file Adding Firewall
But then it ends up like the image file Firewall Results
Re: How to discover ports on Juniper SRX
Posted: Fri Apr 08, 2016 1:51 pm
by algray316
Now the worst part is if I add it the same way using its IP address 10.68.156.9 like i did originally, but do not change the host name it works perfectly as shown in the No host name change attachment
Re: How to discover ports on Juniper SRX
Posted: Fri Apr 08, 2016 2:16 pm
by rkennedy
From the CLI of Nagios, can you resolve the hostname you were attempting to use? Are there any special characters in it?