Nagios Support Forum

Hi all,

I am trying to monitor IPsec tunnels on my checkpoint. I use "configuration wizard" and I choose network devices. I, also choose SNMP walk. After that I put all data that is needed and I get answer that is not correct. I get that only two tunnels are up and running on my checkpoint. This is not correct, because there are much more unnels on that checkpoint firewall. I tried snmpwalk command in command line on my CentOS server and I get same response. i used this command in command line:

snmpwalk -v 2c -c public 192.168.1.1 .1.3.6.1.4.1.2620.500.9002.1.3

And I get response like this:

SNMPv2-SMI::enterprises.2620.500.9002.1.3.*.*.*.*.0 = Counter32: 3 -----> Stars are here to mask public IP address of IPsec peer
SNMPv2-SMI::enterprises.2620.500.9002.1.3.*.*.*.*.0 = Counter32: 3
Error: OID not increasing: SNMPv2-SMI::enterprises.2620.500.9002.1.3.*.*.*.*.0
>= SNMPv2-SMI::enterprises.2620.500.9002.1.3.*.*.*.*.0

I tried to resolve this and I did. I used "-Cc" option in snmpwalk command and I get correct reponse. Correct response is next:

[root@ip-10-159-32-77 libexec]# snmpwalk -v 2c -Cc -c eFrOnT 10.30.4.1 .1.3.6.1.4.1.2620.500.9002.1.3
SNMPv2-SMI::enterprises.2620.500.9002.1.3.*.*.*.*.0 = Counter32: 3 -----> Stars are here to mask public IP address of IPsec peer
SNMPv2-SMI::enterprises.2620.500.9002.1.3.*.*.*.*.0 = Counter32: 3
SNMPv2-SMI::enterprises.2620.500.9002.1.3.*.*.*.*.0 = Counter32: 3
SNMPv2-SMI::enterprises.2620.500.9002.1.3.*.*.*.*.0 = Counter32: 3
SNMPv2-SMI::enterprises.2620.500.9002.1.3.*.*.*.*.0 = Counter32: 3
SNMPv2-SMI::enterprises.2620.500.9002.1.3.*.*.*.*.0 = Counter32: 3
SNMPv2-SMI::enterprises.2620.500.9002.1.3.*.*.*.*.0 = Counter32: 3
SNMPv2-SMI::enterprises.2620.500.9002.1.3.*.*.*.*.0 = Counter32: 3
SNMPv2-SMI::enterprises.2620.500.9002.1.3.*.*.*.*.0 = Counter32: 3
SNMPv2-SMI::enterprises.2620.500.9002.1.3.*.*.*.*.0 = Counter32: 3
SNMPv2-SMI::enterprises.2620.500.9002.1.3.*.*.*.*.0 = Counter32: 3
SNMPv2-SMI::enterprises.2620.500.9002.1.3.*.*.*.*.0 = Counter32: 3
SNMPv2-SMI::enterprises.2620.500.9002.1.3.*.*.*.*.0 = Counter32: 3
SNMPv2-SMI::enterprises.2620.500.9002.1.3.*.*.*.*.0 = Counter32: 3
SNMPv2-SMI::enterprises.2620.500.9002.1.3.*.*.*.*.0 = Counter32: 3
SNMPv2-SMI::enterprises.2620.500.9002.1.3.*.*.*.*.0 = Counter32: 3
SNMPv2-SMI::enterprises.2620.500.9002.1.3.*.*.*.*.0 = Counter32: 3
SNMPv2-SMI::enterprises.2620.500.9002.1.3.*.*.*.*.0 = Counter32: 3
SNMPv2-SMI::enterprises.2620.500.9002.1.3.*.*.*.*.0 = Counter32: 3

My problem is - How to get same, correct, response when I use "configuration wizard" and "snmp walk" option in wizard.

This is response that I get in wizard;

enterprises.2620.500.9002.1.3.*.*.*.*.0 Counter32 3 -----> Stars are here to mask public IP address of IPsec peer
enterprises.2620.500.9002.1.3.*.*.*.*.0 Counter32 3 -----> Stars are here to mask public IP address of IPsec peer

After this I should get more tunnels and their states (just to mention that "3" means that tunnel is active).

If anyone have any idea, feel free to suggest.

Thank you in advance.

Kind regards,

Petar

First off, I notice this is your first post. Has your organization had a QS? *If not*, that might be the quickest way to get up and running: https://www.nagios.com/services/quickstart/nagios-xi/

Anyway, this is not a direct answer to your question, but it may help you out. One option would be to use the wizard as is and then just modify the command in the CCM. If you are an enterprise customer or using the enterprise features during a trial, then you can use the Bulk Modification Tool to edit several of these at once.

Another option, and one where you do not need to be an enterprise customer would be to use the API. You can find API documentation at http://YOURSERVER/nagiosxi/help/api-con ... erence.php.

Please let us know if you have any problems with those options, or if they are not going to work for you.

Thank you dwhitfield. I requested QS for next Wednesday. After that I will answer you did everything go well.

Thanks again.

Petar

Thanks for the update. The QS should get you moving in the right direction. Let us know if you need us to keep this thread open though after you've gone through it.