Ad blocker detected: Our website is made possible by displaying online advertisements to our visitors. Please consider supporting us by disabling your ad blocker on our website.
kharford wrote:
I did have snmp and csnmpd running at the same time. I needed to set up a proxy in Net-SNMP on the firewall to query the Checkpoint mib.
KMH
Hello,
May you describe how you configured that proxy ? Thank you in advance.
You need to put this in your snmpd.conf and restart snmpd:
proxy -v 1 -c public localhost:260 .1.3.6.1.4.1.2620
You only need this with NetSNMP, since Nokia IPSO 3.8 (?) this proxy is already configured; just start cpsnmpd with cpconfig.
can't get any data when i use the oid .1.3.6.1.4.1.2620......
but could get from oid 1.3.6.1.4.1.94. ....
device : nokia 350 470 750
i want to monitor them ,but i didn't the oid detail ...
can you help me ?
You may derive the OID from the resource/snmp_queries/ XML template: .1.3.6.1.4.1.2620.1.1.25.5.1.11 and .1.3.6.1.4.1.2620.1.1.25.5.1.12. Please try to snmpwalk against them from command line to see, whether the device responds. Or set Settings->Logging Level to DEBUG for one polling cycle and find those OIDs in log/cacti.log along with the results
Reinhard
First, very good work with the graphical templates, thanks for sharing it.
I cant generate working graphs. Two problems found:
- fwIfTable graph is not creating rrd nor asking snmp questions. I have checked everything that I know but I have no idea why is not working. Not really sure how to check if the OIDs from the XML have been imported correctly (no error appeared after importing).
- Connections/CPU Usage/Memory Usage/Packets accepted/Packets dropped/Packets logged/Packets rejected graphs have not OIDs but after add them to the Data Templates are working.
Some users reported that they had to import twice. Not sure on this. But you may try.
Then, please post the firewall XML file of ./resource/snmp_queries. And perhaps a screenshot would help
Reinhard
lvm wrote:Some users reported that they had to import twice. Not sure on this. But you may try.
Then, please post the firewall XML file of ./resource/snmp_queries. And perhaps a screenshot would help
Reinhard
Just now, I have been able to make it work. It seems that some kind of inconsistence was on my cacti database in the table data_template_data. Probably because I had imported the templates around 10 times but now really sure why.
After delete all the templates from cacti and manually deletions in the table data_template_data (glups ) of any rest of the template, importing the templates again and some time and coffee later graphs was its working.
I noticed that every time a policy is charged in the FW, the snmp counters of checkpoint regarding drops/accepts/rejects etc. are resets as well. This breaks all graphics (a huge peak) and become the graph unusable.
You may set some MAXIMUM value for the data source. All readings exceeding this will be interpreted as NaN. When doing so, remember to rrdtool tune all existing files to apply this change
Reinhard
You may set some MAXIMUM value for the data source. All readings exceeding this will be interpreted as NaN. When doing so, remember to rrdtool tune all existing files to apply this change
Reinhard
Thanks for the quick response lvm.
I read another solution using DERIVE instead COUNTER with "Maximum Value" equals to cero. I have testing it and seems that works as I espected, but not sure about the implications.
) of any rest of the template, importing the templates again and some time and coffee later graphs was its working.