[c-nsp] Using SNMP to monitor NAT usage...
Peter Rathlev
peter at rathlev.dk
Sat Dec 5 07:07:06 EST 2009
On Fri, 2009-12-04 at 21:46 -0500, David White, Jr. (dwhitejr) wrote:
> Peter Rathlev wrote:
> > On firewalls (FWSM/ASA) we would very much like to monitor "xlates"
> > which we can't right now AFAIK. :-)
>
> FWSM version 3.2 added support to monitor the NAT/PAT xlates:
>
> NAT Xlates --> 1.3.6.1.2.1.123.1.6(natAddrBindTable)
> PAT Xlates --> 1.3.6.1.2.1.123.1.8(natAddrPortBindTable)
>
> Also see:
> http://www.cisco.com/en/US/docs/security/fwsm/fwsm40/configuration/guide/monitr_f.html#wp1104519
Excellent, one more reason to upgrade along with the "xlate-bypass"
feature. We're on 3.1 now, so we'll have to wait.
--
Peter
More information about the cisco-nsp
mailing list