I have a couple of Cisco PIX 501's setup in Observium, but they are being seen only as Generic Devices:
Cisco PIX Firewall Version 6.3(5) Operating System Generic Device Contact support@axint.net Location Denver, CO Uptime 291 days, 22h 45m 55s
And the only graphs I am getting are Uptime and the ethernet port counters (traffic, packets, etc). Nothing for memory or cpu.
Both firewalls are the same - here's the info on one of them:
voip-fw# show ver
Cisco PIX Firewall Version 6.3(5) Cisco PIX Device Manager Version 3.0(4)
Compiled on Thu 04-Aug-05 21:40 by morlee
voip-fw up 291 days 22 hours
Hardware: PIX-501, 16 MB RAM, CPU Am5x86 133 MHz Flash E28F640J3 @ 0x3000000, 8MB BIOS Flash E28F640J3 @ 0xfffd8000, 128KB
0: ethernet0: address is 0016.c836.223a, irq 9 1: ethernet1: address is 0016.c836.223c, irq 10 Licensed Features: Failover: Disabled VPN-DES: Enabled VPN-3DES-AES: Enabled Maximum Physical Interfaces: 2 Maximum Interfaces: 2 Cut-through Proxy: Enabled Guards: Enabled URL-filtering: Enabled Inside Hosts: 10 Throughput: Unlimited IKE peers: 10
My understanding was that PIX firewalls were supported. Is what I am getting all the support there currently is? Or is there something else I need to do to enable cpu and memory counters. I had them setup in Cacti previously, so it would seem that the SNMP counters do exist.
-- Chris Stone AxisInternet, Inc. www.axint.net
apparently we are missing the script to detect pixos.
have a go now. I'm not sure what will work, as i don't have a PIX to test.
likely it will enable detection for the cisco mibs, but fetching of versions and the like will fail.
patches welcome :)
adam.
On 2012-04-04 16:55, Chris Stone wrote:
I have a couple of Cisco PIX 501's setup in Observium, but they are being seen only as Generic Devices:
Cisco PIX Firewall Version 6.3(5) Operating System Generic Device Contact support@axint.net Location Denver, CO Uptime 291 days, 22h 45m 55s
And the only graphs I am getting are Uptime and the ethernet port counters (traffic, packets, etc). Nothing for memory or cpu.
Both firewalls are the same - here's the info on one of them:
voip-fw# show ver
Cisco PIX Firewall Version 6.3(5) Cisco PIX Device Manager Version 3.0(4)
Compiled on Thu 04-Aug-05 21:40 by morlee
voip-fw up 291 days 22 hours
Hardware: PIX-501, 16 MB RAM, CPU Am5x86 133 MHz Flash E28F640J3 @ 0x3000000, 8MB BIOS Flash E28F640J3 @ 0xfffd8000, 128KB
0: ethernet0: address is 0016.c836.223a, irq 9 1: ethernet1: address is 0016.c836.223c, irq 10 Licensed Features: Failover: Disabled VPN-DES: Enabled VPN-3DES-AES: Enabled Maximum Physical Interfaces: 2 Maximum Interfaces: 2 Cut-through Proxy: Enabled Guards: Enabled URL-filtering: Enabled Inside Hosts: 10 Throughput: Unlimited IKE peers: 10
My understanding was that PIX firewalls were supported. Is what I am getting all the support there currently is? Or is there something else I need to do to enable cpu and memory counters. I had them setup in Cacti previously, so it would seem that the SNMP counters do exist.
-- Chris Stone AxisInternet, Inc. www.axint.net _______________________________________________ observium mailing list observium@observium.org http://postman.memetic.org/cgi-bin/mailman/listinfo/observium
Adam,
On Wed, Apr 4, 2012 at 10:09 AM, Adam Armstrong adama@memetic.org wrote:
apparently we are missing the script to detect pixos.
have a go now. I'm not sure what will work, as i don't have a PIX to test.
likely it will enable detection for the cisco mibs, but fetching of versions and the like will fail.
Yes, that looks like it did the trick:
Observium v0.12.4.2951 Discovery
pix-fw 73 generic Device os was updated topixos!(cisco) Ports : .. Port Stack: Physical Inventory : Caching OIDs: entPhysicalEntry entAliasMappingIdentifier Processors : hrDevice CISCO-PROCESS-MIB : + Memory : OLD-CISCO-MEMORY-POOL: +CISCO-ENHANCED-MEMORY-POOL: IPv4 Addresses : .. IPv6 Addresses : Sensors: CISCO-ENTITY-SENSOR: Caching OIDs: entSensorType entSensorScale entSensorValue entSensorMeasuredEntity entSensorPrecision entSensorThresholdSeverity entSensorThresholdRelation entSensorThresholdValue ENTITY-SENSOR Caching OIDs: entPhySensorType entPhySensorScale entPhySensorPrecision entPhySensorValue Temperatures: Cisco Humidity : Voltages: Frequencies: Current: Power: Fanspeeds : Storage : hrDevice : Discovery protocols: CISCO-CDP-MIB: LLDP-MIB: Module [ arp-table ] disabled globally. Module [ junose-atm-vp ] disabled globally. BGP Sessions : No BGP on host VLANs: Q-BRIDGE-MIB VLANs : Cisco VLANs : Module [ cisco-mac-accounting ] disabled globally. Module [ cisco-pw ] disabled globally. Module [ cisco-vrf ] disabled globally. Module [ toner ] disabled globally. UCD Disk IO : Discovered in 7.978 seconds
MySQL: Cell[1/0s] Row[2/0s] Rows[7/0.01s] Column[0/0s] Update[2/0.01s] Insert[3/0s] Delete[0/0s]
Observium Poller v0.12.4.2951
Starting polling run:
pix-fw 73 pixos (cisco) Using Agent Uptime (291:23:46:31.00) Uptime: 291 days, 23h 46m 31s
Cisco PIX Firewall Version 6.3(5) Hardware: ciscoPIXFirewall501 Version: Features: Processor Processor 1... 53% Mempool PIX system memory: 83.73% Polling Netstats: IP TCP UDP ICMP SNMP HR Stats: Polling IP-MIB ipSystemStats Caching Oids: ifEntry ifXEntry dot3StatsDuplexStatus Port PIX Firewall 'outside' interface(1) VLAN == bits(1.79Mbps/1.76Mbps)pkts(878pps/863pps) Port PIX Firewall 'inside' interface(2) VLAN == bits(1.75Mbps/1.77Mbps)pkts(857pps/872pps) Polling BGP peers Wireless: OSPF: Processes: Areas: Ports: Neighbours: Cisco CEF Switching Path: Caching OIDs: entPhysicalDescr entPhysicalName entPhysicalModelName Cisco MAC - Caching OID: cipMacHCSwitchedBytes cipMacHCSwitchedPkts
Entity Physical: Module [ unix-agent ] disabled globally. Polled in 1.732 seconds UPDATED! MySQL: Cell[0/0s] Row[4/0s] Rows[25/0.01s] Column[0/0s] Update[5/0s] Insert[2/0s] Delete[0/0s]
Thanks much!
Chris
Hi Adam
How about detecting the FWSM?
Thanks
On 4/4/12 8:44 PM, Chris Stone wrote:
Adam,
On Wed, Apr 4, 2012 at 10:09 AM, Adam Armstrongadama@memetic.org wrote:
apparently we are missing the script to detect pixos.
have a go now. I'm not sure what will work, as i don't have a PIX to test.
likely it will enable detection for the cisco mibs, but fetching of versions and the like will fail.
Yes, that looks like it did the trick:
Observium v0.12.4.2951 Discovery
pix-fw 73 generic Device os was updated topixos!(cisco) Ports : .. Port Stack: Physical Inventory : Caching OIDs: entPhysicalEntry entAliasMappingIdentifier Processors : hrDevice CISCO-PROCESS-MIB : + Memory : OLD-CISCO-MEMORY-POOL: +CISCO-ENHANCED-MEMORY-POOL: IPv4 Addresses : .. IPv6 Addresses : Sensors: CISCO-ENTITY-SENSOR: Caching OIDs: entSensorType entSensorScale entSensorValue entSensorMeasuredEntity entSensorPrecision entSensorThresholdSeverity entSensorThresholdRelation entSensorThresholdValue ENTITY-SENSOR Caching OIDs: entPhySensorType entPhySensorScale entPhySensorPrecision entPhySensorValue Temperatures: Cisco Humidity : Voltages: Frequencies: Current: Power: Fanspeeds : Storage : hrDevice : Discovery protocols: CISCO-CDP-MIB: LLDP-MIB: Module [ arp-table ] disabled globally. Module [ junose-atm-vp ] disabled globally. BGP Sessions : No BGP on host VLANs: Q-BRIDGE-MIB VLANs : Cisco VLANs : Module [ cisco-mac-accounting ] disabled globally. Module [ cisco-pw ] disabled globally. Module [ cisco-vrf ] disabled globally. Module [ toner ] disabled globally. UCD Disk IO : Discovered in 7.978 seconds
MySQL: Cell[1/0s] Row[2/0s] Rows[7/0.01s] Column[0/0s] Update[2/0.01s] Insert[3/0s] Delete[0/0s]
Observium Poller v0.12.4.2951
Starting polling run:
pix-fw 73 pixos (cisco) Using Agent Uptime (291:23:46:31.00) Uptime: 291 days, 23h 46m 31s
Cisco PIX Firewall Version 6.3(5) Hardware: ciscoPIXFirewall501 Version: Features: Processor Processor 1... 53% Mempool PIX system memory: 83.73% Polling Netstats: IP TCP UDP ICMP SNMP HR Stats: Polling IP-MIB ipSystemStats Caching Oids: ifEntry ifXEntry dot3StatsDuplexStatus Port PIX Firewall 'outside' interface(1) VLAN == bits(1.79Mbps/1.76Mbps)pkts(878pps/863pps) Port PIX Firewall 'inside' interface(2) VLAN == bits(1.75Mbps/1.77Mbps)pkts(857pps/872pps) Polling BGP peers Wireless: OSPF: Processes: Areas: Ports: Neighbours: Cisco CEF Switching Path: Caching OIDs: entPhysicalDescr entPhysicalName entPhysicalModelName Cisco MAC - Caching OID: cipMacHCSwitchedBytes cipMacHCSwitchedPkts
Entity Physical: Module [ unix-agent ] disabled globally. Polled in 1.732 seconds UPDATED! MySQL: Cell[0/0s] Row[4/0s] Rows[25/0.01s] Column[0/0s] Update[5/0s] Insert[2/0s] Delete[0/0s]
Thanks much!
Chris
On 04/apr/2012, at 18:44, Chris Stone wrote:
Adam,
On Wed, Apr 4, 2012 at 10:09 AM, Adam Armstrong adama@memetic.org wrote:
apparently we are missing the script to detect pixos.
have a go now. I'm not sure what will work, as i don't have a PIX to test.
likely it will enable detection for the cisco mibs, but fetching of versions and the like will fail.
Yes, that looks like it did the trick:
Observium v0.12.4.2951 Discovery
pix-fw 73 generic Device os was updated topixos!(cisco) Ports : .. Port Stack: Physical Inventory : Caching OIDs: entPhysicalEntry entAliasMappingIdentifier Processors : hrDevice CISCO-PROCESS-MIB : + Memory : OLD-CISCO-MEMORY-POOL: +CISCO-ENHANCED-MEMORY-POOL: IPv4 Addresses : .. IPv6 Addresses : Sensors: CISCO-ENTITY-SENSOR: Caching OIDs: entSensorType entSensorScale entSensorValue entSensorMeasuredEntity entSensorPrecision entSensorThresholdSeverity entSensorThresholdRelation entSensorThresholdValue ENTITY-SENSOR Caching OIDs: entPhySensorType entPhySensorScale entPhySensorPrecision entPhySensorValue Temperatures: Cisco Humidity : Voltages: Frequencies: Current: Power: Fanspeeds : Storage : hrDevice : Discovery protocols: CISCO-CDP-MIB: LLDP-MIB: Module [ arp-table ] disabled globally. Module [ junose-atm-vp ] disabled globally. BGP Sessions : No BGP on host VLANs: Q-BRIDGE-MIB VLANs : Cisco VLANs : Module [ cisco-mac-accounting ] disabled globally. Module [ cisco-pw ] disabled globally. Module [ cisco-vrf ] disabled globally. Module [ toner ] disabled globally. UCD Disk IO : Discovered in 7.978 seconds
MySQL: Cell[1/0s] Row[2/0s] Rows[7/0.01s] Column[0/0s] Update[2/0.01s] Insert[3/0s] Delete[0/0s]
Observium Poller v0.12.4.2951
Starting polling run:
pix-fw 73 pixos (cisco) Using Agent Uptime (291:23:46:31.00) Uptime: 291 days, 23h 46m 31s
Cisco PIX Firewall Version 6.3(5) Hardware: ciscoPIXFirewall501 Version: Features: Processor Processor 1... 53% Mempool PIX system memory: 83.73% Polling Netstats: IP TCP UDP ICMP SNMP HR Stats: Polling IP-MIB ipSystemStats Caching Oids: ifEntry ifXEntry dot3StatsDuplexStatus Port PIX Firewall 'outside' interface(1) VLAN == bits(1.79Mbps/1.76Mbps)pkts(878pps/863pps) Port PIX Firewall 'inside' interface(2) VLAN == bits(1.75Mbps/1.77Mbps)pkts(857pps/872pps) Polling BGP peers Wireless: OSPF: Processes: Areas: Ports: Neighbours: Cisco CEF Switching Path: Caching OIDs: entPhysicalDescr entPhysicalName entPhysicalModelName Cisco MAC - Caching OID: cipMacHCSwitchedBytes cipMacHCSwitchedPkts
Entity Physical: Module [ unix-agent ] disabled globally. Polled in 1.732 seconds UPDATED! MySQL: Cell[0/0s] Row[4/0s] Rows[25/0.01s] Column[0/0s] Update[5/0s] Insert[2/0s] Delete[0/0s]
Thanks much!
Chris
Hi Adam, just a note.
I have a Cisco PIX 6.3(5) too and this patch work great, but I have also a couple of PIX with 7.0(7) version and discovery won't work with this version because its output is different:
this is SNMPv2-MIB::sysDescr.0 output to a PIX 7.0(7) version: SNMPv2-MIB::sysDescr.0 = STRING: Cisco Cisco PIX Security Appliance Version 7.0(7)
yes, the output shows "Cisco" twice at the beginning of the string! although this is the "show version" output: # sh ver Cisco PIX Security Appliance Software Version 7.0(7) Device Manager Version 5.0(7)
so, I mean you can delete the start position match "^" in includes/discovery/os/pix.inc.php here the diff:
Index: includes/discovery/os/pix.inc.php =================================================================== --- includes/discovery/os/pix.inc.php (revision 2969) +++ includes/discovery/os/pix.inc.php (working copy) @@ -2,7 +2,7 @@
if (!$os) { - if (preg_match("/^Cisco\ PIX/", $sysDescr)) { $os = "pixos"; } + if (preg_match("/Cisco\ PIX/", $sysDescr)) { $os = "pixos"; } }
?>
cheers, dario -- http://www.playnet.it phone +39 055 3226622 - fax +39 055 3226444 Brain Technology s.p.a. - AS 13284
Haha. Stupid Cisco!
Adam.
Why not use sysobject OID to detect platform? It maybe little bit more work than that code you have right now. As I can see there 17 OID describing different PIX models.
On 06/04/12 16:19, Adam Armstrong wrote:
Haha. Stupid Cisco!
Adam.
observium mailing list observium@observium.org http://postman.memetic.org/cgi-bin/mailman/listinfo/observium
We do prefer to detect by sysObjectId indeed. Patches accepted ;-)
Tom
On 6/04/2012 14:27, Nikolay Shopik wrote:
Why not use sysobject OID to detect platform? It maybe little bit more work than that code you have right now. As I can see there 17 OID describing different PIX models.
On 06/04/12 16:19, Adam Armstrong wrote:
Haha. Stupid Cisco!
Adam.
observium mailing list observium@observium.org http://postman.memetic.org/cgi-bin/mailman/listinfo/observium
observium mailing list observium@observium.org http://postman.memetic.org/cgi-bin/mailman/listinfo/observium
Send the money directly to me then ;>
We all try to be non-lazy but sometimes life takes priority... ;-)
On Fri, 2012-04-06 at 16:40 +0400, Nikolay Shopik wrote:
Sorry Tom, We can only send money :-P, but Adam is still lazy about doing stuff :-D.
On 06/04/12 16:34, Tom Laermans wrote:
We do prefer to detect by sysObjectId indeed. Patches accepted
observium mailing list observium@observium.org http://postman.memetic.org/cgi-bin/mailman/listinfo/observium
participants (6)
-
Adam Armstrong -
Chris Stone -
Dario Calamai -
Nikolay Shopik -
Tom Laermans -
Zafar Pravaiz