RE: [nv-l] ? about NV doing SNMP queries to PIX firewalls using "wrong"

To:	<nv-l@lists.us.ibm.com>
Subject:	RE: [nv-l] ? about NV doing SNMP queries to PIX firewalls using "wrong" interface
From:	"Glen Warn" <Glen.Warn@pemcocorp.com>
Date:	Fri, 16 Dec 2005 17:39:56 -0800
Delivery-date:	Sat, 17 Dec 2005 01:40:59 +0000
Envelope-to:	nv-l-archive@lists.skills-1st.co.uk
Reply-to:	nv-l@lists.us.ibm.com
Sender:	owner-nv-l@lists.us.ibm.com
Thread-index:	AcYCm0CrEBuGJQJYQSWWlWXp5piMfwAD1JUg
Thread-topic:	[nv-l] ? about NV doing SNMP queries to PIX firewalls using "wrong" interface

Thanks for the reply.  I did have this set correctly, but it continued
to go after an alt interface.  Before I received your msg, I deleted
both firewalls, bounced netview and rediscovered after coming back up -
worked perfectly.  "Something" was going wrong, but what it was I'll
probably never know.

Thanks very much for you reply though! 


Glen Warn
PEMCO Corporation Computer Services (PCCS)
glen.warn@pemcocorp.com
206-628-5770

-----Original Message-----
From: owner-nv-l@lists.us.ibm.com [mailto:owner-nv-l@lists.us.ibm.com]
On Behalf Of Francois Le Hir
Sent: Friday, December 16, 2005 3:48 PM
To: nv-l@lists.us.ibm.com
Subject: Re: [nv-l] ? about NV doing SNMP queries to PIX firewalls using
"wrong" interface

Look for the ">" flag in the netmon seed file. The ">" includes the
properties of "=" which has the effect of fixing the interface used for
snmp polling.

Salutations, / Regards,

Francois Le Hir
Network Projects & Consulting Services
IBM Global Services
Phone: (514) 964 2145


 

             "Glen Warn"

             <Glen.Warn@pemcoc

             orp.com>
To 
             Sent by:                  <nv-l@lists.us.ibm.com>

             owner-nv-l@lists.
cc 
             us.ibm.com

 
Subject 
                                       [nv-l] ? about NV doing SNMP

             12/16/2005 05:23          queries to PIX firewalls using

             PM                        "wrong" interface

 

 

             Please respond to

                   nv-l

 

 





NV 7.1.4 on RH Linux AS 2.1 w/ FP3

Hi,

I am discovering many new networks @ a new datacenter.  I have a handful
of Cisco PIX 515 firewalls running 7.0.x code.  I'm able to config SNMP
on the FWs and discover them - but a few seconds after discovery they
turn red.
When I run a demand poll, it fails.  I've trace the problem down to NV
trying to use a different interface (more hops away) on the firewall for
queries.  If I browse map and query with nearest interface (as
configured in PIX) it works great.  I've tried modifying the object
properties/general attributes/SNMP ipaddress and setting it to the
interface IP I want it to use, but still same results.  I only have 1
entry in /etc/hosts for this device and though I use DNS there are no
entries for this firewall.

Any ideas on how I can force Netview to use a specific IP or interface?
I do want to monitor all the interfaces - but thru the "inside"
interface so I don't want to set the others to unmanaged.

Any thoughts would be greatly appreciated,

Glen Warn
PEMCO Corporation Computer Services (PCCS) glen.warn@pemcocorp.com
206-628-5770

PS.  This is a failover pair, so I have modified the netmon.seed file
with
2 entries preceeded by > too.

<Prev in Thread]	Current Thread	[Next in Thread>
[nv-l] ? about NV doing SNMP queries to PIX firewalls using "wrong" interface, Glen Warn Re: [nv-l] ? about NV doing SNMP queries to PIX firewalls using "wrong" interface, Francois Le Hir RE: [nv-l] ? about NV doing SNMP queries to PIX firewalls using "wrong" interface, Glen Warn <=

Previous by Date:	Re: [nv-l] ? about NV doing SNMP queries to PIX firewalls using "wrong" interface, Francois Le Hir
Next by Date:	Re: [nv-l] snmpv2 data collection and mib browsing, Oswin Budiman
Previous by Thread:	Re: [nv-l] ? about NV doing SNMP queries to PIX firewalls using "wrong" interface, Francois Le Hir
Next by Thread:	[nv-l] tunnel status monitoring, praveen kumar
Indexes:	[Date] [Thread] [Top] [All Lists]