Mike,
I had an issue with
another NMS vendor application monitoring Pix interfaces last July. What it
turned out to be was the Pix would return a wrong-size SNMP packet to the NMS
which then the NMS could not interpret the packet so it called it NULL instead
of Inside/Outside. It turns out that Cisco had to prepare a Pix OS upgrade for
this SNMP fix but it still is not generally available. It is only available in
an interim engineering-fix. You may want to contact your Cisco support; I think
the fix was going to be in PIX OS 6.3. Anyway, this sounds like the problem I
was encountering. My NMS vendor made a software work around until the Pix
release is available. Last I heard it could be later this year.
HTH
- Regards…
-----Original Message-----
From:
Michael_Noonkesser@bluecrossmn.com [mailto:Michael_Noonkesser@bluecrossmn.com]
Sent: Thursday, March 23, 2006
9:39 AM
To: nv-l@lists.us.ibm.com
Subject: Re: [nv-l] PIX interface
issues
No I do not.
Regards,
Mike Noonkesser
Office 651-662-1012
Fax 651-662-2279
|
Franck Mercier
<franck.mercier@fr.ibm.com>
Sent
by: owner-nv-l@lists.us.ibm.com
03/23/2006 04:40 AM
|
Please
respond to
nv-l@lists.us.ibm.com
|
|
|
To
|
nv-l@lists.us.ibm.com
|
|
cc
|
|
|
Subject
|
Re: [nv-l] PIX interface issues
|
|
Hi,
Have you another map , other than
"default" ?
Cordialement ,
Franck MERCIER
PS Specialist (Tivoli Support)
Information Technology Services France
Mailto : franck.mercier@fr.ibm.com
*.. the only way to do great work is to love
what you do .. *
Michael_Noonkesse
r@bluecrossmn.com
Sent by:
To
owner-nv-l@lists. nv-l@lists.us.ibm.com
us.ibm.com
cc
Subject
21/03/2006 18:26 [nv-l] PIX interface issues
Please
respond to
nv-l
Hi list
Netview 7.1.3 FP4 Solaris 2.8
I am having great difficulty getting one of my
Cisco PIX firewalls to
cooperate.
Scenario: I have the inside interface as
xxx.xxx.xxx.10 and external as
xxx.xxx.xxx.11 These two are fine and report up
always.
I have 6 additional interfaces on each side of the
firewall. This is the
problem, these interfaces come and go almost
daily(not all at once) for
whatever reason, when they drop they report as
their internal or external
interface IP.
Either .10 or .11 respectively. I have unmanaged
them all ( these 12
additional ) they still report as down to Netview
as the .10 or .11
interface as being down.
I have them designated as do not discover in the
seed file,editing it
directly with vi and adding a ! in front of all
these interfaces except for
the primaries .10 and .11.
I have added the > character in front of these
two primaries as well.
I have deleted everything from the maps via
Edit>delete>object>from all
submaps numerous times to no avail
The security folks are becoming a bit miffed at me
when they get paged on
this for no apparent reason.
ANY suggestions would be greatly appreciated.
Regards,
Mike Noonkesser
----------------------------
Important news about email communications:
If our business rules identify sensitive
information, you will receive a
ZixMail Secure Message with a link to view your
message. First-time
recipients will be asked to create a password
before they are granted
access. To learn more about ZixMail, ZixCorp
Secure Email Message Center,
and other ZixCorp offerings, please go to
http://userawareness.zixcorp.com/secure4/index.php
----------------------------
The information contained in this communication
may be confidential,
and is intended only for the use of the
recipient(s) named above.
If the reader of this message is not the intended
recipient, you
are hereby notified that any dissemination,
distribution, or
copying of this communication, or any of its
contents, is strictly
prohibited. If you have received this
communication in error,
please return it to the sender immediately and
delete the original
message and any copy of it from your computer
system. If you have
any questions concerning this message, please
contact the sender.
Unencrypted, unauthenticated Internet e-mail is
inherently insecure.
Internet messages may be corrupted or incomplete,
or may incorrectly
identify the sender.
|
----------------------------
Important news about email communications:
If our business rules identify sensitive information, you will receive a
ZixMail Secure Message with a link to view your message. First-time
recipients will be asked to create a password before they are granted access.
To learn more about ZixMail, ZixCorp Secure Email Message Center, and other
ZixCorp offerings, please go to
http://userawareness.zixcorp.com/secure4/index.php
----------------------------
The information contained in this communication may be confidential,
and is intended only for the use of the recipient(s) named above.
If the reader of this message is not the intended recipient, you
are hereby notified that any dissemination, distribution, or
copying of this communication, or any of its contents, is strictly
prohibited. If you have received this communication in error,
please return it to the sender immediately and delete the original
message and any copy of it from your computer system. If you have
any questions concerning this message, please contact the sender.
Unencrypted, unauthenticated Internet e-mail is inherently insecure.
Internet messages may be corrupted or incomplete, or may incorrectly
identify the sender.
|