Overview of Simple Network Management Protocol

Overview of Simple Network Management Protocol
on the PIX Firewall
Using Simple Network Management Protocol (SNMP), you can monitor system events on
the PIX Firewall. All SNMP values are read only (RO). SNMP events can be read, but
information on Security Appliance cannot be changed by using SNMP.
The Cisco Security Appliance SNMP traps available to an SNMP management station are as
follows:
Generic traps:
■ Link up and link down
■ Cold start
■ Authentication failure
Security-related events sent by the Cisco syslog management information base (MIB):
■ Global access denied
■ Failover syslog messages
■ Syslog messages
PIX Firewall Version 6.2 and later, as well as the ASA Security Appliance version 7.0,
supports monitoring central processing unit (CPU) utilization through SNMP. Overall CPU
busy percentage in the last 5-second period, 1-minute period, and 5-minute period are sent
to the SNMP management server.
NOTE Similar information on CPU utilization can be displayed by typing show cpu
usage on the Cisco Security Appliance.
98 Chapter 4: System Management/Maintenance
This feature allows network administrators to monitor Security Appliance CPU usage using
SNMP management software for capacity planning.