Configuring Polling
One way to accumulate achievement and statistical abstracts from a Cisco PIX firewall is
to use SNMP polling. Configuring SNMP polling on the Cisco PIX allows an
SNMP administration base to retrieve abstracts application PIX SNMP OIDs.To configure
polling, aboriginal accomplish abiding that an SNMP association is set application the following
Configuration approach command:
snmp-server association
The chat constant specifies the SNMP association (the password).You
should not use calmly estimated words or the frequently acclimated PUBLIC string.There
are abounding chargeless dictionary-based SNMP association cord crackers, so for a secure
community string, do not use a apparent dictionary-based string.This constant is
required for SNMP to action correctly, is case sensitive, and is bound to 32
characters. For polling to work, the PIX firewall charge be configured with the IP
address of the polling station.This is able application the afterward command:
snmp-server host [
The ip_address constant is the IP abode of the SNMP administration station.
The interface constant specifies the interface area the administration base is
located. If the interface is not specified, it is affected to be the central interface.
The poll constant specifies that the administration base will concern the PIX.You
may specify assorted polling base IP addresses by accounting assorted snmp-server
host commands.
Castle Rock SNMPc is an SNMP administrator that can be begin at www
.castlerock.com/products/products.htm. In Figure 6.14, it is actuality acclimated to poll
the Cisco PIX firewall for arrangement information.
In Figure 6.15, we are application the Castle Rock MIB browser to assignment bottomward into
the ciscoFirewallMIB to attending at the OID of 1.3.6.1.4.1.9.9.147.1.2.2.2.1.4,
which gives the cachet of the affiliation calculation variable.This OID is one of the
favorites to watch if the PIX does not accept an absolute license. Other favorite
OIDs are apparent in Table 6.3.To acquisition all the OIDs for the PIX firewall, go to
ftp://ftp.cisco.com/pub/mibs/oid/ and download the adapted MIB.
www.syngress.com
Configuring Arrangement Administration • Chapter 6 319
www.syngress.com
Figure 6.14 Castle Rock SNMPc Administrator Polling a PIX Firewall
Figure 6.15 Browsing the PIX MIB
320 Chapter 6 • Configuring Arrangement Management
Table 6.3 Useful Cisco PIX OIDs
Description OID
System description 1.3.6.1.2.1.1.1.0
System uptime 1.3.6.1.2.1.1.3.0
Memory acclimated 1.3.6.1.4.1.9.9.48.1.1.1.5.1
Memory chargeless 1.3.6.1.4.1.9.9.48.1.1.1.6.1
Failover cachet 1.3.6.1.4.1.9.9.147.1.2.1.1.1.4.7
Current access in use 1.3.6.1.4.1.9.9.147.1.2.2.2.1.5.40.6
Most access in use 1.3.6.1.4.1.9.9.147.1.2.2.2.1.5.40.7
CPU appliance (5 second) 1.3.6.1.4.1.9.9.109.1.1.1.1.3.1
CPU appliance (1 minute) 1.3.6.1.4.1.9.9.109.1.1.1.1.4.1
CPU appliance (5 minute) 1.3.6.1.4.1.9.9.109.1.1.1.1.5.1