Hello,
I want to monitor IPsec tunnels in Cisco ASA, i have created discovery rule with following OID:
cikeTunRemoteValue(.1.3.6.1.4.1.9.9.171.1.2.3.1.7)
It discovers remote IP addresses of VPN tunnel and create following item:
cikeTunStatus.["{#SNMPVALUE}"]
.1.3.6.1.4.1.9.9.171.1.2.3.1.35.{#SNMPINDEX}
and following trigger:
trigger: cikeTunStatus.["{#SNMPVALUE}"].nodata(120)}=1
However there is no 0(zero) value for this OID and i am using trigger with nodata() function.
link
Problem is that i am getting periodic false positives for nodata function. How can i prevent this? Are there a better ways to monitor VPN tunnel in Cisco ASA.
P.S. There is no additional interfaces for VPN tunnel so i can't monitr ifOperStatus value.
I want to monitor IPsec tunnels in Cisco ASA, i have created discovery rule with following OID:
cikeTunRemoteValue(.1.3.6.1.4.1.9.9.171.1.2.3.1.7)
It discovers remote IP addresses of VPN tunnel and create following item:
cikeTunStatus.["{#SNMPVALUE}"]
.1.3.6.1.4.1.9.9.171.1.2.3.1.35.{#SNMPINDEX}
and following trigger:
trigger: cikeTunStatus.["{#SNMPVALUE}"].nodata(120)}=1
However there is no 0(zero) value for this OID and i am using trigger with nodata() function.
link
Problem is that i am getting periodic false positives for nodata function. How can i prevent this? Are there a better ways to monitor VPN tunnel in Cisco ASA.
P.S. There is no additional interfaces for VPN tunnel so i can't monitr ifOperStatus value.