I constructed a MRTG/Routers2 configuration template for the Cisco ASA firewall which consists the OIDs (graphs) for the interfaces, CPU, memory, VPNs, connections, ping times, and traceroute hop counts. With only four search-and-replace changes as well as a few further specifications, the whole SNMP monitoring for that firewall is configured.
With this template, the following graphs are shown:
- Interfaces
- CPU & Memory
- Connections
- VPN Sessions (RA & S2S total count)
- VPN Remote Access Sessions (IPsec, AnyConnect, WebVPN)
- Ping Outside IP (mrtg-ping-probe script covered here)
- Ping Inside IP through VPN-Tunnel (if available)
- Hop Count to Outside IP (with my script from here)
- Short Summary (only: CPU, connections, VPN, outside interface, ping outside)
Download the Template
This is the *.cfg template file. Follow the first comment lines in the file to replace the correct values inside the template.
MRTG-Routers2 Template Cisco ASA 18.33 KB
Sample Graphs
Here is a gallery with all the graphs from that template (all in the “weekly” view):
And here a few graphs with the values over two years to see the trends:
