We have a core Sonicwall NSA 3400 with many VPN tunnels connected to it. I am interested in monitoring that device and looking at the individual bandwidth of each of the tunnels. Does anyone know if this is possible to do via SNMP or perhaps Netflow? I'm inexperienced with now netflow works, but I think it might be possible that way. Any help would be appreciated.
It's possible to monitor this via SNMP and soon we will be adding a sensor into PRTG with this capability but currently it's in the test phase. If you can't wait for the sensor, I can look to see what OIDs are used for these sensors and let you know.
Great, thanks for the info! If you wouldn't mind, could you let me know the OID's that are used for this? We might want to add in a few before the sensor is updated.
Here are all of the OIDs that we are using for the Sonicwall Sensor:
sonicSAStatTable 18.104.22.168.4.1.8722.214.171.124.1.1 sonicSAStatEntry sonicSAStatEntry 126.96.36.199.4.1.87188.8.131.52.1.1.1 sonicIpsecSaIndex sonicIpsecSaIndex 184.108.40.206.4.1.87220.127.116.11.18.104.22.168 sonicSAStatDecryptPktCount sonicSAStatDecryptPktCount 22.214.171.124.4.1.87126.96.36.199.188.8.131.52 sonicSAStatDecryptByteCount sonicSAStatDecryptByteCount 184.108.40.206.4.1.87220.127.116.11.18.104.22.168 sonicSAStatInFragPktCount sonicSAStatInFragPktCount 22.214.171.124.4.1.87126.96.36.199.188.8.131.52 sonicSAStatOutFragPktCount sonicSAStatOutFragPktCount 184.108.40.206.4.1.87220.127.116.11.18.104.22.168 sonicSAStatUserName sonicSAStatUserName 22.214.171.124.4.1.87126.96.36.199.188.8.131.52 sonicSAStatPeerGateway sonicSAStatPeerGateway 184.108.40.206.4.1.87220.127.116.11.18.104.22.168 sonicSAStatSrcAddrBegin sonicSAStatSrcAddrBegin 22.214.171.124.4.1.87126.96.36.199.188.8.131.52 sonicSAStatSrcAddrEnd sonicSAStatSrcAddrEnd 184.108.40.206.4.1.87220.127.116.11.18.104.22.168 sonicSAStatDstAddrBegin sonicSAStatDstAddrBegin 22.214.171.124.4.1.87126.96.36.199.188.8.131.52 sonicSAStatDstAddrEnd sonicSAStatDstAddrEnd 184.108.40.206.4.1.87220.127.116.11.18.104.22.168 sonicSAStatCreateTime sonicSAStatCreateTime 22.214.171.124.4.1.87126.96.36.199.188.8.131.52 sonicSAStatEncryptPktCount sonicSAStatEncryptPktCount 184.108.40.206.4.1.87220.127.116.11.18.104.22.168 sonicSAStatEncryptByteCount sonicSAStatEncryptByteCount 22.214.171.124.4.1.87126.96.36.199.188.8.131.52
I assume that there are sub ID's that drill down these stats to a particular tunnel as well?
Yes, the best thing to do would be to use the SNMP tester to walk the OIDs to see the full OIDs for your device.
Great, thanks for the help!