Firewall SNMP Settings

    Configure SNMP protocol settings for your Firewall device

     The procedure to configure the SNMP protocol settings of Firewall devices in the Firewall Analyzer is given below:

    • Click Settings > Firewall > SNMP Settings.
    • In that, the devices are listed in the Device Name drop down list. Select the device as required.
    • Below the Device Name, the IP Address of the selected device will appear.
    • Select the SNMP Version V1 or V2 or V3 from the drop down list.
    • Version 1 (V1):
      • Enter the SNMP Community of the device in the text box
      • Enter the SNMP Port of the device in the text box
    • Version 2 (V2):
      • Enter the SNMP Community of the device in the text box
      • Enter the SNMP Port of the device in the text box 
    • Version 3 (V3):
      • Enter the SNMP Community of the device in the text box
      • Enter the SNMP Port of the device in the text box
      • Enter the User Name of the device in the text box
      • Enter the Context Name of the device in the text box
      • Authentication:
        • Select the Protocol for authentication from the drop down list (MD5, SHA).
        • Enter the Password for authentication in the text box
      • Encryption:
        • Select the Protocol for encryption from the drop down list (DES, AES).
        • Enter the Password for encryption in the text box
    • Select the reports in the Select Reports section. In that section, the Report Name and Protocol are listed.
    • Select Interface Live Report using the check box. Select the Protocol for the report. On selecting the Interface Live Report, Interval field will appear with the drop down list. You can select 1 minute or 5 minutes or 10 minutes granularity in Live reports by choosing appropriate interval.
    • Select Live VPN Users report using the check box. Select the Protocol for the report. This report will be listed only if the device has the provision to get the Live VPN Users using SNMP protocol. Otherwise, this report option will not be there.
    • Click Save button to save the configuration and Cancel button to cancel the operation. Upon saving the form, the details are stored in the database and a sample SNMP query is made to test connection. If the SNMP credentials are not valid, you can skip saving the Live Settings.
    Note: If SNMP query is not successful, error message will be displayed on top of the page. Upon error, ensure the credentials provided are correct. Also ensure you have provided Management access through the source interface for SNMP protocol.

    Once the 'Live Settings' is added successfully, the Edit | Disable | Delete SNMP options are displayed to respective devices in Interface Live Reports Dashboard. The Live Reports and Interface Live Reports are populated with SNMP data.

    Using the SNMP parameters configured, all the devices will be queried to get interface details. To configure/enable SNMP protocol in individual Firewall devices, refer the respective device configuration documents. Fortigate, Netscreen, Cisco PIX, Cisco ASA, Cisco Firewalls using ASDM tool

    Once the SNMP settings is done for Live Reports, we skip the syslog data and use SNMP data for Live Reports. To switch to syslog option either disabling or deleting the SNMP settings.