I need to graph GlobalProtect current users + traffic via SNMP. I cannot find anything in SNMPwalk or in the available MIBs.
I looked through some older discussions but it seems there is no immediate answer. Any update?
Solved! Go to Solution.
Currently there is no OID for tracking GP users via SNMP. However, I would advise to contact your PANW Sales Rep to inquire about roadmap for such a feature.
Seems PANOS 6 has required SNMP monitoring capabilities but we're waiting on confirmed stability before upgrading production clusters. Anyone inhere that has used it to graph current GP connections and traffic? Not sure if it's possible to monitor status and traffic of individual ipsec tunnels.
I finally managed to start monitoring with the API, very simple CLI commands and rrdtool on a linux box.
Polling every 5 mins through cronjob
- wget to poll the API which is fed to grep -c to count the active connections
- output of the above is used to update the RRD
Graphs generated every 5 mins through cronjob representing both our gateways and the total and display of the maximum amount of connections.
Graph looks like this now, will make it sexier as I get the chance
If anyone is interested I'd be glad to share the scripts and commands. RRDtool is not user-friendly for first-timers... at all! :-|
I do have the same requirement. I shall validate the max concurrent connected GlobalProtect users in order to plan for additional mobile licenses. I do have a about 50 gateways spread worldwide. It would be of great help for me if you could provide more details about your approach and solution.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!
The Live Community thanks you for your participation!