I have cacti monitoring a bunch of things on my Cisco ASA 5505s, but nothing to indicate the level of traffic flowing through VPN tunnels on them.
Is this data available through SNMP on the ASA, and has anyone here managed to graph this in Cacti or another system?
NB – I am most interested in monitoring the traffic from my remote sites, rather than the total IPSEC traffic coming into HQ's ASA 5510.
Best Answer
The ASA does indeed support SNMP monitoring of IPSEC tunnels. It doesn't look like cacti has the required templates installed by default. These links may be helpful:
Cacti • View topic - Cisco ASA/PIX VPN Statistics
Cacti • View topic - Cisco ASA templates - YMMV
http://docs.cacti.net/usertemplate:host:cisco:asa_55xx
To a lesser extent, maybe this post: Cacti • View topic - [HOWTO] Add new MIB Variables to Cacti