I need to monitor a group of tunnels that I have against some providers. The tunnels are established by a Watchguard M370 firewall, I can't specifically find a sensor and I already tried the MIBs that the website of this provider tells me. How could I make a sensor that allows me to see that the pairs are active at the ends of the tunnel?
Article Comments
Yes, I already used several MIBs that I downloaded from the Watchguard page, but since the creation of the sensor by the SNMP library I selected several options from the MIBS but none of them gave information about the peers
Feb, 2021 - Permalink
Hello Hermes,
Thank you for your reply.
Kindly note that PRTG just displays SNMP data that is getting from the target device.
Please check with the vendor of the firewall if any other MIB is suitable for monitoring of data about the peers.
Feb, 2021 - Permalink
Hello,
After much testing, I got a MIB provided by Watchguard called WATCHGUARD-IPSEC-ENDPOINT-PAIR-MIB with ODI 1.3.6.1.4.1.3097.5.1.1.2.1.1 (wgIpsecEndpointPairIndex)
that is alarmed in case all the tunnels within the IPsec are inactive
Configure the sensor so that it will be alarmed if a long time passes in which a tunnel was not active and this based on its normal behavior. With this practice I was able to solve the need. The only bad thing is that it does not indicate the name of the pair so you have to knock down the IPsec so that it will be alarmed and be able to register the name of it.
Apr, 2021 - Permalink
Hello,
Thank you for your KB-post.
Kindly note that PRTG does not have any built-in sensors designated for Watchguard firewalls.
Have you tried using the MIB within our "SNMP Library Sensor"?
Jan, 2021 - Permalink