Use Zabbix to monitor corporate firewalls through SNMP

Use Zabbix to monitor corporate firewalls through SNMP

The company uses the FortiGate 80C firewall, and now uses Zabbix to monitor its status through SNMP.

Add the -- with-net-snmp parameter to compile and install zabbix.

First, Enable SNMP on the firewall, and then add a host in Zabbix

References

Https://www.zabbix.com/documentation/2.2/manual/config/items/itemtypes/snmp

Use snmpwalk to obtain a series of SNMP strings

$ Snmpwalk-v 2c-c public 10.10.41.254

Find the MIB string to be monitored from the output

For example, to monitor the number of incoming traffic bytes for the first port of the protection wall, you can use the IF-MIB: ifInOctets.1

IF-MIB: ifInOctets.1 = Counter32: 2783656129

Use snmpget to get the OID of IF-MIB: ifInOctets.1

$ Snmpget-v 2c-c public-On 10.10.41.254: IF-MIB: ifInOctets.1

. 1.3.6.1.2.1.2.2.1.10.1 = Counter32: 3315277927

The last digit of this OID is the firewall port number.

To use SNMP to monitor various settings, the key is to obtain the OID of each monitoring parameter.

Download the MIB file http://support.fortinet.com for FortiGate on the FORTINET-FORTIGATE-MIB.mib site

Cp FORTINET-FORTIGATE-MIB.mib/usr/share/snmp/mibs/

Cd/usr/share/snmp/mibs/

Mv FORTINET-FORTIGATE-MIB.mib FORTINET-FORTIGATE-MIB.txt

Use snmptranlate to view OID

Can also refer to the Manual http://docs-legacy.fortinet.com/fos40hlp/43/wwhelp/wwhimpl/js/html/wwhelp.htm? Context = fgt & topic = default & single = true

Some Zabbix Tutorials:

Install and deploy the distributed monitoring system Zabbix 2.06

Install and deploy the distributed monitoring system Zabbix 2.06

Install and deploy Zabbix in CentOS 6.3

Zabbix distributed monitoring system practice

Under CentOS 6.3, Zabbix monitors apache server-status

Monitoring MySQL database Parameters Using Zabbix in CentOS 6.3

ZABBIX details: click here
ZABBIX: click here

This article permanently updates the link address: