This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
ABOUT CHECKMATES & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Alisson_Lima
Contributor
‎2019-04-24 03:26 PM
Jump to solution

How can I monitor BGP state using SNMP?

Hi all,

 

Somebody know anyway how can I monitor BGP state using SNMP? I've several VPN site-to-site between my on-premisses gateway and AWS cloud.


Att,

Alisson Lima

 

0 Kudos
1 Solution

Accepted Solutions
PhoneBoy
Admin
Admin
‎2019-04-26 08:45 AM
In response to Alisson_Lima
Jump to solution

There's no predefined OID for that but you can create a script that gathers the data you're interested in and probe it via SNMP. See section IV-6 of the SK I previously linked to.

View solution in original post

0 Kudos
6 Replies
PhoneBoy
Admin
Admin
‎2019-04-25 04:19 PM
Jump to solution

You can monitor the routing tables via SNMP.
See: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut...
0 Kudos
Alisson_Lima
Contributor
‎2019-04-25 05:29 PM
In response to PhoneBoy
Jump to solution

Hi PhoneBoy,

Thank you for your response, but I wouldn't to monitor only routing table. Is there any way to monitor only BGP state (Estabilished, Active, Connect or Idle)?

Thank you.

Alisson Lima

 

0 Kudos
PhoneBoy
Admin
Admin
‎2019-04-26 08:45 AM
In response to Alisson_Lima
Jump to solution

There's no predefined OID for that but you can create a script that gathers the data you're interested in and probe it via SNMP. See section IV-6 of the SK I previously linked to.

0 Kudos
Hugo_Romero
Explorer
‎2021-09-24 06:39 AM
In response to PhoneBoy
Jump to solution

Hi  @PhoneBoy , Can you share the Number for SK?

0 Kudos
_Val_
Admin
Admin
‎2021-09-24 06:55 AM
In response to Hugo_Romero
Jump to solution

@Hugo_Romero The link is above in one of the @PhoneBoy 's replies, but here is the SK number: sk90860

0 Kudos
Northy
Contributor
‎2020-02-27 05:14 AM
In response to Alisson_Lima
Jump to solution

Whilst it has been a while since this post has received any update, using the link @PhoneBoy  provided I was able to successfully set up monitoring for BGP state via a custom SNMP OID. 

At a high level 

Stopped the SNMP agent 

Created a small shell script that basically ran a clish command and grep'd out my desired information, similar to below

echo ''
clish -c "show bgp peers" | egrep -o 'Established|OpenConfirm|OpenSent|Active|Connect|Idle'
echo ''

then I added this as an SNMP extend line to "/etc/snmp/userDefinedSettings.conf", similar to below

extend BGP_Status /bin/sh /var/log/my_script/BGP_Status.sh

restarted the SNMP agent. 

tested using the SNMP walk command (you need to have 127.0.0.1 under agent interfaces in order to use localhost)

snmpwalk -t 10 -v 2c -c netw0rks localhost NET-SNMP-AGENT-MIB::nsExtensions

from here i used the translate command 

snmptranslate -On NET-SNMP-EXTEND-MIB::nsExtendOutLine.\"BGP_Status\"

The value you get back should allow you to monitor via SNMP 

 

I hope it helps someone to get started at least, it is not the prettiest way to get the state and it wouldn't really work for multiple neighbours but for my scenario, it worked.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫