- Products
- Network Security
Next Generation FirewallNext-generation firewall for SMB, Enterprise, and Government
Security ServicesComprehensive security for your network security solution
Network Security ManagerModern Security Management for today’s security landscape
- Advanced Threat Protection
Capture ATPMulti-engine advanced threat detection
Capture Security applianceAdvanced Threat Protection for modern threat landscape
- Access Security
Cloud Edge Secure AccessDeploy Zero-Trust Security in minutes
Secure Mobile AccessRemote, best-in-class, secure access
Wireless Access PointsEasy to manage, fast and secure Wi-FI
SwitchesHigh-speed network switching for business connectivity
- Email Security
Email SecurityProtect against today’s advanced email threats
- Cloud Security
Cloud App SecurityVisibility and security for Cloud Apps
Cloud Firewall (NSv)Next-generation firewall capabilities in the cloud
- Endpoint Security
Capture ClientStop advanced threats and rollback the damage caused by malware
Content Filtering ClientControl access to unwanted and unsecure web content
- Product Widgets
- Product Menu Right Image
- Network Security
- Solutions
- Solutions Widgets
- Solutions Image Widgets
- Solutions Widgets
- Partners
- Partner Widgets
- Partners Image Widgets
- Partner Widgets
- Support
- Support Widget
- Support Image Widgets
- Support Widget
- Products
- Network Security
- Next Generation FirewallNext-generation firewall for SMB, Enterprise, and Government
- Security ServicesComprehensive security for your network security solution
- Network Security ManagerModern Security Management for today’s security landscape
- Advanced Threat Protection
- Capture ATPMulti-engine advanced threat detection
- Capture Security applianceAdvanced Threat Protection for modern threat landscape
- Access Security
- Cloud Edge Secure AccessDeploy Zero-Trust Security in minutes
- Secure Mobile AccessRemote, best-in-class, secure access
- Wireless Access PointsEasy to manage, fast and secure Wi-FI
- SwitchesHigh-speed network switching for business connectivity
- Email Security
- Email SecurityProtect against today’s advanced email threats
- Cloud Security
- Cloud App SecurityVisibility and security for Cloud Apps
- Cloud Firewall (NSv)Next-generation firewall capabilities in the cloud
- Endpoint Security
- Capture ClientStop advanced threats and rollback the damage caused by malware
- Content Filtering ClientControl access to unwanted and unsecure web content
- Product Widgets
- Product Menu Right Image
- Network Security
- Solutions
- Solutions Widgets
- Solutions Image Widgets
- Solutions Widgets
- Partners
- Partner Widgets
- Partners Image Widgets
- Partner Widgets
- Support
- Support Widget
- Support Image Widgets
- Support Widget
Configuring SNMP over site to site VPN in SonicOS Enhanced
10/14/2021 
98 People found this article helpful
100,799 Views
Description
SNMP (Simple Network Management Protocol) is a network protocol used over User Data gram Protocol (UDP) that allows network administrators to monitor the status of the SonicWall security appliance and receive notification of critical events as they occur on the network. The SonicWall security appliance supports SNMP CV/v2c and all relevant Management Information Base II (MIB) groups except egp and at. The SonicWall security appliance replies to SNMP Get commands for MIBII via any interface and supports a custom SonicWall MIB for generating trap messages. The custom SonicWall MIB is available for download from the SonicWall Web site and can be loaded into third-party SNMP management software such as HP Openview, Tivoli, or SNMPC.
To monitor the status of the remote SonicWall security appliance and receive notification of critical events as they occur on the network we use SNMP over site to site vpn.
Resolution
Resolution for SonicOS 6.5
This release includes significant user interface changes and many new features that are different from the SonicOS 6.2 and earlier firmware. The below resolution is for customers using SonicOS 6.5 firmware.
Procedure:
- Enable SNMP and configure SNMP parameter
- Enable SNMP on the Sonic WALL interface
- Enable SNMP on VPN
- Configure the SNMP monitoring software
>> Enable SNMP and configure SNMP parameters
- Login to the Sonic WALL Management GUI as admin.
- Go to Manage | Appliance | SNMP.
- Check the box Enable SNMP'.
- Click on the Configure' button and supply the parameters for SNMP or keep the defaults for general configuration.
- Click the OK' button.
- Click the Accept button at the bottom of the page.
For the SNMP functionality, the "Community name" should be the same in the Sonic WALL and the SNMP monitoring software.
>> Enable SNMP on the Sonic WALL interface
- Go to Manage | Network | Interfaces and click on the configure button in front of the LAN interface.
- In the Management' section, check the SNMP' box.
- Click the OK' button.
- Go to Manage | Network | Interfaces and click on the configure button in front of the WAN interface.
- In the Management' section, check the SNMP' box.
- Click the OK' button.
>> Enable SNMP on VPN
- Go to Manage | VPN | Base Settings and click on the configure button in the respective vpn policy.
- Go to Advanced tab and in the Management via this SA ' section, check the SNMP' box.
- Click the OK' button.
CAUTION: Editing VPN tunnel configuration will re-negotiate the SA,so make sure you are editing the vpn tunnel when you have down time.
>> Configure the SNMP monitoring software
- Open the SNMP software and register the Sonic WALL. (You can download and install a free edition of PRTG from http://www.paessler.com/prtg/download)
Screen shots for PRTG (V8.1.2.1775) are attached below, just enter the Sonic WALL appliance's LAN IP address, along with the community string and it will start gathering data from the Sonic WALL.
How To Test:
The Live data can be shown in the graph format as below for the X0 interface
Resolution for SonicOS 6.2 and Below
The below resolution is for customers using SonicOS 6.2 and earlier firmware. For firewalls that are generation 6 and newer we suggest to upgrade to the latest general release of SonicOS 6.5 firmware.
Procedure:
- Enable SNMP and configure SNMP parameter
- Enable SNMP on the Sonic WALL interface
- Enable SNMP on VPN
- Configure the SNMP monitoring software
>> Enable SNMP and configure SNMP parameters
- Login to the Sonic WALL Management GUI as admin.
- Go to System | SNMP.
- Check the box Enable SNMP'.
- Click on the Configure' button and supply the parameters for SNMP or keep the defaults for general configuration.
- Click the OK' button.
- Click the Accept button on the top of the page.
For the SNMP functionality, the "Community name" should be the same in the Sonic WALL and the SNMP monitoring software.
>> Enable SNMP on the Sonic WALL interface
- Go to Network | Interfaces and click on the configure button in front of the LAN interface.
- In the Management' section, check the SNMP' box.
- Click the OK' button.
- Go to Network | Interfaces and click on the configure button in front of the WAN interface.
- In the Management' section, check the SNMP' box.
- Click the OK' button.
>> Enable SNMP on VPN
- Go to VPN | Settings and click on the configure button in the respective vpn policy.
- Go to Advanced tab and in the Management via this SA ' section, check the SNMP' box.
- Click the OK' button.
Editing VPN tunnel configuration will re-negotiate the SA,so make sure you are editing the vpn tunnel when you have down time.
>> Configure the SNMP monitoring software
- Open the SNMP software and register the Sonic WALL. (You can download and install a free edition of PRTG from http://www.paessler.com/prtg/download)
Screen shots for PRTG (V8.1.2.1775) are attached below, just enter the Sonic WALL appliance's LAN IP address, along with the community string and it will start gathering data from the Sonic WALL.
How To Test:
The Live data can be shown in the graph format as below for the X0 interface
Related Articles
- App Control fails by schema error when editing VPN category
- How to remove 2FA for admin using CLI
- 2FA authentication error using TOTP "Please try again later"
Categories
- Firewalls > SonicWall NSA Series
- Firewalls > SonicWall SuperMassive 9000 Series
- Firewalls > SonicWall SuperMassive E10000 Series
- Firewalls > TZ Series
YES
NO