GRE Tunnel mrtg traffic

_______________________________________________
mrtg mailing list
[hidden email]
https://lists.oetiker.ch/cgi-bin/listinfo/mrtg

Dear Mohamed

Are you sure the interface 5 is the right port for the gre tunnel? Your
equipment may make up some 'strange' port-number for the gre.
Or perhaps the equipment just doesn't count the traffic for a gre? It
may do so for physical interfaces only.

Jan Ferré


Mohamed Sangey wrote:

--
Jan Ferré - UNI-C Netdrift - DTU Bygning 304, DK-2800 Lyngby
tlf. +45 3587 8935, cell. +45 2160 8012, fax. +45 3587 8990
EAN-no.: 5798000555198

_______________________________________________
mrtg mailing list
[hidden email]
https://lists.oetiker.ch/cgi-bin/listinfo/mrtg

Hi,

Router has 4 switch ports 0,1,2,3 and WAN port int fa 4 which shows as port 5 when I fire mrtg for that. This is router cisco 871.

Please assist.

Mohamed Sangey
Chief Technical Officer (CTO)
 
Tel Office:      (+255) 22 - 213 70 30
Support 24/7: (+255) 22 - 550 72 00
Fax:                  (+255) 22 - 213 92 22
Mobile:          (+255) 797 - 200020
Calling from the U.S:  212-372-7219
Calling from Israel:    057-6666555 ext. 4971
Email: [hidden email] / www.tansat.com
MSN : [hidden email]

 
 
-----Original Message-----
From: Jan Ferré [mailto:[hidden email]]
Sent: Monday, November 02, 2009 12:56 PM
To: Mohamed Sangey
Cc: [hidden email]; [hidden email]; [hidden email]; [hidden email]; [hidden email]
Subject: Re: [mrtg] GRE Tunnel mrtg traffic

Dear Mohamed

Are you sure the interface 5 is the right port for the gre tunnel? Your
equipment may make up some 'strange' port-number for the gre.
Or perhaps the equipment just doesn't count the traffic for a gre? It
may do so for physical interfaces only.

Jan Ferré


Mohamed Sangey wrote:

--
Jan Ferré - UNI-C Netdrift - DTU Bygning 304, DK-2800 Lyngby
tlf. +45 3587 8935, cell. +45 2160 8012, fax. +45 3587 8990
EAN-no.: 5798000555198

_______________________________________________
mrtg mailing list
[hidden email]
https://lists.oetiker.ch/cgi-bin/listinfo/mrtg

Mohamed Sangey wrote:
> Hi,
>
> Router has 4 switch ports 0,1,2,3 and WAN port int fa 4 which shows as port 5 when I fire mrtg for that. This is router cisco 871.
>  
I use this script (requires snmp-tools) to see which interfaces are
available:

#!/bin/bash
# Generates a list of interfaces on a Cisco router

ROUTER=$1

COM=$2
COM=${COM:-public}

snmpwalk -v1 -c $COM $ROUTER IF-MIB::ifIndex | \
   cut -d " " -f4 | \
   while read index
     do
       speed=`snmpget -v1 -c $COM $ROUTER IF-MIB::ifSpeed.$index | cut
-d " " -f4`
       name="`snmpget -v1 -c $COM $ROUTER IF-MIB::ifAlias.$index | cut
-d " " -f4-10`"
       name=${name:-"Without name"}
       desc="`snmpget -v1 -c $COM $ROUTER IF-MIB::ifDescr.$index | cut
-d " " -f4`"
       echo $ROUTER $desc: $name, $speed - snmpindex $index
   done

exit 0

This basicly makes a list of all possible interfaces (the snmpwalk
command) and for each interface gets speed, name and description.

This may give a reply like:
130.226.255.17 Vlan1: Forskerparken Symbion (Kontakt IT Afdelingen),
1000000000 - snmpindex 1
130.226.255.17 Vlan2: Uden navn, 1000000000 - snmpindex 2
130.226.255.17 GigabitEthernet0/1: Forskerparken Symbion (Kontakt IT
Afdelingen), 1000000000 - snmpindex 10101
130.226.255.17 GigabitEthernet0/2: Forskerparken Symbion (Kontakt IT
Afdelingen), 10000000 - snmpindex 10102
130.226.255.17 GigabitEthernet0/3: FSKNET SYMBION-DPU, 1000000000 -
snmpindex 10103
130.226.255.17 GigabitEthernet0/4: FSKNET SYMBION-VER Fiber, 1000000000
- snmpindex 10104
130.226.255.17 Null0: Uden navn, 4294967295 - snmpindex 10501
130.226.255.17 FastEthernet0: Uden navn, 100000000 - snmpindex 10502
130.226.255.17 Loopback1: ID, 4294967295 - snmpindex 20567

Please note the 'weird' snmpindexes - and those are the ones to be used
in mrtg.

Jan Ferré


--
Jan Ferré - UNI-C Netdrift - DTU Bygning 304, DK-2800 Lyngby
tlf. +45 3587 8935, cell. +45 2160 8012, fax. +45 3587 8990
EAN-no.: 5798000555198

_______________________________________________
mrtg mailing list
[hidden email]
https://lists.oetiker.ch/cgi-bin/listinfo/mrtg

Hi,

Snmp-server community bankm RO

Mohamed Sangey
Chief Technical Officer (CTO)
 
Tel Office:      (+255) 22 - 213 70 30
Support 24/7: (+255) 22 - 550 72 00
Fax:                  (+255) 22 - 213 92 22
Mobile:          (+255) 797 - 200020
Calling from the U.S:  212-372-7219
Calling from Israel:    057-6666555 ext. 4971
Email: [hidden email] / www.tansat.com
MSN : [hidden email]

 
 

-----Original Message-----
From: Jan Ferré [mailto:[hidden email]]
Sent: Monday, November 02, 2009 2:04 PM
To: Mohamed Sangey
Cc: [hidden email]; [hidden email]; [hidden email]; [hidden email]; [hidden email]
Subject: Re: [mrtg] GRE Tunnel mrtg traffic

Mohamed Sangey wrote:
> Hi,
>
> Router has 4 switch ports 0,1,2,3 and WAN port int fa 4 which shows as port 5 when I fire mrtg for that. This is router cisco 871.
>  
I use this script (requires snmp-tools) to see which interfaces are
available:

#!/bin/bash
# Generates a list of interfaces on a Cisco router

ROUTER=$1

COM=$2
COM=${COM:-public}

snmpwalk -v1 -c $COM $ROUTER IF-MIB::ifIndex | \
   cut -d " " -f4 | \
   while read index
     do
       speed=`snmpget -v1 -c $COM $ROUTER IF-MIB::ifSpeed.$index | cut
-d " " -f4`
       name="`snmpget -v1 -c $COM $ROUTER IF-MIB::ifAlias.$index | cut
-d " " -f4-10`"
       name=${name:-"Without name"}
       desc="`snmpget -v1 -c $COM $ROUTER IF-MIB::ifDescr.$index | cut
-d " " -f4`"
       echo $ROUTER $desc: $name, $speed - snmpindex $index
   done

exit 0

This basicly makes a list of all possible interfaces (the snmpwalk
command) and for each interface gets speed, name and description.

This may give a reply like:
130.226.255.17 Vlan1: Forskerparken Symbion (Kontakt IT Afdelingen),
1000000000 - snmpindex 1
130.226.255.17 Vlan2: Uden navn, 1000000000 - snmpindex 2
130.226.255.17 GigabitEthernet0/1: Forskerparken Symbion (Kontakt IT
Afdelingen), 1000000000 - snmpindex 10101
130.226.255.17 GigabitEthernet0/2: Forskerparken Symbion (Kontakt IT
Afdelingen), 10000000 - snmpindex 10102
130.226.255.17 GigabitEthernet0/3: FSKNET SYMBION-DPU, 1000000000 -
snmpindex 10103
130.226.255.17 GigabitEthernet0/4: FSKNET SYMBION-VER Fiber, 1000000000
- snmpindex 10104
130.226.255.17 Null0: Uden navn, 4294967295 - snmpindex 10501
130.226.255.17 FastEthernet0: Uden navn, 100000000 - snmpindex 10502
130.226.255.17 Loopback1: ID, 4294967295 - snmpindex 20567

Please note the 'weird' snmpindexes - and those are the ones to be used
in mrtg.

Jan Ferré


--
Jan Ferré - UNI-C Netdrift - DTU Bygning 304, DK-2800 Lyngby
tlf. +45 3587 8935, cell. +45 2160 8012, fax. +45 3587 8990
EAN-no.: 5798000555198

_______________________________________________
mrtg mailing list
[hidden email]
https://lists.oetiker.ch/cgi-bin/listinfo/mrtg

Mohamed Sangey wrote:

> I  have configured GRE Tunnel for my customer. Also created MRTG graph
> for it, but it misbehaves. I have fired mrtg config file for internet
> traffic, which reflect normal. Only problem is that traffic which shows
> VPN utilization.

A couple of things:  As others have suggested, verify the interface
number is correct for the tunnel.  Usually an snmpwalk of the interfaces
tree will give you the interface number.

Once you've done this, configure the router for persistent interface IDs
so they don't get scrambled during a reboot.

In global configuration mode, enter:

    snmp-server ifindex persist

Also beware that tunnel interfaces have a default bandwidth of 9Kbits/s.
  You'll want to set that to something sane, probably the bandwidth of
the underlying physical interface over which the tunneled traffic flows.
  In interface configuration mode on the tunnel interface:

    bandwidth 1536    (assuming a T1 physical path)

--
Jay Hennigan - CCIE #7880 - Network Engineering - [hidden email]
Impulse Internet Service  -  http://www.impulse.net/
Your local telephone and internet company - 805 884-6323 - WB6RDV

_______________________________________________
mrtg mailing list
[hidden email]
https://lists.oetiker.ch/cgi-bin/listinfo/mrtg

Dear All,

Config file of the GRE tunnel router is attached in the mail. This router is
currently online with the customer.

Please assist.

Mohamed Sangey
Chief Technical Officer (CTO)
 
Tel Office:      (+255) 22 - 213 70 30
Support 24/7: (+255) 22 - 550 72 00
Fax:                  (+255) 22 - 213 92 22
Mobile:          (+255) 797 - 200020
Calling from the U.S:  212-372-7219
Calling from Israel:    057-6666555 ext. 4971
Email: [hidden email] / www.tansat.com
MSN : [hidden email]

 
 
-----Original Message-----
From: [hidden email] [mailto:[hidden email]]
On Behalf Of Jay Hennigan
Sent: Monday, November 02, 2009 9:59 PM
Cc: [hidden email]
Subject: Re: [mrtg] GRE Tunnel mrtg traffic

Mohamed Sangey wrote:

> I  have configured GRE Tunnel for my customer. Also created MRTG graph
> for it, but it misbehaves. I have fired mrtg config file for internet
> traffic, which reflect normal. Only problem is that traffic which shows
> VPN utilization.

A couple of things:  As others have suggested, verify the interface
number is correct for the tunnel.  Usually an snmpwalk of the interfaces
tree will give you the interface number.

Once you've done this, configure the router for persistent interface IDs
so they don't get scrambled during a reboot.

In global configuration mode, enter:

    snmp-server ifindex persist

Also beware that tunnel interfaces have a default bandwidth of 9Kbits/s.
  You'll want to set that to something sane, probably the bandwidth of
the underlying physical interface over which the tunneled traffic flows.
  In interface configuration mode on the tunnel interface:

    bandwidth 1536    (assuming a T1 physical path)

--
Jay Hennigan - CCIE #7880 - Network Engineering - [hidden email]
Impulse Internet Service  -  http://www.impulse.net/
Your local telephone and internet company - 805 884-6323 - WB6RDV

_______________________________________________
mrtg mailing list
[hidden email]
https://lists.oetiker.ch/cgi-bin/listinfo/mrtg

BankM_DR#show run
Building configuration...

Current configuration : 1432 bytes
!
version 12.4
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname BankM_DR
!
boot-start-marker
boot-end-marker
!
no aaa new-model
!
!
dot11 syslog
ip cef
!
!
!
!
!
!
!
archive
 log config
  hidekeys
!
!
!
!
!
interface Tunnel1
 description <<< From BankM_Dr to HQ >>>
 ip address 10.10.10.2 255.255.255.252
 tunnel source 41.222.31.236
 tunnel destination 41.222.31.18
!
interface FastEthernet0
!
interface FastEthernet1
!
interface FastEthernet2
!
interface FastEthernet3
!
interface FastEthernet4
 description *** LAN ***
 ip address 41.222.31.236 255.255.255.192
 ip nat outside
 ip virtual-reassembly
 speed 100
 full-duplex
!
interface Vlan1
 description *** WAN ***
 ip address 192.168.2.101 255.255.255.0
 ip nat inside
 ip virtual-reassembly
!
ip forward-protocol nd
ip route 0.0.0.0 0.0.0.0 41.222.31.193
ip route 192.168.1.0 255.255.255.0 Tunnel1
!
no ip http server
no ip http secure-server
ip nat inside source list 101 interface FastEthernet4 overload
!
access-list 101 deny   ip 192.168.2.0 0.0.0.255 192.168.1.0 0.0.0.255
access-list 101 permit ip 192.168.2.0 0.0.0.255 any
snmp-server community bankm RW
!
!
_______________________________________________
mrtg mailing list
[hidden email]
https://lists.oetiker.ch/cgi-bin/listinfo/mrtg