Browsed by
Month: July 2012

Running IPv6 when your ISP doesn’t yet support it [solved see comments]

Running IPv6 when your ISP doesn’t yet support it [solved see comments]

I ran into an issue where a client wanted to run IPv6 internally for testing, but their ISP did not yet support it.  So we decided to use the FE00:: space and carved out a /48 for them to use.  We set each subnet internally to use a different /64, and thought all was well. Until World IPv6 day that is (June 8th 2012). Suddenly, websites (such as Google and Bing) take 30+ seconds to load.  I quickly realized that…

Read More Read More

ASA and MRTG VPN Bandwidth monitoring

ASA and MRTG VPN Bandwidth monitoring

I came across an apparent problem in an older Cisco ASA firewall and thought I would post about it. Like many others, I wanted to monitor traffic across my site-to-site VPN’s.  I started searching and came across someone in a forum that said what the SNMP OID that MRTG needed to monitor were, so I tried: snmpwalk -v 1 -c public 192.168.1.1 1.3.6.1.4.1.9.9.109.1.1.1.1.3.1 This showed that the VPN tunnel had a strange OID below it. SNMPv2-SMI::enterprises.9.9.171.1.2.3.1.2.6340608 = INTEGER: 1 SNMPv2-SMI::enterprises.9.9.171.1.2.3.1.3.6340608…

Read More Read More