Fortinet black logo

New Features

SNMP OIDs for port block allocations IP pool statistics

Copy Link
Copy Doc ID 77966226-6996-11ec-bdf2-fa163e15d75b:460777
Download PDF

SNMP OIDs for port block allocations IP pool statistics

The FortiGate SNMP MIB has been updated to support OIDs that provide data about any configured port block allocation (PBA) IP pools. There are four SNMP OIDs for polling critical PBAs statistics, including total PBAs, in use PBAs, expiring PBAs, and free PBAs:

Name

OID

Description

fgFwIppStatsTotalPBAs 1.3.6.1.4.1.12356.101.5.3.2.1.1.9

The total number of port block allocations.

fgFwIppStatsInusePBAs 1.3.6.1.4.1.12356.101.5.3.2.1.1.10

The number of port block allocations in use.

fgFwIppStatsExpiringPBAs 1.3.6.1.4.1.12356.101.5.3.2.1.1.11

The number of port block allocations that are expiring.

fgFwIppStatsFreePBAs 1.3.6.1.4.1.12356.101.5.3.2.1.1.12

The number of free port block allocations.

See Dynamic SNAT for more information on port block allocation IP pools.

Example 1

This example occurs when no IP pool is configured.

OID

Sample query

fgFwIppStatsTotalPBAs
snmpwalk -v2c -c FGT-B-SNMPv2 172.16.200.2 1.3.6.1.4.1.12356.101.5.3.2.1.1.9
FORTINET-FORTIGATE-MIB::fgFwIppStatsEntry.9 = No Such Instance currently exists at this OID

fgFwIppStatsInusePBAs

snmpwalk -v2c -c FGT-B-SNMPv2 172.16.200.2 1.3.6.1.4.1.12356.101.5.3.2.1.1.10
FORTINET-FORTIGATE-MIB::fgFwIppStatsEntry.10 = No Such Instance currently exists at this OID

fgFwIppStatsExpiringPBAs

snmpwalk -v2c -c FGT-B-SNMPv2 172.16.200.2 1.3.6.1.4.1.12356.101.5.3.2.1.1.11
FORTINET-FORTIGATE-MIB::fgFwIppStatsEntry.11 = No Such Instance currently exists at this OID

fgFwIppStatsFreePBAs

snmpwalk -v2c -c FGT-B-SNMPv2 172.16.200.2 1.3.6.1.4.1.12356.101.5.3.2.1.1.12
FORTINET-FORTIGATE-MIB::fgFwIppStatsEntry.12 = No Such Instance currently exists at this OID

Example 2

This example occurs when an IP pool is configured and not used in a firewall policy.

Note

This example can also demonstrate when an IP pool is configured and used in a firewall policy but there is no traffic match.

OID

Sample query

fgFwIppStatsTotalPBAs
snmpwalk -v2c -c FGT-B-SNMPv2 172.16.200.2 1.3.6.1.4.1.12356.101.5.3.2.1.1.9
FORTINET-FORTIGATE-MIB::fgFwIppStatsEntry.9.13.13.13.1.13.13.13.13.2 = Gauge32: 6136

fgFwIppStatsInusePBAs

snmpwalk -v2c -c FGT-B-SNMPv2 172.16.200.2 1.3.6.1.4.1.12356.101.5.3.2.1.1.10
FORTINET-FORTIGATE-MIB::fgFwIppStatsEntry.10.13.13.13.1.13.13.13.13.2 = Gauge32: 0

fgFwIppStatsExpiringPBAs

snmpwalk -v2c -c FGT-B-SNMPv2 172.16.200.2 1.3.6.1.4.1.12356.101.5.3.2.1.1.11
FORTINET-FORTIGATE-MIB::fgFwIppStatsEntry.11.13.13.13.1.13.13.13.13.2 = Gauge32: 0

fgFwIppStatsFreePBAs

snmpwalk -v2c -c FGT-B-SNMPv2 172.16.200.2 1.3.6.1.4.1.12356.101.5.3.2.1.1.12
FORTINET-FORTIGATE-MIB::fgFwIppStatsEntry.12.13.13.13.1.13.13.13.13.2 = Gauge32: 100

Example 3

This example occurs when an IP pool is configured and used in a firewall policy with traffic matching.

OID

Sample query

fgFwIppStatsTotalPBAs
snmpwalk -v2c -c FGT-B-SNMPv2 172.16.200.2 1.3.6.1.4.1.12356.101.5.3.2.1.1.9
FORTINET-FORTIGATE-MIB::fgFwIppStatsEntry.9.13.13.13.1.13.13.13.13.2 = Gauge32: 6136

fgFwIppStatsInusePBAs

snmpwalk -v2c -c FGT-B-SNMPv2 172.16.200.2 1.3.6.1.4.1.12356.101.5.3.2.1.1.10
FORTINET-FORTIGATE-MIB::fgFwIppStatsEntry.10.13.13.13.1.13.13.13.13.2 = Gauge32: 1

fgFwIppStatsExpiringPBAs

snmpwalk -v2c -c FGT-B-SNMPv2 172.16.200.2 1.3.6.1.4.1.12356.101.5.3.2.1.1.11
FORTINET-FORTIGATE-MIB::fgFwIppStatsEntry.11.13.13.13.1.13.13.13.13.2 = Gauge32: 0

fgFwIppStatsFreePBAs

snmpwalk -v2c -c FGT-B-SNMPv2 172.16.200.2 1.3.6.1.4.1.12356.101.5.3.2.1.1.12
FORTINET-FORTIGATE-MIB::fgFwIppStatsEntry.12.13.13.13.1.13.13.13.13.2 = Gauge32: 99

Example 4

This example occurs when an IP pool is configured and used in a firewall policy but the traffic session is expired.

OID

Sample query

fgFwIppStatsTotalPBAs
snmpwalk -v2c -c FGT-B-SNMPv2 172.16.200.2 1.3.6.1.4.1.12356.101.5.3.2.1.1.9
FORTINET-FORTIGATE-MIB::fgFwIppStatsEntry.9.13.13.13.1.13.13.13.13.2 = Gauge32: 6136

fgFwIppStatsInusePBAs

snmpwalk -v2c -c FGT-B-SNMPv2 172.16.200.2 1.3.6.1.4.1.12356.101.5.3.2.1.1.10
FORTINET-FORTIGATE-MIB::fgFwIppStatsEntry.10.13.13.13.1.13.13.13.13.2 = Gauge32: 0

fgFwIppStatsExpiringPBAs

snmpwalk -v2c -c FGT-B-SNMPv2 172.16.200.2 1.3.6.1.4.1.12356.101.5.3.2.1.1.11
FORTINET-FORTIGATE-MIB::fgFwIppStatsEntry.11.13.13.13.1.13.13.13.13.2 = Gauge32: 1

fgFwIppStatsFreePBAs

snmpwalk -v2c -c FGT-B-SNMPv2 172.16.200.2 1.3.6.1.4.1.12356.101.5.3.2.1.1.12
FORTINET-FORTIGATE-MIB::fgFwIppStatsEntry.12.13.13.13.1.13.13.13.13.2 = Gauge32: 100

SNMP OIDs for port block allocations IP pool statistics

The FortiGate SNMP MIB has been updated to support OIDs that provide data about any configured port block allocation (PBA) IP pools. There are four SNMP OIDs for polling critical PBAs statistics, including total PBAs, in use PBAs, expiring PBAs, and free PBAs:

Name

OID

Description

fgFwIppStatsTotalPBAs 1.3.6.1.4.1.12356.101.5.3.2.1.1.9

The total number of port block allocations.

fgFwIppStatsInusePBAs 1.3.6.1.4.1.12356.101.5.3.2.1.1.10

The number of port block allocations in use.

fgFwIppStatsExpiringPBAs 1.3.6.1.4.1.12356.101.5.3.2.1.1.11

The number of port block allocations that are expiring.

fgFwIppStatsFreePBAs 1.3.6.1.4.1.12356.101.5.3.2.1.1.12

The number of free port block allocations.

See Dynamic SNAT for more information on port block allocation IP pools.

Example 1

This example occurs when no IP pool is configured.

OID

Sample query

fgFwIppStatsTotalPBAs
snmpwalk -v2c -c FGT-B-SNMPv2 172.16.200.2 1.3.6.1.4.1.12356.101.5.3.2.1.1.9
FORTINET-FORTIGATE-MIB::fgFwIppStatsEntry.9 = No Such Instance currently exists at this OID

fgFwIppStatsInusePBAs

snmpwalk -v2c -c FGT-B-SNMPv2 172.16.200.2 1.3.6.1.4.1.12356.101.5.3.2.1.1.10
FORTINET-FORTIGATE-MIB::fgFwIppStatsEntry.10 = No Such Instance currently exists at this OID

fgFwIppStatsExpiringPBAs

snmpwalk -v2c -c FGT-B-SNMPv2 172.16.200.2 1.3.6.1.4.1.12356.101.5.3.2.1.1.11
FORTINET-FORTIGATE-MIB::fgFwIppStatsEntry.11 = No Such Instance currently exists at this OID

fgFwIppStatsFreePBAs

snmpwalk -v2c -c FGT-B-SNMPv2 172.16.200.2 1.3.6.1.4.1.12356.101.5.3.2.1.1.12
FORTINET-FORTIGATE-MIB::fgFwIppStatsEntry.12 = No Such Instance currently exists at this OID

Example 2

This example occurs when an IP pool is configured and not used in a firewall policy.

Note

This example can also demonstrate when an IP pool is configured and used in a firewall policy but there is no traffic match.

OID

Sample query

fgFwIppStatsTotalPBAs
snmpwalk -v2c -c FGT-B-SNMPv2 172.16.200.2 1.3.6.1.4.1.12356.101.5.3.2.1.1.9
FORTINET-FORTIGATE-MIB::fgFwIppStatsEntry.9.13.13.13.1.13.13.13.13.2 = Gauge32: 6136

fgFwIppStatsInusePBAs

snmpwalk -v2c -c FGT-B-SNMPv2 172.16.200.2 1.3.6.1.4.1.12356.101.5.3.2.1.1.10
FORTINET-FORTIGATE-MIB::fgFwIppStatsEntry.10.13.13.13.1.13.13.13.13.2 = Gauge32: 0

fgFwIppStatsExpiringPBAs

snmpwalk -v2c -c FGT-B-SNMPv2 172.16.200.2 1.3.6.1.4.1.12356.101.5.3.2.1.1.11
FORTINET-FORTIGATE-MIB::fgFwIppStatsEntry.11.13.13.13.1.13.13.13.13.2 = Gauge32: 0

fgFwIppStatsFreePBAs

snmpwalk -v2c -c FGT-B-SNMPv2 172.16.200.2 1.3.6.1.4.1.12356.101.5.3.2.1.1.12
FORTINET-FORTIGATE-MIB::fgFwIppStatsEntry.12.13.13.13.1.13.13.13.13.2 = Gauge32: 100

Example 3

This example occurs when an IP pool is configured and used in a firewall policy with traffic matching.

OID

Sample query

fgFwIppStatsTotalPBAs
snmpwalk -v2c -c FGT-B-SNMPv2 172.16.200.2 1.3.6.1.4.1.12356.101.5.3.2.1.1.9
FORTINET-FORTIGATE-MIB::fgFwIppStatsEntry.9.13.13.13.1.13.13.13.13.2 = Gauge32: 6136

fgFwIppStatsInusePBAs

snmpwalk -v2c -c FGT-B-SNMPv2 172.16.200.2 1.3.6.1.4.1.12356.101.5.3.2.1.1.10
FORTINET-FORTIGATE-MIB::fgFwIppStatsEntry.10.13.13.13.1.13.13.13.13.2 = Gauge32: 1

fgFwIppStatsExpiringPBAs

snmpwalk -v2c -c FGT-B-SNMPv2 172.16.200.2 1.3.6.1.4.1.12356.101.5.3.2.1.1.11
FORTINET-FORTIGATE-MIB::fgFwIppStatsEntry.11.13.13.13.1.13.13.13.13.2 = Gauge32: 0

fgFwIppStatsFreePBAs

snmpwalk -v2c -c FGT-B-SNMPv2 172.16.200.2 1.3.6.1.4.1.12356.101.5.3.2.1.1.12
FORTINET-FORTIGATE-MIB::fgFwIppStatsEntry.12.13.13.13.1.13.13.13.13.2 = Gauge32: 99

Example 4

This example occurs when an IP pool is configured and used in a firewall policy but the traffic session is expired.

OID

Sample query

fgFwIppStatsTotalPBAs
snmpwalk -v2c -c FGT-B-SNMPv2 172.16.200.2 1.3.6.1.4.1.12356.101.5.3.2.1.1.9
FORTINET-FORTIGATE-MIB::fgFwIppStatsEntry.9.13.13.13.1.13.13.13.13.2 = Gauge32: 6136

fgFwIppStatsInusePBAs

snmpwalk -v2c -c FGT-B-SNMPv2 172.16.200.2 1.3.6.1.4.1.12356.101.5.3.2.1.1.10
FORTINET-FORTIGATE-MIB::fgFwIppStatsEntry.10.13.13.13.1.13.13.13.13.2 = Gauge32: 0

fgFwIppStatsExpiringPBAs

snmpwalk -v2c -c FGT-B-SNMPv2 172.16.200.2 1.3.6.1.4.1.12356.101.5.3.2.1.1.11
FORTINET-FORTIGATE-MIB::fgFwIppStatsEntry.11.13.13.13.1.13.13.13.13.2 = Gauge32: 1

fgFwIppStatsFreePBAs

snmpwalk -v2c -c FGT-B-SNMPv2 172.16.200.2 1.3.6.1.4.1.12356.101.5.3.2.1.1.12
FORTINET-FORTIGATE-MIB::fgFwIppStatsEntry.12.13.13.13.1.13.13.13.13.2 = Gauge32: 100