It is not a secret that SNMP is a little bit of a mess when we need to know whether a device is compatible with a particular OID. The only way to be sure about it is by testing the OID against the device, and the result of this test will depend on several variables such as device model, firmware version, firmware package (IP Base, IP Services…) , features enabled (EIGRP, HSRP …) or even how the features are configured (BGP in basic mode or AF mode).
Early in June SolarWinds announced the pre-release launch of their new syslog and SNMP Trap solution for their flagship Orion monitoring suite; SolarWinds Log Manager for Orion. This is to be a licensed module, which will provide a solution to allow the reception of event log data for operational use.
A common complaint that I receive when I’m onsite delivering consultancy or training on SolarWinds is that alerts can be disconnected from what you see for the device status on the web interface. I understand that this is quite annoying when you check a device and you see its status is green when the same device has a critical alert.
In monitoring, the importance of baselining can’t be overstated. It’s all well and good that you are gathering utilisation data for memory, CPU, and other metrics, but without adequately calculated thresholds how do you really know what the performance is? Of course, you have the options of using global defaults, but the best practice approach is to place thresholds at the object layer.
Do you guys remember the movie Minority Report? In this movie, there are three psychics called precogs that are part of “Precrime”, a specialised police department that could apprehend criminals based on foreknowledge provided by the precogs. I have to admit that I like the movie because it makes me think whether this is something that would be accepted in our society in the present day. But also makes me wonder if we could do something similar with our network devices, and catch the bad guy before something nasty happens on your network. In this case, we don’t want to put anyone in jail, we just want to be sure that we have the tools to identify, take action and revert any changes.