cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Full Stack Monitoring

pstewart
Getting noticed
‎10-19-2018 03:33 AM
‎10-19-2018 03:33 AM

Full Stack Monitoring

In looking at documentation, reading through the communities, and now testing some gear I've found the best way to get SNMP information is directly from the devices.  This is still ongoing testing for me but I think I can get enough information that's needed now ....

 

My question though is with regards to direct SNMP monitoring - can you monitor via VPN tunnel?

 

I'm working on MSP deployment and considering turning up a VPN site to site back to a centralized MX specifically for monitoring purposes - anyone done something along these lines?  Any surprises?  The one thing that comes to mind is overlapping IP addresses between the sites but I understand the VPN has some kind of translation options to address this challenge?   A lot of these sites will also have other site to site requirements along with remote access VPN - for my purposes of turning up a "monitoring VPN" is there anything else that comes to mind to be watchful for?

 

Thanks,

Paul

Reply
5 REPLIES 5
PhilipDAth
Kind of a big deal
Kind of a big deal
‎10-19-2018 10:15 AM
‎10-19-2018 10:15 AM

Re: Full Stack Monitoring

Unless all the devices are in the same organisation so you can use AutoVPN - don't do it.  It is way to much hard work and too complicated. 

 

You would be better off writing a monitoring Plugin for your existing monitoring system that uses the API or stick to using SNMP to the dashboard. 

0 Kudos
Reply
pstewart
Getting noticed
‎10-19-2018 12:30 PM
‎10-19-2018 12:30 PM

Re: Full Stack Monitoring

Thanks ... we were considering doing it all in one organization with the networks broken out per customer site etc ... but doing separate organizations has some benefits as well... licensing etc.

 

I haven't done much with AutoVPN other than tried it out and it worked - simple test 😉  I need to do some reading obviously but you're saying that AutoVPN between organizations isn't possible or at least it's painful?

 

Thanks,

Paul

0 Kudos
Reply
pstewart
Getting noticed
‎10-19-2018 12:36 PM
‎10-19-2018 12:36 PM

Re: Full Stack Monitoring

Partially answering my own question from this post I just found: https://community.meraki.com/t5/Managed-Services/AutoVPN-in-an-MSP-environment/m-p/14939#M70

 

I need to read up on AutoVPN (or any site to site options in Meraki) to understand more.  Basically the reason is so that we can actually monitor all the devices via SNMP directly (seems like better metrics are available) along with the fact we can ping to check it's actually online etc ... maybe there's a better way?  Basically we need to alert and contact the customer within minutes possibly of an issue - the Meraki Dashboard won't give us this ability ...

 

Thanks,

Paul

0 Kudos
Reply
PhilipDAth
Kind of a big deal
Kind of a big deal
‎10-21-2018 11:43 AM
‎10-21-2018 11:43 AM

Re: Full Stack Monitoring

AutoVPN between organisations is not possible.  Also note that IP addressing must be unique within a single organisation using AutoVPN.

0 Kudos
Reply
pstewart
Getting noticed
‎10-21-2018 12:00 PM
‎10-21-2018 12:00 PM

Re: Full Stack Monitoring

Thanks ... been doing a lot of reading and things are looking to come together - testing right now 😉

Reply
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
© 2021 Meraki