SNMP MIB Enhancement
Please add support for getting ARP information over SNMP. We need that information to connect the XG Firewall with macmon for NAC reasons.
Michael Marshall commented
Seriously, I can't use our monitoring systems to search for IP-addresses / MAC-addresses where Sophos XG-firewall is the main gateway device.
We have 50-ish vendors in this monitoring-system, and it's only the XG-devices that don't allow SNMP-motoring systems to monitor such a BASIC function as obtaining the ARP-table...
Annoying that I have to SSH to the device and grep the ARP table whenever I need a list of devices in a VLAN.
This fix shouldn't require much development attention. Please fix.
Eduardo Renieblas commented
It's really frustrated to find out, our client its thinking to change to Fortinet FW
Sajid Hameed commented
Can you please add options to monitor all the ports status and tunnel status.
Routing & ARP Tables based on standard OID's absolutly a "must have" for Monitoring and Documentation-ReadOut
All over the world firewalls and routers having values on it:
Since one year nothing changed, still missing since start of XG-Firewalls. Regarding this we can say as Partner: better still on SG as chage to XG yet! Frustrating situation!
It's really frustrated to find out we need to choose between xg firewall and network mapping tools
Matthias Kuny commented
We and our Customers also waiting for a full RFC implimentation.
Also had contact with macmon GmbH to find a solution.
Manfred Warta (CCT) commented
Stefan, +1 for this suggestion, same needed for several customers of us
Really annoying it should be a feature request at the first place !!!
It is a pretty basic feature for a layer 3 device.
Hopefully, it will be included on the next FW update.
Michael Lynn commented
We need the same information for Auvik. Just got off the phone with Auvik support because many of our devices couldn't get IP to MAC associations and the network map was incomplete.
Auvik support said Sophos is an odd case where ARP information isn't shared through SNMP and Auvik uses the Layer 3 network device (Sophos in our case) to get that information.
Unfortunately, this puts us at a disadvantage when we use Sophos since ARP isn't provided through SNMP.
Brian Fertig commented
Why should this even be an idea. Is XG not mature enough to support SNMP? How is it UTM supports this but not this new product? XG is supposed to complete with Cisco, Fortinet, Juniper.. They support the full RFC implimentation of SNMP.
Jochen Füllgraf commented
We, macmon secure GmbH, have hundreds of customers using the Sophos firewall and everybody we talked to waits for this necessary implementation. Best would be as it was in Sophos SG firewalls.