vmwNsxTGatewayFirewallTcpHalfOpenFlowCountExceeded
VMWARE-NSX-MIB ·
.1.3.6.1.4.1.6876.120.1.0.39.0.29
Object
notification
Gateway firewall flow table usage for TCP half-open traffic on logical
router vmwNsxTDataCenterEntityId has reached vmwNsxTDataCenterFirewallHalfopenFlowUsage% which is at or above the
high threshold value of vmwNsxTDataCenterSystemUsageThreshold%.
New flows will be dropped by Gateway firewall when usage reaches the maximum limit.
Action required:
Log in as the admin user on Edge node and invoke the NSX CLI command
`get firewall <LR_INT_UUID> interface stats | json` by using
right interface uuid and check flow table usage for TCP half-open flows.
Check traffic flows going through the gateway is not a DOS attack or anomalous burst. If the traffic appears to be within
the normal load but the alarm threshold is hit, consider increasing the alarm threshold or route new traffic to another Edge node.
Context
- MIB
- VMWARE-NSX-MIB
- OID
.1.3.6.1.4.1.6876.120.1.0.39.0.29- Type
- notification
- Status
- current
- Parent
- vmwNsxTGatewayFirewallFeature
- Siblings
- 15
Syntax
No syntax metadata recorded.
Values & Constraints
No enumerated values or constraints recorded.
Related Objects
Sibling Objects
| Object | Type | Syntax | OID |
|---|---|---|---|
| vmwNsxTGatewayFirewallICMPFlowCountExceeded Gateway firewall flow table usage for ICMP traffic on logical
router vmwNsxTDataCenterEntityId has reached vmwNsxTDataCenterFirewallICMPFlowUsage% which is at or above the
high th… | notification | - | .1.3.6.1.4.1.6876.120.1.0.39.0.21 |
| vmwNsxTGatewayFirewallICMPFlowCountExceededClear Gateway firewall flow table usage on logical router vmwNsxTDataCenterEntityId has reached
below the high threshold value of vmwNsxTDataCenterSystemUsageThreshold%.
Acti… | notification | - | .1.3.6.1.4.1.6876.120.1.0.39.0.22 |
| vmwNsxTGatewayFirewallICMPFlowCountHigh Gateway firewall flow table usage for ICMP on logical router vmwNsxTDataCenterEntityId has reached
vmwNsxTDataCenterFirewallICMPFlowUsage% which is at or above the high threshold … | notification | - | .1.3.6.1.4.1.6876.120.1.0.39.0.23 |
| vmwNsxTGatewayFirewallICMPFlowCountHighClear Gateway firewall flow table usage for ICMP on logical router
vmwNsxTDataCenterEntityId has reached below the high threshold value of vmwNsxTDataCenterSystemUsageThreshold%.
… | notification | - | .1.3.6.1.4.1.6876.120.1.0.39.0.24 |
| vmwNsxTGatewayFirewallIPFlowCountExceeded Gateway firewall flow table usage for IP traffic on logical router vmwNsxTDataCenterEntityId has
reached vmwNsxTDataCenterFirewallIPFlowUsage% which is at or above the high thresh… | notification | - | .1.3.6.1.4.1.6876.120.1.0.39.0.25 |
| vmwNsxTGatewayFirewallIPFlowCountExceededClear Gateway firewall flow table usage on logical router vmwNsxTDataCenterEntityId has reached
below the high threshold value of vmwNsxTDataCenterSystemUsageThreshold%.
Acti… | notification | - | .1.3.6.1.4.1.6876.120.1.0.39.0.26 |
| vmwNsxTGatewayFirewallIPFlowCountHigh Gateway firewall flow table usage for IP on logical router vmwNsxTDataCenterEntityId has reached
vmwNsxTDataCenterFirewallIPFlowUsage% which is at or above the high threshold valu… | notification | - | .1.3.6.1.4.1.6876.120.1.0.39.0.27 |
| vmwNsxTGatewayFirewallIPFlowCountHighClear Gateway firewall flow table usage for non IP flows on logical router
vmwNsxTDataCenterEntityId has reached below the high threshold value of vmwNsxTDataCenterSystemUsageThreshold%… | notification | - | .1.3.6.1.4.1.6876.120.1.0.39.0.28 |
| vmwNsxTGatewayFirewallTcpHalfOpenFlowCountExceededClear Gateway firewall flow table usage on logical router vmwNsxTDataCenterEntityId has reached
below the high threshold value of vmwNsxTDataCenterSystemUsageThreshold%.
Acti… | notification | - | .1.3.6.1.4.1.6876.120.1.0.39.0.30 |
| vmwNsxTGatewayFirewallTcpHalfOpenFlowCountHigh Gateway firewall flow table usage for TCP on logical router vmwNsxTDataCenterEntityId has reached
vmwNsxTDataCenterFirewallHalfopenFlowUsage% which is at or above the high thresho… | notification | - | .1.3.6.1.4.1.6876.120.1.0.39.0.31 |
| vmwNsxTGatewayFirewallTcpHalfOpenFlowCountHighClear Gateway firewall flow table usage for TCP half-open on logical router
vmwNsxTDataCenterEntityId has reached below the high threshold value of vmwNsxTDataCenterSystemUsageThreshold… | notification | - | .1.3.6.1.4.1.6876.120.1.0.39.0.32 |
| vmwNsxTGatewayFirewallUDPFlowCountExceeded Gateway firewall flow table usage for UDP traffic on logical
router vmwNsxTDataCenterEntityId has reached vmwNsxTDataCenterFirewallUDPFlowUsage% which is at or above the
high thre… | notification | - | .1.3.6.1.4.1.6876.120.1.0.39.0.33 |
| vmwNsxTGatewayFirewallUDPFlowCountExceededClear Gateway firewall flow table usage on logical router vmwNsxTDataCenterEntityId has reached
below the high threshold.
Action required:
None, receipt of this notification … | notification | - | .1.3.6.1.4.1.6876.120.1.0.39.0.34 |
| vmwNsxTGatewayFirewallUDPFlowCountHigh Gateway firewall flow table usage for UDP on logical router vmwNsxTDataCenterEntityId has reached
vmwNsxTDataCenterFirewallUDPFlowUsage% which is at or above the high threshold va… | notification | - | .1.3.6.1.4.1.6876.120.1.0.39.0.35 |
| vmwNsxTGatewayFirewallUDPFlowCountHighClear Gateway firewall flow table usage for UDP on logical router
vmwNsxTDataCenterEntityId has reached below the high threshold.
Action required:
None, receipt of this notif… | notification | - | .1.3.6.1.4.1.6876.120.1.0.39.0.36 |
Notification Objects
| Object | Type | Syntax | OID |
|---|---|---|---|
| vmwNsxTDataCenterTimestamp The timestamp when the NSX Data Center event occurred. | scalar | SNMPv2-TCDateAndTime | .1.3.6.1.4.1.6876.120.1.1.1 |
| vmwNsxTDataCenterFeatureName The NSX Data Center feature ID associated with the event. | scalar | VmwNsxTDataCenterFeatureIdType | .1.3.6.1.4.1.6876.120.1.1.2 |
| vmwNsxTDataCenterEventType The name of the NSX Data Center event. | scalar | VmwNsxTDataCenterEventTypeType | .1.3.6.1.4.1.6876.120.1.1.3 |
| vmwNsxTDataCenterEventSeverity The severity of the NSX Data Center event. | scalar | VmwNsxTDataCenterSeverityType | .1.3.6.1.4.1.6876.120.1.1.4 |
| vmwNsxTDataCenterNodeId The node ID from where a NSX Data Center event was emitted. | scalar | VmwNsxTDataCenterNodeIdType | .1.3.6.1.4.1.6876.120.1.1.5 |
| vmwNsxTDataCenterNodeType The type of node from where a NSX Data Center event was emitted. | scalar | VmwNsxTDataCenterNodeTypeType | .1.3.6.1.4.1.6876.120.1.1.6 |
| vmwNsxTDataCenterEntityId The ID of a NSX Data Center entity an event pertains to. The event
description field provides additional details of the entity. For
example the ID can be for a specific Load Balan… | scalar | VmwNsxTDataCenterEntityIdType | .1.3.6.1.4.1.6876.120.1.1.21 |
| vmwNsxTDataCenterFirewallHalfopenFlowUsage Firewall TCP half-open connection usage. | scalar | VmwNsxTDataCenterFirewallHalfopenFlowUsageType | .1.3.6.1.4.1.6876.120.1.1.95 |
| vmwNsxTDataCenterSystemUsageThreshold The configured threshold value for the CPU, memory, or disk usage
percentage of an NSX appliance. The value is an integer between 0 and
100. | scalar | VmwNsxTDataCenterSystemUsageThresholdType | .1.3.6.1.4.1.6876.120.1.1.34 |