How to add plugins in icinga2 for network devices

Hello,I am having Icinga2 version 2.5.3
I have added a Firewall in the host file for monitoring.Its completed successfully,as i can see the same in the web with import generic-host by default plugin.
I want to monitor the interfaces with its utilisation of the firewall as well as the temperature .Can any one tell me if there is already a plugin for it? If yes how to use it…
If not , how to search for it and the steps to configure it.
And what changes needs to be done from the firewall point to have communication with icinga.
Kindly help.

For plugins, if it’s not included with Icinga (and sometimes nrpe), you usually are on your own for finding plugins. There are a ton of plugins out there, keep in mind you might have better search results for “Nagios Plugins” as opposed to “Icinga Plugins”

For networking specifically, I really like the centreon plugins – they cover a wide range of network devices among other things.

For configuring a plugin you might want to check out the docs on service monitoring, but in general you’re going to want to read through the docs to get a better understanding of how to put things together.

For example, adding a check command and then actually using it usually requires multiple steps:

  • define the command
  • create/utilize command templates
  • create/utilize service templates
  • create service apply rules
  • *probably some other things I cannot remember since I haven’t had enough coffee

From a firewall standpoint, Icinga will in most cases just need to be allowed to ping [the] interface(s), and be allowed to talk to the device via SNMP.


We use check_nwc_health - ConSol Labs to monitor f5 via SNMP and I can remember that there are firewall and temperature features in there.

1 Like

you need SNMP.
try check_snmp and the centreon plugins
you can use it to monitor the cpu/memory/temperature of network device.

1 Like

And then do you have to mention the firewall cli credentials inside icinga to check and get the information from it ?

SNMP is then configured at firewall as well as the icinga side to communicate?
if yes,
where to configure the snmp details inside icinga?Please help

check_nwc_health ist SNMP only so no cli credentials. I would advice to configure a read only SNMP community -v 2c (performance) that only Icinga can access (white list) on the firewall.
Your command and service definition in Icinga decides how you specify the SNMP credentials in your Icinga. There are multiple ways to do it as the Icinga config is a domain specific language. If you use the director, you first add the check plugin to the file system of the node from which you want to check, then you define the check command in the director, then add fields for the check command, then create a service template that uses the check specific fields and in the and you use the service template to create the different services from your new service template to check the different metrics you want to monitor. But as your luck will have it, check_nwc_health is in the ITL so most of the work is already done for you Icinga Template Library - Icinga 2.