Monitor SNMP Trap
Applies To: Opalis 6.3
The Monitor SNMP Trap object waits for an event to occur either in the Microsoft SNMP Trap Service, or on a port that you specify. Using filters, you can trigger your Policies according to the device that raised the event or the enterprise, generic, or specific identifiers of the SNMP trap.
To configure SNMP version 3 security (if you are not using the Microsoft SNMP Trap Service), in the client click the Options menu and select SNMP.
Use the Monitor SNMP Trap object to monitor a network device for critical errors, automatically create a trouble ticket, and perform level 1 diagnostics on the device.
Configuring the Monitor SNMP Trap Object
To configure the Monitor SNMP Trap object you need to know the version of SNMP that you are using, the source host IP address, the enterprise identifier of the device, and the generic or specific identifier of the device that you are monitoring.
To configure the Monitor SNMP Trap object
From the Objects pane, drag a Monitor SNMP Trap object to the active Policy.
Double-click the Monitor SNMP Trap object icon. The Properties dialog opens.
For information about the settings on the Details tab see the following table.
Click the Advanced tab.
To add objects, click Add. The Add object identifier filter dialog appears.
In the OID box, type the object ID number, and then click OK. The object appears in the list.
Objects that you add to the Object identifiers list become published data items when a matching object is found on the Details tab.
The Monitor SNMP Trap object launches even if there are no objects in this list, or if the objects do not correspond to the variable bindings reported by the SNMP trap. This list is used only to create new published data items.
For information about the settings on the General tab, the Run Behavior tab, and other tabs if applicable, see Common Tabs.
Details Tab
| Element | Configuration Instructions |
|---|---|
Microsoft SNMP Trap Service (SNMPv1, SNMPv2c) |
Select this option to use the Microsoft SNMP Trap Service. This service is only compatible with SNMP versions SNMPv1 and SNMPv2c. |
No dependency (SNMPv1, SNMPv2c, SNMPv3) |
Select this option to monitor SNMP traps using a port rather than the Microsoft SNMP Trap Service. |
Port |
If you select the No dependency option, type the number of the communication port that will be monitored for SNMP traps. If you select port 162, the Microsoft SNMP Trap Service must be disabled because it uses the same port when it runs. |
Source host |
Select to specify the IP address of the device where the event originates. |
Enterprise identifier |
Select to specify the enterprise identifier of the event raised by the device. |
Generic identifier |
Select to specify the generic identifier of the SNMP trap. There are six options available: coldStart(0) - Select to filter for a cold start of the network device. This option has a numerical value of 0. warmStart(1) - Select to filter for a warm start of the network device. This option has a numerical value of 1. linkDown(2) - Select to filter for a severed connection to the network device. This option has a numerical value of 2. linkUp(3) - Select to filter for a re-established connection to the network device. This option has a numerical value of 3. authenticationFailure(4) - Select to filter for a failed SNMP authentications to the network device. This option has a numerical value of 4. egpNeighborLoss(5) - Select to filter for a lost connection to an EGP neighbor. This option has a numerical value of 5. enterpriseSpecific(6) - Select to filter based on an enterprise specific ID. This option has a numerical value of 6. You must specify this option to filter based on a Specific identifier. |
Specific identifier |
Select to specify an enterprise specific identifier for the SNMP trap. This element becomes active when you select the enterpriseSpecific(6) option of the Generic identifier box. |
Monitor SNMP Trap Published Data
The following table lists the element names and descriptions of the data published by this object. For information about the published data elements that are common to all objects, see Policy Workflow Rules.
In addition to these published data items, objects that you added to the Object identifiers list on the Advanced tab become published data items when they match an object found on the Details tab.
| Element Name | Description |
|---|---|
Source IP address |
The IP address of the device where the trap originated. |
Enterprise Id |
The enterprise ID of the trap. |
Generic Id |
The generic ID of the trap. |
Specific Id |
The specific ID of the trap. The value of the specific identifier is returned when using the enterpriseSpecific(6) option of the Generic identifier box. Otherwise, a value of 0 (zero) is returned. |
Trap port |
The port where the trap was received. |
Varbind count |
The number of variable bindings received. |
SNMP Version |
The SNMP version that was specified for this trap. |