J.T -
> I am confused on how to configure Netview to receive traps on a community string other than public
You need not do anything. NetView will receive log and display all trapd regardless of community string. The community string in a trap is "information only" and not a security device as it is for SNMP sets or gets.
>The next thing I would like to be able to do is test Netview to make sure it is indeed processing traps received.
Use snmptrap and create scripts which mimic the traps you expect. It's explained in the man page. Here's an example:
#!/bin/ksh
# cisco.syslog trap
#
# per Cisco the variables are
# clogHistFacilty = $1
# clogHistSeverity = $2
# clogHistMsgName = $3
# clogHistMsgText = $4
# clogHistTimestamp = $5
#
/usr/OV/bin/snmptrap \
`hostname` .1.3.6.1.4.1.9.9.41.2 \
'xxx.raleigh.ibm.com' 6 1 10 \
.1.3.6.1.4.1.9.9.41.2.1.0 Integer 20 \
.1.3.6.1.4.1.9.9.41.2.2.0 Integer 4 \
.1.3.6.1.4.1.9.9.41.2.3.0 OctetStringascii "Reset_value" \
.1.3.6.1.4.1.9.9.41.2.4.0 OctetStringascii "106010: Deny inbound udp src Backend_FW_Web:32.84.142.137/161 inside:32.83.13.194/162" \
.1.3.6.1.4.1.9.9.41.2.5.0 Timeticks 1234
Notice that in this example the first parameter is hostname enclosed in back tics, which on UNIX, causes the hostname command to be executed. So this script will send this dummy Cisco syslog trap to the very same NetView on which you execute it.
Hope this helps
James Shanks
Level 3 Support for Tivoli NetView for UNIX and Windows
Tivoli Software / IBM Software Group
|
| "Edwards, JT - ESM" <JEdwards3@wm.com>
Sent by: owner-nv-l-digest@lists.us.ibm.com
10/16/2003 12:03 PM
Please respond to nv-l
|
To: "'nv-l@lists.us.ibm.com'" <nv-l@lists.us.ibm.com>
cc:
Subject: RE: [nv-l] Confused about setting up an SNMP proxy
|
James,
I am not using Netview for Windows. I just want to make sure I am performing all the steps necessary for enabling Netview to receive traps from other applications for forwarding to TEC.
Allow me to reinterate the steps I have taken:
- Integrated the traps and built the barocs from the vendor supplied MIB
- Integrated the barocs into TEC (we will write the rules for the correlation we desire)
I am confused on how to configure Netview to receive traps on a community string other than public. The next thing I would like to be able to do is test Netview to make sure it is indeed processing traps received.
I hope made my interrogative with a bit more clarity.
Again thanks in advance! :-)
J.T. Edwards
Sr. Systems Programmer
Enterprise Systems Management
Waste Management Incorporated
"Proud Sponsor of NASCAR"
Office: (713)265-1294
Mobile: (832)457-5239
-----Original Message-----
From: James Shanks [mailto:jshanks@us.ibm.com]
Sent: Wednesday, October 15, 2003 4:41 PM
To: nv-l@lists.us.ibm.com
Subject: Re: [nv-l] Confused about setting up an SNMP proxy
I find your confusion even more puzzling than you do.
(1) Your NetView for Windows (from your description I assume that's what you are on) does not care what community string is in the trap. It will receive log and display them all. You can filter them out of your event browser view if you want, but that's all.
(2) A proxy is not usually needed. If the device is SNMP-capable and can send it's own traps, you just configure them to send them to the address of your NetView box. If these things are not SNMP-capable, then how would you even get their proprietary traps to the proxy? Perhaps you should explain in some more detail just what kinds of devices you are talking about.
(3) By default the NetView for Windows TEC adapter will only send NetView traps to TEC. To change that you have to modify the config files which control it. They are in \usr\ov\conf and are named tecad_nv6k.xxx. You have to modify the OID file to tell the adapter what to collect, the CDS file to map what is collected into a TEC event, and the CONF file to tell the adapter which entries in the CDS you want to use at this particular time. My advice is to obtain the Event Adapters Guide that ships with your version of TEC and read about adapters in general and how t configure these files. The NetView for Windows adapter is a port of the OpenView adapter for UNIX which ships with TEC, so read about how it works and you'll have an understanding of how the Windows adapter works.
The only way you can filter which devices can send you events to send to TEC would be to create a smartset which contains them. The Windows adapter allows filtering by smartset after all the other selection is done. This is described in the NetView documentation.
Hope this helps
James Shanks
Level 3 Support for Tivoli NetView for UNIX and Windows
Tivoli Software / IBM Software Group
|
| "Edwards, JT - ESM" <JEdwards3@wm.com>
Sent by: owner-nv-l-digest@lists.us.ibm.com
10/15/2003 05:17 PM
Please respond to nv-l
|
To: "'nv-l@lists.us.ibm.com'" <nv-l@lists.us.ibm.com>
cc:
Subject: [nv-l] Confused about setting up an SNMP proxy |
Greetings all,
My knowledge of setting up Netview for SNMP traps is quite fuzzy and I need some clarification.
I want to setup Netview to receive SNMP traps from several vendors' MIBs and forward them on to TEC.
I have:
- Added the traps to the trap engine from the MIB
- Built the appropriate BAROC for the MIB
Now I am a bit confused. For starters I want to create a different community string so that I can get only these traps and not the flotsam of SNMP traffic running across my network. Furthermore, I am thinking I need to setup an SNMP proxy since these machines are non-network devices (not switches or hubs or routers).
I am confused about the next steps to take. Can someone provide me some pointers?
Thanks in Advance,
J.T. Edwards
Sr. Systems Programmer
Enterprise Systems Management
Waste Management Incorporated
"Proud Sponsor of NASCAR"
Office: (713)265-1294
Mobile: (832)457-5239
|