Ad Widget

Collapse

Configuring SNMP on Zabbix for Sophos UTM

Collapse
X
Collapse
 
  • Page of 1
  • Time
  • Show
Clear All
new posts
Previous template Next
  • anuragp
    Junior Member
    • Jan 2020
    • 1
    #1

    Configuring SNMP on Zabbix for Sophos UTM

    I am sorry if this topic is covered before. I wasn't able to find anything relevant in the search.

    I was trying to configure SNMP on Sophos UTM 9.7 to monitor it on Zabbix 4.4.
    The UTM is sending traps to Zabbix server but unfortunately, they are not getting displayed on Zabbix UI because querying is not enabled on UTM for security purposes.
    The traps are getting collected using snmptrapd in a separate file on Zabbix.
    I don't want Zabbix to query my Sophos UTM.

    I have the following questions:

    1. Is it possible in Zabbix to collect and display traps without querying UTM back? If yes, then how??

    2. If not, is there any other way to monitor Sophos UTM without using SNMP?

    Your help will be appreciated. Thanks in advance
    Tags: dashboard, snmp, snmptrap, utm 9, zabbix server
    • Hamardaban
      Senior Member
      Zabbix Certified SpecialistZabbix Certified Professional
      • May 2019
      • 2713
      #2
      Snmp query and trap - completely different unrelated processes. one works without the other. In your case, data elements of the zabbix-trapper type are configured. Read the documentation - everything is written in detail there. https://www.zabbix.com/documentation...types/snmptrap

        Comment

        • tim.mooney
          Senior Member
          • Dec 2012
          • 1427
          #3
          Originally posted by anuragp
          I was trying to configure SNMP on Sophos UTM 9.7 to monitor it on Zabbix 4.4.
          The UTM is sending traps to Zabbix server but unfortunately, they are not getting displayed on Zabbix UI because querying is not enabled on UTM for security purposes.
          The traps are getting collected using snmptrapd in a separate file on Zabbix.
          Hamardaban provided very good advice. Re-read the Zabbix documentation on snmptrap. If the traps are making it from UTM to a file on your Zabbix server, then you're approximately 50% done. The remaining setup basically breaks down to getting Zabbix to watch that file and "import" the traps that your script wrote to it.

          If they're not being displayed in the Zabbix front end, it's not because of snmp querying, it's because you haven't correctly completed the snmptrap setup. Perhaps you forgot to modify your Zabbix server config to StartSNMPTrapper=1 or to point to the trap file that's being written by the script that snmptrapd is calling?

          It may also help if you set up an snmptrap.fallback item, that "catches" any traps that don't match other regular expressions.

          Tim

            Comment

            • Hamardaban
              Senior Member
              Zabbix Certified SpecialistZabbix Certified Professional
              • May 2019
              • 2713
              #4
              And pay attention to “Log unmatched SNMP traps” parameter https://www.zabbix.com/documentation...ration/general

                Comment

                Previous template Next
                Working...