Hi guys,
I have a problem and I really need some help. I have managed to build snmp trap items and they are getting the data nicely. Biggest problem are those triggers. How can a make them smarter? At the moment the traps gets into the Zabbix and I have pre-processing regex there first which parses the data so that it contains only the trap value.
Trap example:
notificationtype TRAP
version 0
receivedfrom UDP: [YXZ:YXZ.YXZ.YXZ]:44797->[YXZ.YXZ.YXZ.YXZ]:162
errorstatus 0
messageid 0
community public
transactionid 571626
errorindex 0
requestid 0
VARBINDS:
DISMAN-EVENT-MIB::sysUpTimeInstance type=67 value=Timeticks: (2049743392) 237 days, 5:43:53.92
SNMPv2-MIB::snmpTrapOID.0 type=6 value=OID: BtechAlarm-MIB::btechTrap
BtechAlarm-MIB::alarmSequenceT.1 type=2 value=INTEGER: 41009352
BtechAlarm-MIB::referenceNumberT.1 type=2 value=INTEGER: 41009352
BtechAlarm-MIB::alarmTimeT.1 type=4 value=STRING: "Apr 20 13:20:40"
BtechAlarm-MIB::alarmIdT.1 type=2 value=INTEGER: 100
BtechAlarm-MIB::alarmTypeT.1 type=2 value=INTEGER: 2
BtechAlarm-MIB::alarmTextT.1 type=4 value=STRING: "aty=ETR|aid=3306|ina=Ethernet|iid=100|eeid=22 |tun a=Mux100|tuid=23|tude=XYZ.XYZ.XYZ.XYZ:1111|ssm=10. 41.4 8.37|onid=42249|nid=42249|tsid=121|sid=499|sna=Rai 1|egid=4|egna=Other checks|ecid=5|ecna=Service min. bitr.|loc=Harjuk 28|Service 499 Rai 2: Service minimum bitrate error"
BtechAlarm-MIB::sourceTextT.1 type=4 value=STRING: "Bridgetech device"
BtechAlarm-MIB::severityLevelT.1 type=2 value=INTEGER: 4
SNMP-COMMUNITY-MIB::snmpTrapAddress.0 type=64 value=IpAddress: X.X.X.X
SNMP-COMMUNITY-MIB::snmpTrapCommunity.0 type=4 value=STRING: "LEVERKUSEN"
SNMPv2-MIB::snmpTrapEnterprise.0 type=6 value=OID: BtechBase-MIB::mibBridgetech
BtechAlarm-MIB::alarmTypeT.1 type=2 value=INTEGER: 2
Above is the line where I am using the pre-processing step, to get that INTEGER out. Value 2 is when alarm is activate, and value 3 is when alarm is cleared.
Can I use other functions as well than just the .last() function? We have a lots of devices in our network that has alarms that takes only a few seconds and those are rubbish we don't need those in our alarm list, but now with .last() function every trap is making a alarm. I have tried to make something like .max(3m)}=2 which would wait that 3minutes and if the alarm is still active then the alarm is real deal.
I hope someone can explain this to me, how to make it work.
Thanks!
Br,
JP
I have a problem and I really need some help. I have managed to build snmp trap items and they are getting the data nicely. Biggest problem are those triggers. How can a make them smarter? At the moment the traps gets into the Zabbix and I have pre-processing regex there first which parses the data so that it contains only the trap value.
Trap example:
notificationtype TRAP
version 0
receivedfrom UDP: [YXZ:YXZ.YXZ.YXZ]:44797->[YXZ.YXZ.YXZ.YXZ]:162
errorstatus 0
messageid 0
community public
transactionid 571626
errorindex 0
requestid 0
VARBINDS:
DISMAN-EVENT-MIB::sysUpTimeInstance type=67 value=Timeticks: (2049743392) 237 days, 5:43:53.92
SNMPv2-MIB::snmpTrapOID.0 type=6 value=OID: BtechAlarm-MIB::btechTrap
BtechAlarm-MIB::alarmSequenceT.1 type=2 value=INTEGER: 41009352
BtechAlarm-MIB::referenceNumberT.1 type=2 value=INTEGER: 41009352
BtechAlarm-MIB::alarmTimeT.1 type=4 value=STRING: "Apr 20 13:20:40"
BtechAlarm-MIB::alarmIdT.1 type=2 value=INTEGER: 100
BtechAlarm-MIB::alarmTypeT.1 type=2 value=INTEGER: 2
BtechAlarm-MIB::alarmTextT.1 type=4 value=STRING: "aty=ETR|aid=3306|ina=Ethernet|iid=100|eeid=22 |tun a=Mux100|tuid=23|tude=XYZ.XYZ.XYZ.XYZ:1111|ssm=10. 41.4 8.37|onid=42249|nid=42249|tsid=121|sid=499|sna=Rai 1|egid=4|egna=Other checks|ecid=5|ecna=Service min. bitr.|loc=Harjuk 28|Service 499 Rai 2: Service minimum bitrate error"
BtechAlarm-MIB::sourceTextT.1 type=4 value=STRING: "Bridgetech device"
BtechAlarm-MIB::severityLevelT.1 type=2 value=INTEGER: 4
SNMP-COMMUNITY-MIB::snmpTrapAddress.0 type=64 value=IpAddress: X.X.X.X
SNMP-COMMUNITY-MIB::snmpTrapCommunity.0 type=4 value=STRING: "LEVERKUSEN"
SNMPv2-MIB::snmpTrapEnterprise.0 type=6 value=OID: BtechBase-MIB::mibBridgetech
BtechAlarm-MIB::alarmTypeT.1 type=2 value=INTEGER: 2
Above is the line where I am using the pre-processing step, to get that INTEGER out. Value 2 is when alarm is activate, and value 3 is when alarm is cleared.
Can I use other functions as well than just the .last() function? We have a lots of devices in our network that has alarms that takes only a few seconds and those are rubbish we don't need those in our alarm list, but now with .last() function every trap is making a alarm. I have tried to make something like .max(3m)}=2 which would wait that 3minutes and if the alarm is still active then the alarm is real deal.
I hope someone can explain this to me, how to make it work.
Thanks!
Br,
JP