Menu

Show posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Show posts Menu

Messages - vishal21

Pages1
#1
General Support / Converting SNMP Trap OIDs and varbinds to textual format
February 22, 2014, 11:14:07 AM
I have compiled some new Cisco MIBs for Cisco ASA firewall in the Netxms. Also configured Cisco ASA FW to send syslog traps to NetXMS. But when I am checking in the SNMP Trap monitor the TRAP OIDs and Varbinds are showing numeric OIDs instead of text OID.

Please help me to know if there is any way NetXMS SNMP Trap Monitor can convert the numeric Trap OID like .1.3.6.1.4.1.9.9.41.2.0.1 into clogMessageGenerated.

Syslog trap OID: .1.3.6.1.4.1.9.9.41.2.0.1 = clogMessageGenerated

With thanks,
Vishal Babrekar
#2
General Support / [RESOLVED] : SNMP trap configuration - For SNMP trap based Syslog message
March 22, 2013, 08:50:23 AM
Thanks a lot Victor this one worked very well !!

Only issue I faced was the event tag was not accepting as "null" so I marked it as "ASA-STATE-CHANGE".

Thanks again for your help.
Vishal Babrekar
#3
General Support / [RESOLVED] SNMP trap configuration - For SNMP trap based Syslog message
March 01, 2013, 10:12:52 AM
I have configured the Cisco ASA firewall to send Syslog messages over the SNMP traps to NetXMS.

In NetXMS I receive the trap correctly as per below,
Code Select
21.02.2013 18:28:16 10.10.10.1 CISCO-ASA-FW-01 .1.3.6.1.4.1.9.9.41.2.0.1 .1.3.6.1.4.1.9.9.41.1.2.3.1.2.0 == '20'; .1.3.6.1.4.1.9.9.41.1.2.3.1.3.0 == '2'; .1.3.6.1.4.1.9.9.41.1.2.3.1.4.0 == 'Syslog Trap'; .1.3.6.1.4.1.9.9.41.1.2.3.1.5.0 == '<161>Feb 21 2013 21:05:30 APDC3W12-NFWL02 : %ASA-1-104001: (Secondary) Switching to ACTIVE - HELLO not heard from mate.'; .1.3.6.1.4.1.9.9.41.1.2.3.1.6.0 == '4089190800'

For this trap I created a SNMP Trap Mapping with Trap OID as .1.3.6.1.4.1.9.9.41.2.0.1 and the parameter OID as varbind .1.3.6.1.4.1.9.9.41.1.2.3.1.5.0. And also created an Event ASA_FAILOVER for this trap mapping by using %2 which gives me the value of same varbind .1.3.6.1.4.1.9.9.41.1.2.3.1.5.0.

Now in the events I get the message "<161>Feb 21 2013 21:05:30 APDC3W12-NFWL02 : %ASA-1-104001: (Secondary) Switching to ACTIVE - HELLO not heard from mate." But this happens with any other Syslog message being sent by Cisco ASA FW. Because we are using the varbind .1.3.6.1.4.1.9.9.41.1.2.3.1.5.0 which hold the Syslog message string from the SNMP Trap.

So is there any way so that NetXMS will only trigger the event ASA_FAILOVER when the varbind value is having the string "Switching to ACTIVE"

Thanks in advance.

Vishal Babrekar
#4
General Support / Re: Action configuration - Issue with command execution on management server
February 03, 2013, 06:09:07 AM
Hi Victor,

Its now confirmed that CA NSM is receiving NetXMS alerts correctly and now they also started auto generated incident creation in CA Unicenter. So we can confirm that this integration of NetXMS with CA Unicenter worked well.

For those who are also looking for integrating NetXMS with CA Unicenter for creation of auto generated incidents can also refer this.

Thanks,
Vishal Babrekar
#5
General Support / Re: Action configuration - Issue with command execution on management server
January 24, 2013, 05:54:18 AM
Great!! Thanks Victor.

Adding the '%m' seems to have fixed this issue. Because I am seeing the desired output in my log file //home//vishalb//netxms.log. I am now checking with my CA team if they are receiving it correctly or not. I'll update you soon.


Thanks,
Vishal Babrekar
#6
General Support / [Solved]Action configuration - Issue with command execution on management server
January 22, 2013, 12:38:12 PM
I am trying to integrate NetXMS with CA Unicenter in order to generate automated tickets.

For this I am using a utility from CA called "cawto". With this utility I can send an event to the CA NSM server with the alert message as generated by NetXMS. Based on the received event, CA NSM then creates ticket in CA Unicenter. I am using below command as an Action in NetXMS to send the events to NSM.

Code Select

//opt//CA//SharedComponents//ccs//bin//cawto -n waqnsm91 NETXMS - ALERT - %n - %a - %m


Where waqnsm91 is my CA NSM server.

Condition 1:This works perfectly and I can see an event in CA NSM when the contents of message variable %m is in plane text or without any special characters like below,
%m = Node down.

Condition 2: But the command execution fails if the contents of message variable %m is having some characters like " or () or / .

Ex.
%m = Interface "Ethernet100/1/47 (Temp Laptop Connections)" changed state to DOWN (IP Addr: 0.0.0.0/0.0.0.0, IfIndex: 526584704)

In this case, since the message contains the IfName and IfAlias it comes with a slash / and the bracket () which causes the execution to fail.

To verify this I am executing a parallel action as below,

Code Select

echo HOST - %n - %a - %m >> //home//vishalb//netxms.log


Please help me to get this fixed if anyone also faced this issue.

Thanks in Advance.

Vishal Babrekar
#7
Feature Requests / Re: Drivers for Cisco Nexus 5500 and Cisco Nexus 1000 Switches
January 17, 2013, 09:27:13 PM
Hi Victor,

Apologies for the delayed response, I was not looking at the forum from long time so missed your update.

I have sent the required nxsnmpwalk output for the OIDs on the above mentioned email address.

Please let me know if you need any other output, I am ready to send.

--
Thanks,
---------------------------------------------------
Vishal Babrekar | +91 9686766887|
#8
Feature Requests / Re: Drivers for Cisco Nexus 5500 and Cisco Nexus 1000 Switches
December 27, 2012, 11:52:05 PM
Hi Victor,

In my company we are using Nexus 7010, 5548, 2000 and 1000v and I am also interested to get the drivers for Nexus platform.

Please let me know if you need any inputs from my end. I can definitely get you the details that you want.


Thanks,
Vishal Babrekar
Pages1