Re: Listen a port (162) and receive an SNMP notifi...

jando · ‎03-12-2012

I have a problem, What I want to do is this: In short I have a remote machine that will send me SNMP notifications to my local machine the configuration of the remote machine is done now I need some kind of log in my local machine that notify me that I received an SNMP trap . Maybe listen the 162 por is good idea (SNMP port by default) But I don't how to do it and where I can read this log if my machine received something.

Damien_Dallimor · ‎05-28-2013

Check out this new add-on : http://splunk-base.splunk.com/apps/88686/snmp-modular-input

jando · ‎03-12-2012

For example I added a port to be listened and it seems like splunkd is listening but how can I see what's listening?

[root@laptop etc]# netstat -tulpn | grep :1000
tcp 0 0 0.0.0.0:1000 0.0.0.0:* LISTEN 30994/splunkd

jando · ‎03-12-2012

I have already checked but it doesn't work , I don't if I have problems with snmptrap I'm working on linux

araitz · ‎03-12-2012

Here is our documentation on setting up Splunk to receive SNMP:

http://docs.splunk.com/Documentation/Splunk/latest/Data/SendSNMPeventstoSplunk

Listen a port (162) and receive an SNMP notification

Stay Connected: Your Guide to May Tech Talks, Office Hours, and Webinars!

They're back! Join the SplunkTrust and MVP at .conf24

Enterprise Security Content Update (ESCU) | New Releases