Regarding SNMP traps configuration in Nagios

This support forum board is for support questions relating to Nagios XI, our flagship commercial network monitoring solution.
Locked
inas.labib
Posts: 170
Joined: Tue Sep 11, 2012 3:48 am

Regarding SNMP traps configuration in Nagios

Post by inas.labib »

Hi Team ,

We are receiving SNMP traps from network devices (cisco Siwtches,firewall) in Nagios server. But we are unable to convert the received traps.
Kindly support to configure the nagios server to make the received traps using MIBs

Firewall model : CISCO ASA 5525 , CISCO ASA 5510
Switch model : 2960_S
Storage : IBM Storage V3700
Nagios Server : Red Hat Enterprise Linux Server release 6.6


Traps from ASA firewall :

/var/log/messages
Feb 22 12:32:43 ABCrngs02t snmptt-sys[28689]: SNMPTT v1.4beta2 started
Feb 22 12:32:43 ABCrngs02t snmptt-sys[28689]: Could not open debug output file!
Feb 22 12:32:43 ABCrngs02t snmptt-sys[28689]: There seems to be another SNMPTT process (pid 10245) running.
Feb 22 12:32:43 ABCrngs02t snmptt-sys[28689]: You may want to kill it and delete the .pid file (/var/run/snmptt.pid). Aborting...
Feb 22 12:32:44 ABCrngs02t snmptrapd[21503]: 2015-02-22 12:32:44 <firewall ip>(via UDP: [<firewall ip>]:162->[<nagios server>]) TRAP, SNMP v1, community ProcardSNMP#012#011.1.3.6.1.4.1.9.9.41.2 Enterprise Specific Trap (1) Uptime: 4 days, 7:48:52.00#012#011.1.3.6.1.4.1.9.9.41.1.2.3.1.2.0 = STRING: "22"#011.1.3.6.1.4.1.9.9.41.1.2.3.1.3.0 = INTEGER: 4#011.1.3.6.1.4.1.9.9.41.1.2.3.1.4.0 = STRING: "Syslog Trap"#011.1.3.6.1.4.1.9.9.41.1.2.3.1.5.0 = STRING: "<179>Feb 22 2015 12:21:01: %ASA-3-305005: No translation group found for udp src WAF:ip/40836 dst inside:ip/53"#011.1.3.6.1.4.1.9.9.41.1.2.3.1.6.0 = Timeticks: (37373200) 4 days, 7:48:52.00
Feb 22 12:32:45 ABCrngs02t snmptt-sys[28697]: SNMPTT v1.4beta2 started
Feb 22 12:32:45 ABCrngs02t snmptt-sys[28697]: Could not open debug output file!
Feb 22 12:32:45 ABCrngs02t snmptt-sys[28697]: There seems to be another SNMPTT process (pid 10245) running.
Feb 22 12:32:45 ABCrngs02t snmptt-sys[28697]: You may want to kill it and delete the .pid file (/var/run/snmptt.pid). Aborting...
Feb 22 12:32:45 ABCrngs02t snmptrapd[21503]: 2015-02-22 12:32:45 <firewall ip>(via UDP: [<firewall ip>]:162->[<nagios server>]) TRAP, SNMP v1, community ProcardSNMP#012#011.1.3.6.1.4.1.9.9.41.2 Enterprise Specific Trap (1) Uptime: 4 days, 7:48:53.00#012#011.1.3.6.1.4.1.9.9.41.1.2.3.1.2.0 = STRING: "22"#011.1.3.6.1.4.1.9.9.41.1.2.3.1.3.0 = INTEGER: 4#011.1.3.6.1.4.1.9.9.41.1.2.3.1.4.0 = STRING: "Syslog Trap"#011.1.3.6.1.4.1.9.9.41.1.2.3.1.5.0 = STRING: "<179>Feb 22 2015 12:21:02: %ASA-3-713902: Group = 195.93.245.100, IP = 195.93.245.100, QM FSM error (P2 struct &0xda794688, mess id 0xc5782fa6)!"#011.1.3.6.1.4.1.9.9.41.1.2.3.1.6.0 = Timeticks: (37373300) 4 days, 7:48:53.00
Feb 22 12:32:46 ABCrngs02t snmptt-sys[28705]: SNMPTT v1.4beta2 started
Feb 23 10:25:05 ABCrngs02t nagios: Warning: Host 'Network Core firewall-Active' has no default contacts or contactgroups defined!
Feb 23 10:25:12 ABCrngs02t nagios: Successfully launched command file worker with pid 20079


Traps from Esxi server :

/var/log/snmptt/snmpttunknown.log
Sun Feb 15 03:20:07 2015: Unknown trap (.1.3.6.1.4.1.6876.4.90.0.401) received from <ip> at:
Value 0: <ip>
Value 1: <ip>
Value 2: 2:10:22:17.00
Value 3: .1.3.6.1.4.1.6876.4.90.0.401
Value 4: <ip>
Value 5: ProcardSNMP
Value 6: .1.3.6.1.4.1.6876.4.90
Value 7:
Value 8:
Value 9:
Value 10:
Ent Value 0: .1.3.6.1.4.1.6876.4.30.3.0=07 DF 02 0E 17 14 06 00


Error in Nagios GUI :

External command error: Cannot find module (SNMPv2-SMI): At line 10 in /usr/share/snmp/mibs/BRIDGE-MIB.mib
Cannot find module (SNMPv2-SMI): At line 8 in /usr/share/snmp/mibs/IF-MIB.mib
Cannot find module (SNMPv2-SMI): At line 6 in /usr/share/snmp/mibs/SNMPv2-MIB.txt
Did not find 'snmpModules' in module #-1 (/usr/share/snmp/mibs/SNMPv2-MIB.txt)
Did not find 'mib-2' in module #-1 (/usr/share/snmp/mibs/SNMPv2-MIB.txt)
Unlinked OID in SNMPv2-MIB: snmp ::= { mib-2 11 }
Undefined identifier: mib-2 near line 262 of /usr/share/snmp/mibs/SNMPv2-MIB.txt
Unlinked OID in SNMPv2-MIB: system ::= { mib-2 1 }
Undefined identifier: mib-2 near line 75 of /usr/share/snmp/mibs/SNMPv2-MIB.txt
Unlinked OID in SNMPv2-MIB: snmpMIB ::= { snmpModules 1 }
Undefined identifier: snmpModules near line 13 of /usr/share/snmp/mibs/SNMPv2-MIB.txt

Thanks,
Top
User avatar
tgriep
Madmin
Posts: 9190
Joined: Thu Oct 30, 2014 9:02 am

Re: Regarding SNMP traps configuration in Nagios

Post by tgriep »

From the errors, it looks like there is a stuck snmptt process. Try running the following on the Nagios server to clear that up.

Code: Select all

killall -9 snmptt
rm  /var/run/snmptt.pid
service snmptt start
Here is the link for integrating SNMP Traps in Nagios. You may want to go through it.
http://assets.nagios.com/downloads/nagi ... ios_XI.pdf
Be sure to check out our Knowledgebase for helpful articles and solutions!
Top
Locked

Return to “Nagios XI”