Service Operations Insight

 View Only
  • 1.  Creation of SNMP Policy for PRTG in CA SOI

    Posted Oct 31, 2017 09:09 AM

    I am trying to create a policy for the integration of CA SOI with PRTG, but the PRTG only returns 4 OID:

    • 1.3.6.1.4.1.32446.1.1.1: MessageID (as defined by the user in the Field "Message ID")
    • 1.3.6.1.4.1.32446.1.1.2: An integer representing the event that triggered the notification:
      0 = State ended
      1 = State started
      2 = Volume reached
      3 = Speed not reached
      4 = Speed reached
      5 = Threshold not reached
      6 = Threshold reached
      7 = Value changed
    • 1.3.6.1.4.1.32446.1.1.3: The state of the object:
      0 = None
      1 = Unknown
      2 = Collecting Data
      3 = Up
      4 = Warning
      5 = Down
      6 = No Probe
      7 = Paused by User
      8 = Paused by Dependency
      9 = Paused by Schedule
      10 = Unusual
      11 = Paused by License
      12 = Paused until
      13 = Down (Acknowledged)
      14 = Down (Partial)
    • 1.3.6.1.4.1.32446.1.1.4: The message text of the notification as defined by the user.

    How could I do to generate a policy that allows me to recover the missing information from the message trap? An example of the trap that you would receive is:

     

    Alerted MDR Product Generic SNMP Traps
    Alert Type Risk-Fault
    Class Name Alert
    ConnectorConfigMdrProdInstance vm01.prtg.com
    ConnectorConfigMdrProduct CA:00036
    entitytype Alert
    eventtype Alert
    MDR Product Generic SNMP Traps
    MDR Product Instance vm01.prtg.com
    Occurrence Time 2017-10-30T13:46:00-03:00
    Pattern Pattern1
    Reported Time 2017-10-30T13:46:00-03:00
    snmp_agent 192.168.3.45
    snmp_community public
    snmp_enterprise 1.3.6.1.4.1.32446
    snmp_errorIndex 0
    snmp_errorStatus Success
    snmp_genericTrap 6
    snmp_peeraddress 192.168.3.45/52223
    snmp_requestID 0
    snmp_specificTrap 0
    snmp_ticks 281265115
    snmp_varbindoids 1.3.6.1.4.1.32446.1.1.1,1.3.6.1.4.1.32446.1.1.2,1.3.6.1.4.1.32446.1.1.3,1.3.6.1.4.1.32446.1.1.4
    snmp_varbindvals 0,1,5,[PRTG Network Monitor (vm01)] Dispositivo: Router @ Nombre: 192.168.96.135 @ Estado: down @ Mensaje: Ping (Ping) Fallo REPETIR ESCALACION  (Request timed out (error ICMP # 11010))
    varbind-1.3.6.1.4.1.32446.1.1.1 0
    varbind-1.3.6.1.4.1.32446.1.1.2 1
    varbind-1.3.6.1.4.1.32446.1.1.3 5
    varbind-1.3.6.1.4.1.32446.1.1.4 [PRTG Network Monitor (vm01)] Dispositivo: Router @ Nombre: 192.168.96.135 @ Estado: down @ Mensaje: Ping (Ping) Fallo REPETIR ESCALACION  (Request timed out (error ICMP # 11010))



  • 2.  Re: Creation of SNMP Policy for PRTG in CA SOI

    Broadcom Employee
    Posted Oct 31, 2017 11:04 AM

    Hi Carlos,

    From your update it sounds like you want to add additional OID's with value so that you can publish additional information on the traps to SOI, is that what you are trying to do? If the SNMP traps itself has missing information then the SNMP connector or SOI can't do anything about it.

    Just FYI - SNMP connector (or SOI) don't have the capability to reconfigure your traps with additional OID values, this you'll have to do yourself at the source of the trap which is the MIB you have from PRTG. SNMP connector can be used to manipulate the content of incoming traps only.

    Let me know if you have any question

    Thanks

    Shaheen



  • 3.  Re: Creation of SNMP Policy for PRTG in CA SOI

    Posted Oct 31, 2017 11:43 AM

    Hi Shaheen,

    I try to do it is a policy for the PRTG with only the 4 OIDs that you send me. I would like to know in what way I could use the information sent in the OID of the message to be able to complete the information for the creation of the respective CIs; because if I'm not mistaken on the basis of being information is what would be created by the different CIs automatically, for example, an IC for a 3com router, another for a Dlink Switch, etc.



  • 4.  Re: Creation of SNMP Policy for PRTG in CA SOI

    Broadcom Employee
    Posted Oct 31, 2017 12:36 PM

    Hi Carlos,

    Did you looked at the wiki? It has example on how to configure the SNMP policy to publish CI and alert. Here is the link to the wiki

    https://docops.ca.com/soi-connectors/snmp-connector-2-0/writing-connector-policy/extend-the-default-snmp-policy

    Look at the section "Item Eventtype Processing" and "Alert Eventtype Processing"

    Thanks

    Shaheen



  • 5.  Re: Creation of SNMP Policy for PRTG in CA SOI

    Posted Nov 03, 2017 12:20 PM

    Writing SNMP policies can be difficult but once you have the nuts and bolts down it's pretty simple. Looks like the last varbind contains the IP of the impacted device and that's probably all that you need to create the CI. You'll have to use a <parse> to extract the IP address then do a fqdn function on the IP to return the dns name that you can use to set the various attributes required for the CI class you're creating. You can use the Catalyst USM Schema on the SOI manager debug page to guide you on what attributes need to be set. 

     

    There's no way to determine the device type (3com, dlink) from your trap unless you know that the IP falls within a specific range that belongs to certain device types. Or if the fqdn lookup returns the dns name that contains enough information for you to know what type of device that is. If you have this information from the IP or DNSname, you can then use a <Normalize> to map what type of device the CI is.

     

    Hopefully that helps.



  • 6.  Re: Creation of SNMP Policy for PRTG in CA SOI

    Posted Nov 15, 2017 01:48 PM

    Hi FueY,

    Thanks for your help.
    I can create the policy and the values that I generate in it appear in the event viewer. But the CI does not appear in the USM or in the CA SOI.
    I attach the policy that believes and the trap.

    Attachment(s)

    zip
    snmp_policy.xml.zip   1 KB 1 version
    zip
    trap.zip   803 B 1 version


  • 7.  Re: Creation of SNMP Policy for PRTG in CA SOI

    Posted Nov 15, 2017 02:45 PM
      |   view attached

    Martin,

     

    I was able to get the Computer System CI created just fine with your policy. See below:

     

     

     

    For your switch and router class, you need to set the SysName variable because it is a required field.

     

    Also your severity mapping for “Down” needs to be “Fatal”. Interesting SOI doesn’t understand “Down” when using it in the policy.

     

    Thanks,

     

    Fue



  • 8.  Re: Creation of SNMP Policy for PRTG in CA SOI

    Posted Nov 16, 2017 09:44 AM

    Hello Fuey,

    Thanks for your help. I have made the modifications you told me, but the CI is not generated correctly, in Name it appears unknown and in the Entity class. What will it be?