TO UNSUBSCRIBE: email "unsubscribe issforum" in the body of your message to
[EMAIL PROTECTED] Contact [EMAIL PROTECTED] for help with any problems!
----------------------------------------------------------------------------
Hi Steve,
We actually have a Tivoli Plus Module for RealSecure that we expect to
release at the end of this month. You can contact your sales team if you'd
like more information.
If you'd prefer to do it yourself, you can inspect trap details in iss.mib
which can be found in the main engine installation directory. I'll send you
another file that has more detail, separately. If anyone else reading this
wants the file please email me and I'll forward...just email me so we don't
spam the entire group. The following is more info I got from development:
We use SNMP v1 Traps. The mib does contain one
old trap that is no longer sent called eventinfo.
The other traps are:
lowpriorityevent - event info with priority set low
mediumpriorityevent - " " " " " medium
highpriorityevent - " " " " " high
logdata- corresponds to some eventlog or syslog entry on the engine
regards,
sheila
Original Message-----
From: Lodin, Steven {IT 4~Indianapolis} [mailto:[EMAIL PROTECTED]]
Sent: Thursday, December 16, 1999 9:29 AM
To: '[EMAIL PROTECTED]'
Subject: ISS RealSecure and SNMP
Good day!
Environment: ISS RealSecure 3.2 - Network Engine in Stealth mode on NT,
Consoles on NT
Situation: I'm trying to simulate thresholding capability in RealSecure (RS)
by creating a user-defined event and sending an SNMP trap for every
occurance to my Tivoli TEC. Tivoli will then be able to apply the rule that
if X events occur in Y time, then do action Z (something I see lacking in
RS).
My Tivoli people are asking me for information about the SNMP trap I am
sending them. They want to know specific SNMP information such as the SNMP
version, OID, the enterprise string, and MIB information. I couldn't find
any information on SNMP other than destination address and community string
in the manuals and online help.
Does anyone know this information or where I can find it? I don't think
sniffing a packet will help since it is ASN.1 encoded, right?
Thanks for the help!
Steve
--
Steve Lodin <[EMAIL PROTECTED]>
Manager - IT Security
Roche Diagnostics Corp
317-845-2070
