KK> We have a requirement of SNMPv3 communications on our network.
Yay!
KK> We have recently acquired some software from a vendor that currently
KK> only supports v1 traps.
Boo!
KK> My plan was to have it send to the loopback or some other secondary
KK> IP and have a Perl script receive the trap and recode it into V3 and
KK> send it to the final destination.
KK> Is there any mechanism in Net-SNMP for this already? Has anyone
KK> seen such a program in the wild? Does anyone have a better
KK> solution?
Good news! The solution is already available to you. Yes, sending them
through the loopback to a local application and having that re-encode it
is the right thing to do.
The more recent versions of the "snmptrapd" application are able to
forward things. The bad news is that it's forwarding things using the
exact same version as the original (which isn't really as helpful as I
thought it was).
However, there is still a solution. There is a special "agentx" target
that will forward things through the agentx protocol. So, until there
is a better forwarding option here's a hack that should work:
lo agentx
device-snmpd ------> snmptrapd -----------> net-snmp snmpd
And then have 'trapsess' directives in the snmpd.conf file for the
net-snmp snmpd agent to redirect those into snmpv3 traps. (in fact, you
have it passed on to multiple locations by setting multiple trap
destinations as well).
Anyway, this would require a net-snmp snmpd running on the device too
(but you could build a fairly stripped down one), and it'll obviously
have to run on a different port and be an agentx master agent. But it
should actually work!
hack hack hack
--
Wes Hardaker
Cobham Analytic Solutions
------------------------------------------------------------------------------
Protect Your Site and Customers from Malware Attacks
Learn about various malware tactics and how to avoid them. Understand
malware threats, the impact they can have on your business, and how you
can protect your company and customers by using code signing.
http://p.sf.net/sfu/oracle-sfdevnl
_______________________________________________
Net-snmp-users mailing list
Net-snmp-users@lists.sourceforge.net
Please see the following page to unsubscribe or change other options:
https://lists.sourceforge.net/lists/listinfo/net-snmp-users
