Re: wrong MAC int the trap

Fri, 08 Mar 2013 04:53:39 -0800 

Hello Lee,

> It looks like you're still missing some MIB files.  I'm guessing
> S5-SWITCH-BAYSECURE-MIB  (I'm not good at searching - the only places
> I've found that might let me download the file want javascript &
> cookies enabled & that ain't happening)
> get the file and add the line
>   DISPLAY-HINT "2x:"
> in the section where s5SbsViolationStatusMACAddress is defined.
> Restart the trap daemon & try again...
>

Seems, that you are right.
After adding this MIB, snmptrapd resolves the MAC. But in different ways.
In the syslog, the MAC is properly decoded:

snmptrapd[20224]: 10.160.22.100: Enterprise Specific Trap (.5) Uptime:
34 days, 0:08:26.79,
S5-SWITCH-BAYSECURE-MIB::s5SbsViolationStatusBrdIndx.1.22 = 1,
S5-SWITCH-BAYSECURE-MIB::s5SbsViolationStatusPortIndx.1.22 = 22,
S5-SWITCH-BAYSECURE-MIB::s5SbsViolationStatusMACAddress.1.22 =
60:73:5c:2f:63:28

But internal, it use the same string again. If I start the snmptrapd with
/usr/sbin/snmptrapd -nf -mALL  -OQ
it gives following output:

Loaded the perl snmptrapd handler
  notificationtype               TRAP
  receivedfrom                   UDP: [192.168.111.233]:3812->[10.160.22.59]
  version                        0
  errorstatus                    0
  messageid                      0
  community                      public
  transactionid                  1
  errorindex                     0
  requestid                      0
  DISMAN-EVENT-MIB::sysUpTimeInstance type=67 value=34:0:08:26.79
  SNMPv2-MIB::snmpTrapOID.0      type=6  value=S5-ROOT-MIB::s5EthTrap.0.5
  S5-SWITCH-BAYSECURE-MIB::s5SbsViolationStatusBrdIndx.1.22 type=2  value=1
  S5-SWITCH-BAYSECURE-MIB::s5SbsViolationStatusPortIndx.1.22 type=2  value=22
  S5-SWITCH-BAYSECURE-MIB::s5SbsViolationStatusMACAddress.1.22 type=4
value="`s\\/c("
  SNMP-COMMUNITY-MIB::snmpTrapAddress.0 type=64 value=10.160.22.100
  SNMP-COMMUNITY-MIB::snmpTrapCommunity.0 type=4  value="public"
  SNMPv2-MIB::snmpTrapEnterprise.0 type=6  value=S5-ROOT-MIB::s5EthTrap

The same wrong thing, the address as string. I use the snmptrapd, to
call a perlscript and this also get this wrong value.
Maybe this is a Bug?

Thanks Meike

------------------------------------------------------------------------------
Symantec Endpoint Protection 12 positioned as A LEADER in The Forrester  
Wave(TM): Endpoint Security, Q1 2013 and "remains a good choice" in the  
endpoint security space. For insight on selecting the right partner to 
tackle endpoint security challenges, access the full report. 
http://p.sf.net/sfu/symantec-dev2dev
_______________________________________________
Net-snmp-users mailing list
[email protected]
Please see the following page to unsubscribe or change other options:
https://lists.sourceforge.net/lists/listinfo/net-snmp-users

Reply via email to