I am calling a script on a triggered alert to send an snmp trap, but it was coming across like this.
"index^=common^ sourcetype^=processor^ source^=*Online*^ ^(REQ^ OR^ RSP^)^ earliest^=-5m@m^ latest^=now^ ^
I thought it was something snmp was doing but i redirected the output via a batch script and it's coming directly from Splunk as the values being passed.
What would be causing these?
good question...
Hi,
Saw this - hope its useful:
https://answers.splunk.com/answers/68372/generate-snmp-trap-from-splunk.html
This script is very used, I use it myself and never had problems.
Tks
Rodrigo Ribeiro