All Apps and Add-ons
×
Are you a member of the Splunk Community?
Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
- Find Answers
- :
- Apps & Add-ons
- :
- All Apps and Add-ons
- :
- SNMP Traps not Captured
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark Topic
- Subscribe to Topic
- Mute Topic
- Printer Friendly Page
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
rbacon
Path Finder
06-16-2014
02:47 PM
I'm having a similar problem to a recent post which also has not been solved (at this time). I've installed SNMP Modular input and configured as described on it's Splunk Apps page but it's not indexing the incoming data. I have verified that the SNMP data is making it to my system via Netcat and Wireshark.
Is it necessary to provide MIBs in the SNMP inputs for Modular Input to work or will it not still index without any listed? I've left that configuration empty for the time being.
I running Ubuntu 14.4 and Splunk 6.1.
Thanks.
1 Solution
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
rbacon
Path Finder
07-24-2014
02:44 PM
I removed all MIBS from snmp data input configuration and it started working. I'm not totally sure why this works but I think it's because the manufacturer of the device I'm monitoring has provided a MIB that is very poorly written. It's seems to be missing some key value pairs that I would think necessary.
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
rbacon
Path Finder
07-24-2014
02:44 PM
I removed all MIBS from snmp data input configuration and it started working. I'm not totally sure why this works but I think it's because the manufacturer of the device I'm monitoring has provided a MIB that is very poorly written. It's seems to be missing some key value pairs that I would think necessary.
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
rbacon
Path Finder
07-02-2014
12:17 PM
Anyone have a similar issue?
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
rbacon
Path Finder
06-18-2014
12:03 PM
Thanks Damien. I sent the Wireshark-captured trap.
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Damien_Dallimor
Ultra Champion
06-16-2014
07:56 PM
Can you email me a wireshark capture of the traps that are not showing up in Splunk ? ddallimore@splunk.com
Get Updates on the Splunk Community!
Introducing the Splunk Answers Content Calendar
Two parameters are needed for shortenTextAtSpace function: string and maxLen. Ellipsis is optional.
Detecting Brute Force Account Takeover Fraud with Splunk
This article is the second in a three-part series exploring advanced fraud detection techniques using Splunk. ...
Buttercup Games: Further Dashboarding Techniques (Part 9)
This series of blogs assumes you have already completed the Splunk Enterprise Search Tutorial as it uses the ...
