0 Replies Latest reply on Mar 17, 2014 9:35 PM by supahabs

    How to trigger real-time-change-notification using the source IP found in Trap details?

    supahabs

      My task is to work on snmp trap to trigger real time change notification. From a DMZ environment, Solarwinds NPM was installed to forward syslog & trap to our main solarwinds server for storing, notification, etc.

       

      Topology:

      Device A (4.2.2.2)--->FW--->DMZ Solarwinds (10.10.10.1)-->>Main Solarwinds server

       

      Currently were only seeing traps coming into the main SW instead of both syslog&traps msgs. That is another issue. But given what i have now, my challenge is to use the info from the trap details (e.g SOLARWINDS-TRAPS.10=4.2.2.2) to trigger RTCN.

      Is that possible? How can this be done?

      Is there a way to use "SOLARWINDS-TRAPS.10=4.2.2.2" info to execute the alert action path "Orion\SolarWinds.NCM.RTNforwarder.exe" ${IP},RealtimeNotification,${DateTime}.${Message}" - I believe the $IP relates to the ip address where the syslog/trap is received, in this case the DMZ server and not from device itself. It makes sense to me why RealTimeChangeNotification is not working.

       

      This is exactly what i see from my trap viewer  except for the tampered ips.

       

       

      This is the condition i set prior to the DMZ setup, which i can say works totally fine.

       

       

       

       

      Hope you can help. Thanks in advance.

       

      Message was edited by: Sup ahabs