My task is to work on snmp trap to trigger real time change notification. From a DMZ environment, Solarwinds NPM was installed to forward syslog & trap to our main solarwinds server for storing, notification, etc.
Topology:
Device A (4.2.2.2)--->FW--->DMZ Solarwinds (10.10.10.1)-->>Main Solarwinds server
Currently were only seeing traps coming into the main SW instead of both syslog&traps msgs. That is another issue. But given what i have now, my challenge is to use the info from the trap details (e.g SOLARWINDS-TRAPS.10=4.2.2.2) to trigger RTCN.
Is that possible? How can this be done?
Is there a way to use "SOLARWINDS-TRAPS.10=4.2.2.2" info to execute the alert action path "Orion\SolarWinds.NCM.RTNforwarder.exe" ${IP},RealtimeNotification,${DateTime}.${Message}" - I believe the $IP relates to the ip address where the syslog/trap is received, in this case the DMZ server and not from device itself. It makes sense to me why RealTimeChangeNotification is not working.
This is exactly what i see from my trap viewer except for the tampered ips.
Image may be NSFW.
Clik here to view.
This is the condition i set prior to the DMZ setup, which i can say works totally fine.
Image may be NSFW.
Clik here to view.
Image may be NSFW.
Clik here to view.
Hope you can help. Thanks in advance.
Message was edited by: Sup ahabs
