Fluent::Plugin::SnmpTrap

fluent-plugin-snmptrap is an input plug-in for Fluentd

These instructions assume you already have fluentd installed. If you don't, please run through [quick start for fluentd] (https://github.com/fluent/fluentd#quick-start)

Now after you have fluentd installed you can follow either of the steps below:

Add this line to your application's Gemfile:

gem 'fluent-plugin-snmptrap'

Or install it yourself as:

$ gem install fluent-plugin-snmptrap

Add the following into your fluentd config.

<source>
  type snmptrap       # required, chossing the input plugin.
  host 127.0.0.1      # optional, interface to listen on, default 0 for all.
  port 162            # optional, port to listen for traps, default is 1062
                      # ports under 1024 range will require sudo to start fluentd
  tag alert.snmptrap  # optional, tag to assign to events, default is alert.snmptrap 
</source>

<match alert.snmptrap>
  type stdout
</match>

Now startup fluentd

$ sudo fluentd -c fluent.conf &

Send a test trap using net-snmp tools

& sudo snmptrap -v 1 -c public localhost:1062 1.3.6.1.4.1.10300.1.1.1.12 localhost 3 0 ''  

Things left to do, not in any particular order.

• wrap snmp-trap listener and have it restart on failure.
• add support for loading MIBs
• explode the var binds
• snmp-trap output plug-in that exposes common fields and lets them be overwritten before forwarding.