Project

fluent-plugin-snmptrap

0.01
No release in over 3 years
Low commit activity in last 3 years
There's a lot of open issues
fluent-plugin-snmptrapbigel0w/fluent-plugin-snmptrapHomepageDocumentationSource CodeBug TrackerWiki
FLuentd plugin for SNMP Traps... WIP
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
2021
2022
2023
2024
2025
 Popularity
Downloads
7,890
Stars
9
Forks
8
Watchers
5
 Releases
Current version
0.0.1
Total releases
1
First release
2014-07-09
Latest release
2014-07-09
 Issues
Open Issues
4
Closed Issues
4
Total Issues
8
Issue Closure Rate
50%
 Pull Requests
Open Pull Requests
1
Closed Pull Requests
1
Merged Pull Requests
7
Pull Request Acceptance Rate
77%
 Development
Primary Language
Ruby
Licenses
MIT
Average date of last 50 commits
2017-06-25
Reverse Dependencies
0

 Dependencies

Development

rake
>= 0.9.6, ~> 0.9

Runtime

fluentd
>= 0.10.51, ~> 0.10
snmp
>= 1.1.1, ~> 1.1
 Project Readme

Fluent::Plugin::SnmpTrap

fluent-plugin-snmptrap is an input plug-in for Fluentd. It works with Fluentd v1.0 and later.

Status

Gem Version Build Status

Installation

These instructions assume you already have fluentd installed. If you don't, please run through [quick start for fluentd] (https://github.com/fluent/fluentd#quick-start)

Now after you have fluentd installed you can follow either of the steps below:

Add this line to your application's Gemfile:

gem 'fluent-plugin-snmptrap'

Or install it yourself as:

$ gem install fluent-plugin-snmptrap

Usage

Add the following into your fluentd config.

<source>
  type snmptrap       # required, chossing the input plugin.
  host 127.0.0.1      # optional, interface to listen on, default 0 for all.
  port 162            # optional, port to listen for traps, default is 1062
                      # ports under 1024 range will require sudo to start fluentd
  # ports 1062,1063   # optional, alternative to "port" for listening on
                      # multiple ports
  tag alert.snmptrap  # optional, tag to assign to events, default is alert.snmptrap
  mib_dir /path/to/mibs          # optional, directory containing MIB files
  mib_modules SNMPv2-SMI,SNMPv2-MIB # optional, comma separated modules to load
</source>

<match alert.snmptrap>
  type stdout
</match>

Now startup fluentd

$ sudo fluentd -c fluent.conf &

Send a test trap using net-snmp tools

& sudo snmptrap -v 1 -c public localhost:1062 1.3.6.1.4.1.10300.1.1.1.12 localhost 3 0 ''

Example Output

When emit_event_format is set to record, a trap like the one above will be emitted as a structured record:

{
  "source_ip": "127.0.0.1",
  "enterprise": "1.3.6.1.4.1.10300.1.1.1.12",
  "oid": "1.3.6.1.4.1.10300.1.1.1.12",
  "name": "SNMPv2-SMI::enterprises.10300.1.1.1.12",
  "specific_trap": 0,
  "generic_trap": "enterpriseSpecific",
  "varbind": {}
}

To Do

Things left to do, not in any particular order.

  • snmp-trap output plug-in that exposes common fields and lets them be overwritten before forwarding.

License

This project is licensed under the MIT License.