patrickpr
SNMPv3 traps are not processed
I am facing the problem that SNMPv3 traps are not processed.
I have created a new SNMPv3 user in my UPS system (Auth = AES, Priv = SHA) and created on the icinga2 server a new user with the same credentials in the /etc/snmp/snmptrapd.conf file:
traphandle default /usr/bin/php /usr/share/icingaweb2/modules/trapdirector/bin/trap_in.php
...
createUser -e 0x80000001020304 icingatrapusv SHA XXX AES XXX
authUser log,execute,net icingatrapusv
After restarting the snmptrap service, I sent a test trap. This trap also arrives at the server, but it is not processed by the trapdirector.
[root@thillmmon1 plugins]# tcpdump -n port 162
dropped privs to tcpdump
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on ens32, link-type EN10MB (Ethernet), capture size 262144 bytes
14:48:31.038997 IP 172.xx.xx.xx.64455 > 172.xx.xx.xx.snmptrap: F=ap U="icingatrapusv" [! scoped PDU]cf_a1_36_7d_ce_04_84_ee_ba_6e_80_a8_bb_ef_39_14_b4_37_f5_ce_05_c0_8c_ee_70_12_cb_b4_ce_2a_68_39_8f_24_db_ce_cb_cd_c9_b6_c5_75_e8_76_9f_84_6d_ee_cc_83_34_b6_54_05_30_f2_15_6b_79_51_66_2d_8b_da_6a_23_ca_c4_bc_64_4b_bd_df_88_d3_50_83_55_13_0a_3e_fb_f8_75
But in the trapdirector Log (set to log everything) I don't see any action. I have no problem with SNMPv2 Traps.
Any ideas to solve this problem?
Thx!
Your Environment
If related to the question in any way :
- trapdirector version (in icinga web 2 : System - About): 1.0.6
- Icinga Web 2 version and modules (in icinga web 2 : System - About): 2.8.2
- Icinga 2 version (
icinga2 --version): 2.12.3 - Operating System and version: CentOS 8
- Webserver, PHP versions: PHP 7.2.24
I am experiencing the same errors snmp v3 traps are not shown in the webgui. Should one create one snmpv3-user for each device that wants to send v3-traps or is one for all sufficient (like for community strings)?
