sirator
asked on
How to send SNMP trap from CheckPoint?
Dear Sir
I'm running Checkpoint Firewall Clustering with StoneBeat Cluster software. Firewall version is NG FP2, I implement HP OpenView and need to receive SNMP trap from CheckPoints. I then configure by going through "Policy" => "Global Properties" => "Log and Alert" => "Alert Commands" and entering the command "internal_snmp_trap A.B.C.D" in "Run SNMP trap alert script". But I get nothing. What's wrong ?
Does anyone face this problem before ?
I'm so sure that there is nothing sending from CheckPoint when I tried to trigger this SNMP trap script. The reason I'm so sure, since I execute "snoop" command on my CheckPoint Firewall ( UNIX ).
I'm running Checkpoint Firewall Clustering with StoneBeat Cluster software. Firewall version is NG FP2, I implement HP OpenView and need to receive SNMP trap from CheckPoints. I then configure by going through "Policy" => "Global Properties" => "Log and Alert" => "Alert Commands" and entering the command "internal_snmp_trap A.B.C.D" in "Run SNMP trap alert script". But I get nothing. What's wrong ?
Does anyone face this problem before ?
I'm so sure that there is nothing sending from CheckPoint when I tried to trigger this SNMP trap script. The reason I'm so sure, since I execute "snoop" command on my CheckPoint Firewall ( UNIX ).
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Again, depends on the platform. For NT, you need to use %FWDIR%\bin\sendmail, to Nokia, you need to use 'ipso sendmail'... ??
Same applies to snmp !
What platform do you use ?
Same applies to snmp !
What platform do you use ?
ASKER
I'm running on Solaris 5.8.
The matter I suspect is that it's capable of enable mail alert with CheckPoint internal command as "internal_sendmail" as described in CheckPoint manual. (Originally from the manual indication it's "internal_send_mail" that I've tested and it didn't really work)
But it doesn't work with "internal_snmp_trap" command. That's thing I'm so confused.
The matter I suspect is that it's capable of enable mail alert with CheckPoint internal command as "internal_sendmail" as described in CheckPoint manual. (Originally from the manual indication it's "internal_send_mail" that I've tested and it didn't really work)
But it doesn't work with "internal_snmp_trap" command. That's thing I'm so confused.
Do you still need help with this ? I've some Solaris manuals I can look at if you want ?
ASKER
Hi, I would really appreciate if you can provide me a useful document.
Thanks so much in advances.
Thanks so much in advances.
Is there a rule on the firewall allowing SNMP from the firewall to your OpenView servers ?
Have you tried the snmp_trap command ?
Have you tried the snmp_trap command ?
Is this now resolved ?
ASKER
Referring from Document in terms of Mail Alert, it said, to alert through mail, the internal command will be used by "internal_send_mail" command.
I tested using this command, but it doesn't work. Then I changed to "internal_sendmail" instead, and it works.
Is anything wrong with CheckPoint FP2 document?
Anyway, I can't find "internal_snmp_trap" work at all. Why not?
Looking up from CheckPoint SecureKnowledge, there's nothing come up for help troubleshooting this issue at all.