Sending Snmp trap events to an SMTP/Exchange & SolarWind

We have apps that send alerts out via SNMP (think it's v2 SNMP): is there any way these
events are sent to an SMTP server (we use Exchange) or to SolarWind (our monitoring tool)?
If sent to SolarWind, we want to be alerted via email or SMS.

Our apps read the events from a custom Oracle DB (from a SWIFT application).

We have Splunk SIEM being deployed but not ready yet so wanted to use the other 2 options 1st.
sunhuxAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

bbaoIT ConsultantCommented:
SNMP trap can't be sent to a SMTP service as they re different protocols. what you can do is to add a monitor at Solarwinds against the app's SNMP events. the info is given below.

http://www.solarwinds.com/topics/snmp-trap-receiver
0
JohnCommented:
You need an SNMP trap receiver that has email alerting capability.  

I use PRTG for stuff like this and I can configure email alerts based upon an SNMP trap and also many other things such as an SNMP OID, WMI, etc

It is a nice product and is free for up to 100 sensors
0
btanExec ConsultantCommented:
If you are collecting and monitoring SNMP for further alerting, SMTP is not applicable as expert mentioned. You can still use Solarwind and set the email notification on certain SNMP trap received. For info, SNMP traps signal the occurrence of significant events by sending SNMP messages to a monitoring device. You can monitor SNMP traps with SolarWinds NPM or SolarWinds SAM. For the specific notification setting, do check out this "Configure Trap Viewer filters and alerts" section  - set an alert rule
10.  Click Alert Actions.
Associate the rule with a new action by clicking Add New Action, and then selecting an action from the list to configure. For more information about assigning and configuring alert actions, see Define what happens when an alert is triggered .
Edit an existing action for the rule.
Choose actions that occur whenever the trigger conditions are met. You can also set up escalations levels so that different actions occur if the alert has not been acknowledged quickly enough. See this which you can drill further to the Available alert actions
Change a custom property
Create a ServiceNow incident
Dial a paging or SMS service
Email a web page to users
Execute an external batch file
Execute an external Visual Basic script
Log the alert message to a file
Log the alert to the NPM event log
Change the resource allocation of a virtual machine
Delete a snapshot of a virtual machine
Move a virtual machine to a different host
Move a virtual machine to a different storage
Pause a virtual machine
Power off a virtual machine
Power on a virtual machine
Restart a virtual machine
Suspend a virtual machine
Take a snapshot of a virtual machine
Play a sound when an alert is triggered
Send a Windows Net message
Restart IIS sites or application pools
Send an SNMP trap
Send a GET or POST request through HTTP or HTTPS
Send a syslog message
Send an email or page
Manually set a custom status
Use the speech synthesizer to read alerts
Log an alert to the Windows Event Log on a specific server
1

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Redefine Your Security with AI & Machine Learning

The implications of AI and machine learning in cyber security are massive and constantly growing, creating both efficiencies and new challenges across the board. Check out our on-demand webinar to learn more about how AI can help your organization!

btanExec ConsultantCommented:
for author advice
0
sunhuxAuthor Commented:
One last query:  the SNMP trap when converted to email has very lengthy content.
Is there any way to shorten it to just the 3 lines indicated below by  <==  leaving out
the rest of the lines in the email  ?

17/11/2017 11:22 AM : SNMPv2-SMI:enterprises.18494.2.0.1  SNMP Trap
     Received Time:17/11/2017 11:22:45 AM <==
     Source:10.4.x.y (hostname of server) <==
     Community:MYB2beR0
     Variable Bindings
          enterprises.18494.2.1.1:= ACCESS_TEST
          enterprises.18494.2.1.2:= 17/11/2017
          enterprises.18494.2.1.3:= 11:22:19
          enterprises.18494.2.1.4:= BSA
          enterprises.18494.2.1.5:= 3000
          enterprises.18494.2.1.6:= Info
          enterprises.18494.2.1.7:= Operator
          enterprises.18494.2.1.8:= Successful signon
          enterprises.18494.2.1.9:= Operator LSO : Left security, Locally authenticated - successfully signed on to the terminal '10.4.x.y@3' at 11:22 using 'Alliance Web Platform'  <==

          snmpTrapOID:= SNMPv2-SMI:enterprises.18494.2.0.1 (1.3.6.1.4.1.18494.2.0.1)
          sysUpTime:= 0.01 second (1)
          experimental.1057.1.0:= 10.4.x.y
          snmpTrapEnterprise:= SNMPv2-SMI:enterprises.18494.2 (1.3.6.1.4.1.18494.2)
0
btanExec ConsultantCommented:
You can customise the email message. Need to explore into use of variable and reference it to the row number to grab the correct variable. Read on Solarwind example in article.

https://support.solarwinds.com/Success_Center/Network_Performance_Monitor_(NPM)/Customizing_an_SNMP_Trap_Email_Message
1
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Email Servers

From novice to tech pro — start learning today.