Hi Team,
I have a query not sure if anyone can help in this
We have an in house created ticketing system which one of the developers created this we plan to integrate with elastic.
We have multiple client regions & on all the regions logstash & heartbeat is configured on the servers. Now on elastic end what data we collect or visualize is related to SNMP for devices like routers & switches
The data of heartbeat & SNMP is routed through logstash. SNMP data is configured separately configurations are kept in /etc/logstash/snmp/config.d/input-xyz.yml, similarly for output-xyz.yml
The data related to SNMP is shared by client when they configure their routers to send data via snmp the data that is shared is like SNMP IP address I think its the routers IP address, then is the community string for snmp v2 its like an identifier or a short name to identify interlinked routers I might be wrong not sure.
on the /etc/logstash/snmp/config.d/input-xyz.yml file we add details like below the 1.3.6.1.2.1.1.5.0 is related to OID
input {
snmp {
get => ["1.3.6.1.2.1.1.5.0"]
walk => [".1.3.6.1.2.1.1.3.0"]
tables => [{"name" => "interfaces" "columns" => ["1.3.6.1.2.1.2.2.1.2","1.3.6.1.2.1.31.1.1.1.18",".1.3.6.1.2.1.2.2.1.10",".1.3.6.1.2.1.2.2.1.16",".1.3.6.1.2.1.2.2.1.5","1.3.6.1.2.1.2.2.1.6",".1.3.6.1.2.1.2.2.1.8","1.3.6.1.2.1.2.2.1.7","1.3.6.1.2.1.31.1.1.1.6","1.3.6.1.2.1.31.1.1.1.10"]}]
hosts => [{host => "udp:ipaddress/161" community =>"abcdataset" retries => 1
So now the data that the developer has asked for is below. So not sure how do we pull this data from SNMP or elastic & provide that to link it with the service desk application . If anyone who has worked with SNMP for monitoring or have knowledge on how it can be done please help.
-
Incident outline
-
Enter additional details
-
Select Country
-
Select Region
-
Select customer
-
select relevant subscription
-
Select relevant sites
Thanks,
Vinay