Hi,
I'm looking for a way to get information from snmptrap V3 into Elasticsearch. The Logstash snmptrap plugin does not support V3.
I was able to get the traps into LS and ES using the UDP plugin, however I'm getting garbled output in ES (see below) and need a way to translate it. I've seen several libraries or tools that seem to offer that functionality, however no concrete example for this use case, which will mean research and experimentation.
If anyone did anything similar, or has an idea of how this might be solved, I'd be happy to hear how.
I'm using the snmptrap tests mentioned here:
https://support.nagios.com/kb/article.php?id=493
This is the output I'm currently getting:
0\x81\xA6\u0002\u0001\u00030\u0011\u0002\u0004|\xF9\xB5\xCF\u0002\u0003\u0000\xFF\xE3\u0004\u0001\u0000\u0002\u0001\u0003\u0004&0$\u0004\t\t\b\a\u0006\u0005\u0004\u0003\u0002\u0001\u0002\u0001\u0000\u0002\u0001\u0000\u0004\rthe_user_name\u0004\u0000\u0004\u00000f\u0004\u0011\x80\u0000\u001F\x88\x80\x86VCF3\xD88_\u0000\u0000\u0000\u0000\u0004\u0000\xA7O\u0002\u0004ph\xFFn\u0002\u0001\u0000\u0002\u0001\u00000A0\u0010\u0006\b+\u0006\u0001\u0002\u0001\u0001\u0003\u0000C\u0004\u0006\x8D\f\xD10\u0019\u0006\n+\u0006\u0001\u0006\u0003\u0001\u0001\u0004\u0001\u0000\u0006\v+\u0006\u0001\u0004\u0001\xBF\b\u0002\u0003\u0000\u00010\u0012\u0006\v+\u0006\u0001\u0004\u0001\xBF\b\u0002\u0003\u0002\u0001\u0002\u0003\u0001\xE2@”
Thanks,
Shai