I'm new to Kibana, but I've been asked to find a solution where syslogs sent into Kibana are forwarded on to CA Spectrum as SNMP traps. This is to simplify a convoluted solution we have right now where syslog messages are centralised in a handler, saved in a database, and then i) sent on to Kibana, and ii) formatted as SNMP traps and sent to CA Spectrum.
My question is, if we reconfigured all devices to send their syslogs direct to Kibana, how could we then forward each event as a trap from Kibana? Can this be set up in Kibana natively? Or would this work best as a plugin? Or would it need some code outside Kibana to retrieve the event data and generate the traps separately? Is there a way to execute a piece of code from Kibana on receipt of a syslog message?
The process of generating the traps will of course need some mapping between the syslog message and all the normal trap contents, such as OIDs.
The volume of syslog data will be quite high, so ideally I'd like to go for an option that gives efficiency and scaleability.
Thanks for your help.