"D'Apice, Dominic" <D.D'Apice AT SAQ.qc DOT ca> writes:
> Hello all, Netview 7.1 and Aix 4.3.3
>
> Does anybody has some documentations or reference (website...) about
> "checkpoint firewall" and "Netview" integration ? i mean checkpoint
> firewall sotfware will send snmp trap to netview. In the side of
> Netview does it only need the MIB informations to be integrate. SO,
> IF SOMEONE HAS EVER DO THAT, IT WILL BE GREAT TO HAVE A FEEDBACK.
We monitor devices that run checkpoint. You don't say what platform
you're running checkpoint on (Nokia, AIX, solaris?), but the general
strategy is the same as any other device.
Also keep in mind that NetView handles traps entirely separately from
the loading of MIB files into the MIB browser hierarchy. The former
uses the /usr/OV/bin/addtrap command. To load MIB files for use in
mib browsing, data collection possibly, or viewing the mib tree, you use
xnmloadmib (for
snmpv1 mibs) xnmloadmib2 (v1 or v2 mibs) or the web-based mib loader
(new in 7.1--i haven't used it yet) depending on your needs. To load
in trap support, you use the /usr/OV/bin/addtrap command (for which
there is a unix man page). The utility /usr/OV/bin/mib2trap helps
get you from a MIB file to an addtrap script.
So...if you're not too picky...
1) Take the Checkpoint MIB file provided by the vendor, possibly
concatenate them with other hierarchically superior files using cat to
get them all together in one big file,
2) pray to a higher power of your choosing
3) Run them through /usr/OV/bin/mib2trap
4) massage the resulting shell script from mib2trap to your tastes,
5) run the resulting mib2trap shell script that will run a bunch
of /usr/OV/bin/addtrap commands to add support for all the traps you
wish to support.
Due to difficulties with steps 2 and 3, we typically pick the traps
from the MIB file we wish to support and typically hand code the
addtrap scripts to specify exactly what we want.
Consult the unix man page for mib2trap for additional information.
Best REgards,
--
Todd H.
http://www.toddh.net/
|
