2021-01-27 07:25 AM
Hi community! I have done some research in the log collector, and I have found some config files under /etc/netwitness/ng/logcollection/content/transform/snmptrap regarding how the log collector transforms the intcomming snmp traps based basically on their enterprise OID, but I can't figure out the whole configuration. Does anyone has any information/guides about how I can create a custom snmpt transform file?
here is what I found by now:
# Vendor Configuration
#
# Trap Specifications
#
# TrapType TrapName TrapValue LinePattern StartAnchor EndAnchor
# MessageConstruction Type FieldSeperator NameValueSeperator EmptyString UseMessageID UseTrapName Tag
# MessageIDComponent LinePattern StartAnchor EndAnchor Suffix
# SourceAddress LinePattern StartAnchor EndAnchor
# Field Name LinePattern StartAnchor EndAnchor Prefix Suffix
#
Regards,
Max