Diagnostics: 5. SNMP Traps and Email Notifications

Comprehensive user manual for CySight Ai-Driven Network and Endpoint Detection and Response (NDR, EDR) Forensics and Application Performance Monitoring (APM)

Diagnostics: 5. SNMP Traps and Email Notifications

SNMP Traps and Email Notifications

The Alert Diagnostics can trigger a trap when a ticket first occurs.

By default the alert is configured to use the SNMP trap server

Image

Image
  • If your SNMP trap settings are correct a trap will send a ticket with its VALUE contents to the SNMP ID's described in the table below.
  • If your EMAIL settings are correct an EMAIL will be sent with a subject similar to:

    Subject: CySight Alert: Ticket (0429-223) AlertID (5213) - IPv4 Baseline Template (10.16.0.163-36 GigEth 1/1) - 2015-04-29 14:26-2015-04-29 14:40

    The body of the email will contain the ticket FIELD details and the tickets content VALUEs as described in the below table.
SNMP IDFieldValue
1.3.6.1.4.1.999999.900.1.1.1Alert ID5213
1.3.6.1.4.1.999999.900.1.1.2Alert TitleIPv4 Baseline Template (105.16.0.163-636 Unknown)
1.3.6.1.4.1.999999.900.1.1.3Description....
1.3.6.1.4.1.999999.900.1.1.4CategoryAuto
1.3.6.1.4.1.999999.900.1.1.5Alert TypeBaseline Alert
1.3.6.1.4.1.999999.900.1.1.6Flow TypeIPv4 Generic
1.3.6.1.4.1.999999.900.1.1.7Applied TypeDevice
1.3.6.1.4.1.999999.900.1.1.8Ownerabcd
1.3.6.1.4.1.999999.900.1.2.1Ticket ID0429-223
1.3.6.1.4.1.999999.900.1.2.2Ticket URLhttps://10.20.30.40:8080/digitoll/Alert ... t=0429-223
1.3.6.1.4.1.999999.900.1.2.3Date2015-04-29 14:26-2015-04-29 14:40
1.3.6.1.4.1.999999.900.1.2.4Duration15 minutes
1.3.6.1.4.1.999999.900.1.2.5checks1
1.3.6.1.4.1.999999.900.1.2.6Meterbps
1.3.6.1.4.1.999999.900.1.3.1DiagnosticMultiple Hosts to Multiple Servers (Upload)
1.3.6.1.4.1.999999.900.1.3.2Dominantdst Port (80) http-www / tcp
1.3.6.1.4.1.999999.900.1.3.3SubdominantNone
1.3.6.1.4.1.999999.900.1.4.1Snapshot[ 75.85% ] MB:505.600 m.bps: 4.494 (46 dst IPs) src IP 755
1.3.6.1.4.1.999999.900.1.5.1Route Pathdst Itf (10.16.0.63-14) dst AS (12345) (0.12345) IDNIC-IDEADATA-ID-NET-GLOB cysight (Global) CySight Co. Ltd.
Diagnostics: 1. Introduction
Diagnostics: 2. Setup baseline learning
Diagnostics: 3. Monitoring Alerts and Tickets
Diagnostics: 4. Diagnostics screen deciphered
Diagnostics: 5. SNMP Traps and Email Notifications
Top

Return to “CySight User Manual”