got a little Problem with the SNMP-Test connectivityFailure on our IronPorts C370 & M670 and URL. All our Webtraffic has to be transportet over a Proxy-Server. Updates on the Ironport works, proxy ist configured, just the SNMP-Test fails. Is it possible that the SNMP-Test doesn`t use the proxy by design or any other ideas? Test-URL is http://downloads.ironport.com
Start with SNMP disabled, then use snmpconfig to enable the agent, and select the option to enable all traps. Because trap connectivityFailure is enabled, every 5 to 7 seconds (not configurable) the management interface (by default) will try to connect to downloads.ironport.com on port 80 (configurable). It will then try an HTTP GET request, and it will expect a response code between 200 and 300. If fail, then trap. That's the only test for this trap. The interval is not configurable, but the path is. Let's say alerts should be sent when the appliance cannot connect somewhere, but the firewall is blocking the management port from opening port 80 at downloads.ironport.com. Or the appliance is supposed to use the configured proxy and connectivityFailure trap should be sent if proxy is not reachable. The URL should be changed.
1. Assuming all traps are enabled, use snmpconfig to ENABLE trap #3 connectivityFailure in the list
AGAIN, or disable it and re-enable it, it makes no difference.
2. An extra question will pop up every time it is set to ENABLE i(except when ALL traps are enabled):
What URL would you like to check for connectivity failure?
Hi Team, I have one exclusion provided by internal team which is Is it right way to exclude ? *\Program Files\XYZ\* , as per Cisco Docs i see its not recommended because it will create performance issue when we use * at starting , So...
Central Log Management using Cisco Security Analytics and Logging, December 2nd at 8am-9:30am PT
Cisco Security Analytics and Logging is Cisco’s Central Log Management solution for Network Operations and Security Outcomes. It is delivered both as a c...
Cyberattacks are more sophisticated than ever and your online presence has never been more critical to the success of your business. Cisco, through its OEM partnership with Radware, can help secure your digital future by continuously monitoring...
We have a filter that blocks incoming messages with credit card numbers. But it won't pick up on messages with 4 digit blocks on separate lines. Example:1234567890123456 Any suggestion on how to detect this pattern?