cancel
Showing results for 
Search instead for 
Did you mean: 
hbajaj
Level 9

Need rules for few incidents

I need Error handler rules/rule-sets for below incidents:

20

21

22

902

903

932

933

301

3000

3001

3005

I want to enable SNMP trap notification when these incidents occur. I have already enabled the exisitng/default error handler rule-sets, but need few more.

- heena

0 Kudos
2 Replies
McAfee Employee

Re: Need rules for few incidents

Hi Heena,

This is very easy to do. There is already rulesets which demonstrate what is necessary.

For demonstration purposes, you can use this attached ruleset, it is a catch all. I have built in rules for ignoring certain Incidents or Errors. As for Incidents, a severity is set for every incident, so in my ruleset it will only allow incidents with a severify 5 or higher (1 being the highest).

This could easily be reconfigured to send traps for specific incidents.

Placement of this ruleset is very important. You can place it at the top for testing.

catchall.png snmpincident.png

Hope this helps!

-Jon

Message was edited by: jscholte (spelling) on 7/25/12 12:21:16 PM CDT
hbajaj
Level 9

Re: Need rules for few incidents

Awsome. This covers all incidents. Thanks.

0 Kudos