DescriptionDevice is able to be added to Topology, however, the traps sent by the device (MAC Notification traps, Link State traps, etc) are not recognized.
ScopeVersion: 8.xSolutionA list of currently supported traps and vendors can be found in the SNMP Trap Support reference manual in the Fortinet Document Library.
Collect Trap Information
If the trap is currently unsupported, collect the following:
- snmpwalk of system OID from the device: Snmpwalk can be performed using the snmpwalk tool in the appliance CLI or using some other SNMP tool that has access to the device.
To obtain using the appliance, type the following in the CLI:
SNMP version 1 or 2
snmpwalk -v 1 -c <community string> <device ip_address> system
SNMP version 3
snmpwalk -v 3 -u <username> -l <AuthPriv or NoAuthPriv> -a <MD5 or SHA> -A <password> -x <DES or AES> -X <password> <device ip_address> system
*May need to use single quotes (') with passwords.
- A raw packet capture of the trap: Packet capture should be viewable using Wireshark (.cap or .pcap format). To obtain capture using the appliance, type the following in the CLI:
tcpdump -s 0 -w filename.cap -i any '(ip host <device ip>)'
Example:
tcpdump -s 0 -w filename.cap -i any '(ip host 10.32.13.5)'
Trigger behavior to generate trap, then type Ctrl-C to stop capture.
Download file to computer using WinSCP or a similar program (use SCP protocol).
- Additional documentation: Any documentation from the
vendor about the trap ( MIBs, etc ).
Submit to Support
Open a support ticket and include:
- Current appliance version (Help > About)
- snmpwalk output
- Packet capture
- Additional documented collected
- Description of trap (link up/link down, MAC notification trap, etc)
