SNMP traps sent to the SpectroSERVER running on Linux not being processed as expected

book

Article ID: 141663

calendar_today

Updated On:

Products

CA eHealth CA Spectrum

Issue/Introduction

SNMP traps sent to the SpectroSERVER running on Linux not being processed as expected. When a tcpdump is run on the SpectroSERVER system, the following message is seen when the trap is received:

13:46:36.878728 IP 192.168.177.31 > 192.168.177.6: ICMP host 192.168.177.31 unreachable - admin prohibited, length 157

 

Cause

The "admin prohibited filter" seen in the tcpdump output means there is a firewall blocking a connection. It does it by sending back an ICMP packet meaning precisely that: the admin of that firewall doesn't want those packets to get through. It could be a firewall at the destination site. It could be a firewall in between. It could be iptables on the Linux system.

Environment

Release : Any version of Spectrum installed on Linux

Component : Spectrum Core / SpectroSERVER

Resolution

Check for a firewall that may be blocking the packets.

Check for iptables on the SpectroSERVER system by entering the following command as the root user:

iptables --list

If there are iptables, as a test, run the following command as the root user to flush the iptables and see if the trap packets are now processed:

iptables --flush

If iptables are required in your environment, ensure they do not block the traps.