SNMP traps sent to the SpectroSERVER running on Linux not being processed as expected. When a tcpdump is run on the SpectroSERVER system, the following message is seen when the trap is received:

13:46:36.878728 IP <IP Address> >  <IP Address>: ICMP host <IP Address> unreachable - admin prohibited, length 157

Release : Any version of Spectrum installed on Linux

Component : Spectrum Core / SpectroSERVER

The "admin prohibited filter" seen in the tcpdump output means there is a firewall blocking a connection. It does it by sending back an ICMP packet meaning precisely that: the admin of that firewall doesn't want those packets to get through. It could be a firewall at the destination site. It could be a firewall in between. It could be iptables on the Linux system.

Check for a firewall that may be blocking the packets.

Check for iptables on the SpectroSERVER system by entering the following command as the root user:

iptables --list

If there are iptables, as a test, run the following command as the root user to flush the iptables and see if the trap packets are now processed:

iptables --flush

If iptables are required in your environment, ensure they do not block the traps.