SNMP Analysis

Description

/topic/jsiwek/snmp in bro, binpac, and bro-testing-private adds support for parsing SNMP datagrams. It's only absent a snmp.log.

Seth, do you mind taking a look at what might make sense for a default snmp.log? I'm guessing it might look similar in concept to dns.log. A difference is I'm not sure how meaningful raw OID to value mappings will be.

The code is in a merge-able state as it is in the branch/repos I mentioned, and IMO, has value even without a default snmp.log. So if you just want to flip to a merge request and postpone thinking up an snmp.log for later, I think that's fine, too.

Environment

None

Activity

Show:
Robin Sommer
April 8, 2014, 10:48 PM

Merged the analyzer. Assigning to Seth for script-level part.

Seth Hall
April 3, 2014, 1:57 PM

I'm almost done with it and going to try and get it committed today (i know i've said this before...).

Robin Sommer
March 31, 2014, 7:09 PM

I'm fine merging this but I would then still like to have an snmp.log for 2.3 ...

Seth Hall
February 19, 2014, 1:17 PM

I'll take a look today, but you're right and I may end up falling back to just setting this to a merge request. Thanks!

Merged

Assignee

Jon Siwek

Reporter

Jon Siwek

Labels

None

External issue ID

None

Components

Fix versions

Affects versions

Priority

Normal