In an effort to gain a better understanding of the SNMP protocol, I decided to utilize snmpwalk, snmptable and snmpget requests to retrieve information from my OPNsense firewall.
This will be 1 example on how to collect SNMP data into Splunk. There are many tools out on the market that can feed SNMP data into Splunk.
You will see me go over how I enable Splunk to utilize the different SNMP requests via scripted inputs from the Splunk Universal Forward running on a Linux box that will feed data into my indexer.
Once the data has reached the indexer, I will then create the necessary field extractions and build some reports.
Splunk documentation links:
Splunk Get data from APIs and other remote data interfaces through scripted inputs:
docs.splunk.com/Documentation...
Splunk Dev scripted input examples:
dev.splunk.com/enterprise/doc...
Splunk Lantern - Getting Data In (GDI):
lantern.splunk.com/Splunk_Suc...
Splunk Connect for SNMP:
splunk.github.io/splunk-conne...
Netflow and SNMP Analytics for Splunk App:
splunkbase.splunk.com/app/489
Net-SNMP documentation:
www.net-snmp.org/
Reference record for OID 1.3.6.1.4.1.2021.4.1:
oidref.com/1.3.6.1.4.1.2021.4.1