Hello,
I receive SNMP traps into the CMK Event Console.
The IP source it’s the same for all of them and all the information I need is included in the message of the trap: Severity, Server, Error message…
With rules and regex I get all the items, and I can generate an event for different host or application, rewritting the hostname, message,…
But when I rewrite the hostname or Application, I can’t recover the original event.
When the OK trap arrives, the rule is applied, as a cancelling event, because the ‘Text to cancel event’ is found, but the Critical/Warning event doesn’t close with the OK event.
Any idea how can I do it?
Thanks a lot