base/bif/plugins/Zeek_SNMP.events.bif.zeek

GLOBAL
Namespace

GLOBAL

Summary

Events

snmp_encrypted_pdu: event

An SNMPv3 encrypted PDU message.

snmp_get_bulk_request: event

An SNMP GetBulkRequest-PDU message from RFC 3416.

snmp_get_next_request: event

An SNMP GetNextRequest-PDU message from either RFC 1157 or RFC 3416.

snmp_get_request: event

An SNMP GetRequest-PDU message from either RFC 1157 or RFC 3416.

snmp_inform_request: event

An SNMP InformRequest-PDU message from RFC 3416.

snmp_report: event

An SNMP Report-PDU message from RFC 3416.

snmp_response: event

An SNMP GetResponse-PDU message from RFC 1157 or a Response-PDU from RFC 3416.

snmp_set_request: event

An SNMP SetRequest-PDU message from either RFC 1157 or RFC 3416.

snmp_trap: event

An SNMP Trap-PDU message from RFC 1157.

snmp_trapV2: event

An SNMP SNMPv2-Trap-PDU message from RFC 1157.

snmp_unknown_header_version: event

A datagram with an unknown SNMP version.

snmp_unknown_pdu: event

An SNMP PDU message of unknown type.

snmp_unknown_scoped_pdu: event

An SNMPv3 ScopedPDUData of unknown type (neither plaintext or an encrypted PDU was in the datagram).

Detailed Interface

Events

snmp_encrypted_pdu
Type

event (c: connection, is_orig: bool, header: SNMP::Header)

An SNMPv3 encrypted PDU message.

Parameters

  • c – The connection over which the SNMP datagram is sent.

  • is_orig – The endpoint which sent the SNMP datagram.

  • header – SNMP version-dependent data that precedes PDU data in the top-level SNMP message structure.

snmp_get_bulk_request
Type

event (c: connection, is_orig: bool, header: SNMP::Header, pdu: SNMP::BulkPDU)

An SNMP GetBulkRequest-PDU message from RFC 3416.

Parameters

  • c – The connection over which the SNMP datagram is sent.

  • is_orig – The endpoint which sent the SNMP datagram.

  • header – SNMP version-dependent data that precedes PDU data in the top-level SNMP message structure.

  • pdu – An SNMP PDU data structure.

snmp_get_next_request
Type

event (c: connection, is_orig: bool, header: SNMP::Header, pdu: SNMP::PDU)

An SNMP GetNextRequest-PDU message from either RFC 1157 or RFC 3416.

Parameters

  • c – The connection over which the SNMP datagram is sent.

  • is_orig – The endpoint which sent the SNMP datagram.

  • header – SNMP version-dependent data that precedes PDU data in the top-level SNMP message structure.

  • pdu – An SNMP PDU data structure.

snmp_get_request
Type

event (c: connection, is_orig: bool, header: SNMP::Header, pdu: SNMP::PDU)

An SNMP GetRequest-PDU message from either RFC 1157 or RFC 3416.

Parameters

  • c – The connection over which the SNMP datagram is sent.

  • is_orig – The endpoint which sent the SNMP datagram.

  • header – SNMP version-dependent data that precedes PDU data in the top-level SNMP message structure.

  • pdu – An SNMP PDU data structure.

snmp_inform_request
Type

event (c: connection, is_orig: bool, header: SNMP::Header, pdu: SNMP::PDU)

An SNMP InformRequest-PDU message from RFC 3416.

Parameters

  • c – The connection over which the SNMP datagram is sent.

  • is_orig – The endpoint which sent the SNMP datagram.

  • header – SNMP version-dependent data that precedes PDU data in the top-level SNMP message structure.

  • pdu – An SNMP PDU data structure.

snmp_report
Type

event (c: connection, is_orig: bool, header: SNMP::Header, pdu: SNMP::PDU)

An SNMP Report-PDU message from RFC 3416.

Parameters

  • c – The connection over which the SNMP datagram is sent.

  • is_orig – The endpoint which sent the SNMP datagram.

  • header – SNMP version-dependent data that precedes PDU data in the top-level SNMP message structure.

  • pdu – An SNMP PDU data structure.

snmp_response
Type

event (c: connection, is_orig: bool, header: SNMP::Header, pdu: SNMP::PDU)

An SNMP GetResponse-PDU message from RFC 1157 or a Response-PDU from RFC 3416.

Parameters

  • c – The connection over which the SNMP datagram is sent.

  • is_orig – The endpoint which sent the SNMP datagram.

  • header – SNMP version-dependent data that precedes PDU data in the top-level SNMP message structure.

  • pdu – An SNMP PDU data structure.

snmp_set_request
Type

event (c: connection, is_orig: bool, header: SNMP::Header, pdu: SNMP::PDU)

An SNMP SetRequest-PDU message from either RFC 1157 or RFC 3416.

Parameters

  • c – The connection over which the SNMP datagram is sent.

  • is_orig – The endpoint which sent the SNMP datagram.

  • header – SNMP version-dependent data that precedes PDU data in the top-level SNMP message structure.

  • pdu – An SNMP PDU data structure.

snmp_trap
Type

event (c: connection, is_orig: bool, header: SNMP::Header, pdu: SNMP::TrapPDU)

An SNMP Trap-PDU message from RFC 1157.

Parameters

  • c – The connection over which the SNMP datagram is sent.

  • is_orig – The endpoint which sent the SNMP datagram.

  • header – SNMP version-dependent data that precedes PDU data in the top-level SNMP message structure.

  • pdu – An SNMP PDU data structure.

snmp_trapV2
Type

event (c: connection, is_orig: bool, header: SNMP::Header, pdu: SNMP::PDU)

An SNMP SNMPv2-Trap-PDU message from RFC 1157.

Parameters

  • c – The connection over which the SNMP datagram is sent.

  • is_orig – The endpoint which sent the SNMP datagram.

  • header – SNMP version-dependent data that precedes PDU data in the top-level SNMP message structure.

  • pdu – An SNMP PDU data structure.

snmp_unknown_header_version
Type

event (c: connection, is_orig: bool, version: count)

A datagram with an unknown SNMP version.

Parameters

  • c – The connection over which the SNMP datagram is sent.

  • is_orig – The endpoint which sent the SNMP datagram.

  • version – The value of the unknown SNMP version.

snmp_unknown_pdu
Type

event (c: connection, is_orig: bool, header: SNMP::Header, tag: count)

An SNMP PDU message of unknown type.

Parameters

  • c – The connection over which the SNMP datagram is sent.

  • is_orig – The endpoint which sent the SNMP datagram.

  • header – SNMP version-dependent data that precedes PDU data in the top-level SNMP message structure.

  • tag – The tag of the unknown SNMP PDU.

snmp_unknown_scoped_pdu
Type

event (c: connection, is_orig: bool, header: SNMP::Header, tag: count)

An SNMPv3 ScopedPDUData of unknown type (neither plaintext or an encrypted PDU was in the datagram).

Parameters

  • c – The connection over which the SNMP datagram is sent.

  • is_orig – The endpoint which sent the SNMP datagram.

  • header – SNMP version-dependent data that precedes PDU data in the top-level SNMP message structure.

  • tag – The tag of the unknown SNMP PDU scope.