mirror of
https://github.com/zeek/zeek.git
synced 2025-10-03 15:18:20 +00:00
a0c06a957b
This supports parsing of SNMPv1 (RFC 1157), SNMPv2 (RFC 1901/3416), and SNMPv2 (RFC 3412). An event is raised for each SNMP PDU type, though there's not currently any event handlers for them and not a default snmp.log either. However, simple presence of SNMP is currently visible now in conn.log service field and known_services.log.
9 lines
395 B
Text
9 lines
395 B
Text
# @TEST-EXEC: bro -b -r $TRACES/snmp/snmpv2_get.pcap %INPUT $SCRIPTS/snmp-test.bro >out1
|
|
# @TEST-EXEC: bro -b -r $TRACES/snmp/snmpv2_get_bulk.pcap %INPUT $SCRIPTS/snmp-test.bro >out2
|
|
# @TEST-EXEC: bro -b -r $TRACES/snmp/snmpv2_get_next.pcap %INPUT $SCRIPTS/snmp-test.bro >out3
|
|
|
|
# @TEST-EXEC: btest-diff out1
|
|
# @TEST-EXEC: btest-diff out2
|
|
# @TEST-EXEC: btest-diff out3
|
|
|
|
@load base/protocols/snmp
|