Hi Eero,<br><br>I had to go to the archives on SourceForge to see your reply. I am not getting emails from the list.<br><br>No, unfortunitely that won't work. I am looking for a plugin that will query the SSM IPS module for any security breach attempts or that will monitor a log file from syslog-ng capturing the SSM syslog data and will then send either an SNMP trap or trigger a passive alert.<br>
<br>I found where people talk about monitoring their Cisco devices that have SSM IPS modules, but no examples so far.<br><br>Thanks for thinking of that app. :-)<br><br>Joe<br><br><div class="gmail_quote">On Tue, Jun 5, 2012 at 12:51 AM, Joseph Hardeman <span dir="ltr"><<a href="mailto:jwhardeman@gmail.com" target="_blank">jwhardeman@gmail.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Hi Everyone,<br><br>I have been looking around and am hoping that someone can help me out. I recently got a Cisco 5520 with a SSM-20 module (latest code and Signatures) that I need to start monitoring. I have been looking but I have not found a script that will help me monitor this via SNMP.<br>
<br>We are looking to use Nagios to capture any security breachs or attempts that are captured by the SSM module and its analysis engine.<br><br>We do have this device sending Syslog data to the Nagios system, so if there is a way to parse or tail this log to watch for the events that would be helpful too.<br>
<br>Thanks in advance.<br><br>Joe<br>
</blockquote></div><br>