Incremental values in SNMP Logs

Question

Hello!I am receiving logs from SNMP, but the field names are incremental in nature, which have the same values as the incremental value. For an example:oid_hierarchy_value_1 = 1oid_hierarchy_value_2 = 2oid_hierarchy_value_3 = 3 How can I go about extracting these fields from the logs so that I can do chart sum, average, and so on?

Rupsan Shrestha · Answer

Hello Sandesh,The incremental values are the child object values under the same parent object.You can use a query like;“ | rex oid_hierarchy_value_\d+\s=\s(?P) | rename object_id as object_name | chart sum(object_name) by device_name“ or“ | rex oid_hierarchy_value_(?P) | rename object_id as object_name | chart avg(object_name) by device_name“ You can extract the required value through rex or norm lookup. Then use it as per your requirement in the form of sum, average, count, max, min and so on.

Reply

Sign up

Already a Partner or Customer? Login with your LogPoint Support credentials. Don‘t have a LogPoint Support account? Ask your local LogPoint Representative. Only visiting? Login with LinkedIn to gain read–access.

Login to the community

Already a Partner or Customer? Login with your LogPoint Support credentials. Don‘t have a LogPoint Support account? Ask your local LogPoint Representative. Only visiting? Login with LinkedIn to gain read–access.

Scanning file for viruses.

This file cannot be downloaded