Version is 3.2.0

MIB is loaded and ZenOSS restarted.

8080/zport/dmd/Mibs/SITE/Acme/mibs/APSYSMGMT-MIB/notifications/apSysMgmtInetAddrWithReasonDOSTrap/viewMibNotification

Vendor MIB:

APSYSMGMT-MIB DEFINITIONS ::= BEGIN

IMPORTS

        MODULE-IDENTITY, OBJECT-TYPE, NOTIFICATION-TYPE,

        TimeTicks, Integer32, Unsigned32, Counter32, IpAddress

                                        FROM SNMPv2-SMI

        InetAddress, InetAddressType, InetAddressPrefixLength, InetVersion, InetZoneIndex

                                        FROM INET-ADDRESS-MIB

        TEXTUAL-CONVENTION              FROM SNMPv2-TC

        DisplayString                   FROM SNMPv2-TC

        MODULE-COMPLIANCE, OBJECT-GROUP, NOTIFICATION-GROUP

                                        FROM SNMPv2-CONF

        acmepacketMgmt                  FROM ACMEPACKET-SMI

        ApHardwareModuleFamily, ApRedundancyState

                                        FROM ACMEPACKET-TC

    InterfaceIndex, ifIndex             FROM IF-MIB;

.

.

.

apSysMgmtDOSInetAddress OBJECT-TYPE

        SYNTAX                  InetAddress

        MAX-ACCESS              accessible-for-notify

        STATUS                  current

        DESCRIPTION            

        "The blocked IP address."

        ::= {  apSysMgmtDOSNotificationObjects 5 }

.

.

.

apSysMgmtInetAddrWithReasonDOSTrap      NOTIFICATION-TYPE

        OBJECTS         { apSysMgmtDOSInetAddressType,

                          apSysMgmtDOSInetAddress, 

                          apSysMgmtDOSRealmID,

                          apSysMgmtDOSFromUri,

                          apSysMgmtDOSReason }

        STATUS          current

        DESCRIPTION

              "This trap is generated when an IP is placed on a deny list due

              to denial-of-service attempts, and provides the ip address that

              has been demoted, the realm-id of that IP, (if available)

              the URI portion of the SIP From header of the message that

              caused the demotion and the reason for demotion."

        ::= { apSysMgmtDOSNotifications 4 }

Zentrap:

zentrap.log:2011-09-22 09:54:23,668 DEBUG zen.zentrap: Queueing event {'firstTime': 1316703263.6649909, 'apSysMgmtDOSInetAddressType.0': 1, 'eventClassKey': 'apSysMgmtInetAddrWithReasonDOSTrap', 'oid': '1.3.6.1.4.1.9148.3.2.8.0.4', 'component': '', 'community': 'mrtech', 'apSysMgmtDOSInetAddress.0': 'BASE64:zNwWjA==', 'apSysMgmtDOSInetAddressType': 1, 'manager': 'lab-zenoss.obm.lab.mr.net', 'eventGroup': 'trap', 'agent': 'zentrap', 'device': '10.6.1.41', 'apSysMgmtDOSReason': 'Too many errors', 'apSysMgmtDOSFromUri.0': '"7632308359" <sip:7632308359@206.145.175.227>;tag=373633323330383335393a313031013635323537373432', 'sysUpTimeInstance': 86171834L, 'severity': 2, 'apSysMgmtDOSRealmID': 'VoicePipe', 'apSysMgmtDOSReason.0': 'Too many errors', 'monitor': 'localhost', 'summary': 'snmp trap apSysMgmtInetAddrWithReasonDOSTrap', 'apSysMgmtDOSInetAddress': 'BASE64:zNwWjA==', 'lastTime': 1316703263.6649909, 'apSysMgmtDOSRealmID.0': 'VoicePipe', 'apSysMgmtDOSFromUri': '"7632308359" <sip:7632308359@206.145.175.227>;tag=373633323330383335393a313031013635323537373432'}

Note:  When trap is received by iReasoning, it is interpreted correctly.  See attachment.

Attaching actual trap.