https://community.dynatrace.com/t5/Extensions/SNMP-Traps-Port-unable-to-bind-on-162/m-p/255143#M5112 <P><a href="https://community.dynatrace.com/t5/user/viewprofilepage/user-id/77103">@jenny_baker211</a>,</P><P>You have several options here:</P><OL><LI>Running ActiveGate as root. I have cases where this happens, but not the best Security option. Given you are using traps, this might have a reduced exposure, so might be an option:<BR /><A href="https://docs.dynatrace.com/docs/shortlink/activegate-custom-installation-linux#user-service" target="_blank">https://docs.dynatrace.com/docs/shortlink/activegate-custom-installation-linux#user-service</A></LI><LI>Reroute traps to a higher port. So you don't have to change it in your network devices, redirect through port forwarding. You will have to change 162 in the Dynatrace configuration to another port, 1162 for instance:<BR />sudo iptables -t nat -A PREROUTING -p udp --dport 162 -j REDIRECT --to-port 1162</LI><LI>You can also use setcap to permit a certain program to listen on a specific privileged port. Never tried it out with ActiveGate.</LI></OL> Fri, 06 Sep 2024 11:25:44 GMT AntonioSousa 2024-09-06T11:25:44Z https://community.dynatrace.com/t5/Extensions/SNMP-Traps-Port-unable-to-bind-on-162/m-p/255134#M5108 <P>I have tried setting up SNMP traps on port 162.&nbsp;</P><P>I can see the traps are hitting the Activegate instance as these are displaying in TCP dump.&nbsp;</P><P>&nbsp;</P><P>The extension for SNMP traps is repeatedly displaying an error in the logs:</P><PRE><SPAN>Failed to start listen on port::</SPAN><SPAN class="">162</SPAN><SPAN> err: listen udp :</SPAN><SPAN class="">162</SPAN><SPAN>: bind: permission denied</SPAN></PRE><P>&nbsp;</P><P>Do we need to open up port 162 on the activegate instance?</P><P>Can this be done in custom.properties?</P><P>Or is there a permissions issue using ports under 1024?</P><P>&nbsp;</P><P>If anyone has a workaround for this please let me know</P> Fri, 06 Sep 2024 10:19:19 GMT https://community.dynatrace.com/t5/Extensions/SNMP-Traps-Port-unable-to-bind-on-162/m-p/255134#M5108 jenny_baker211 2024-09-06T10:19:19Z https://community.dynatrace.com/t5/Extensions/SNMP-Traps-Port-unable-to-bind-on-162/m-p/255135#M5109 <P><a href="https://community.dynatrace.com/t5/user/viewprofilepage/user-id/77103">@jenny_baker211</a>,</P><P>To listen on port 162, you have to have root permission. There are some ways to escaping that, and I believe&nbsp; the standard way ActiveGate is installed doesn't require additional configuration.</P><P>Additionally, there might be another program already listening on port 162. Run the following command to find out if that is the case:</P><UL><LI>netstat -anp | grep 162</LI></UL> Fri, 06 Sep 2024 10:42:04 GMT https://community.dynatrace.com/t5/Extensions/SNMP-Traps-Port-unable-to-bind-on-162/m-p/255135#M5109 AntonioSousa 2024-09-06T10:42:04Z https://community.dynatrace.com/t5/Extensions/SNMP-Traps-Port-unable-to-bind-on-162/m-p/255140#M5110 <P>Hi Antonio,&nbsp;</P><P>&nbsp;</P><P>Thank you for the reply - I have tried a netstat and nothing else appears to be using this port.&nbsp;</P><P>It looks like we have a specific user running activegate - is it possible to give this user permissions for port 162 - or would I need to pick a new port &gt; 1024 to allow SNMP traps to be handled?</P> Fri, 06 Sep 2024 11:04:30 GMT https://community.dynatrace.com/t5/Extensions/SNMP-Traps-Port-unable-to-bind-on-162/m-p/255140#M5110 jenny_baker211 2024-09-06T11:04:30Z https://community.dynatrace.com/t5/Extensions/SNMP-Traps-Port-unable-to-bind-on-162/m-p/255143#M5112 <P><a href="https://community.dynatrace.com/t5/user/viewprofilepage/user-id/77103">@jenny_baker211</a>,</P><P>You have several options here:</P><OL><LI>Running ActiveGate as root. I have cases where this happens, but not the best Security option. Given you are using traps, this might have a reduced exposure, so might be an option:<BR /><A href="https://docs.dynatrace.com/docs/shortlink/activegate-custom-installation-linux#user-service" target="_blank">https://docs.dynatrace.com/docs/shortlink/activegate-custom-installation-linux#user-service</A></LI><LI>Reroute traps to a higher port. So you don't have to change it in your network devices, redirect through port forwarding. You will have to change 162 in the Dynatrace configuration to another port, 1162 for instance:<BR />sudo iptables -t nat -A PREROUTING -p udp --dport 162 -j REDIRECT --to-port 1162</LI><LI>You can also use setcap to permit a certain program to listen on a specific privileged port. Never tried it out with ActiveGate.</LI></OL> Fri, 06 Sep 2024 11:25:44 GMT https://community.dynatrace.com/t5/Extensions/SNMP-Traps-Port-unable-to-bind-on-162/m-p/255143#M5112 AntonioSousa 2024-09-06T11:25:44Z