SNMP Cisco IOS

From Teknologisk videncenter
Jump to: navigation, search

Configuration

  • Allows all NMS's to manage the device

SNMPv1+v2

  • Read-only access
snmp-server community ciscodisco RO
  • Read-write access
snmp-server community ciscodisco RW
  • Only allow the NMS 1.1.1.1
snmp-server community ciscodisco RO 2
access-list 2 permit 1.1.1.1

SNMPv3

  • Choose one of the security models
snmp-server group snmp-group v3 priv
or
snmp-server group snmp-group v3 auth
or
snmp-server group snmp-group v3 noauth
  • Create a user and associate it with a group, specify the passwords and encryption
snmp-server user snmp-user snmp-group v3 auth sha ciscodisco priv des56 ciscodisco
  • Syntax
snmp-server user username groupname [remote ip-address [udp-port port]] {v1 | v2c | v3 [encrypted] [auth {md5 | sha} auth-password]} [access access-list]
 | [priv [des | 3des |aes] priv-password [access access-list] ]

SNMP traps

  • Enable certain traps
snmp-server enable traps config-copy
snmp-server enable traps bgp
...
  • Enable all traps
snmp-server enable traps
  • Control which traps are sent to who
snmp-server host 1.1.1.1 ciscodisco bgp
snmp-server host 2.2.2.2 ciscodisco config-copy

SNMPv1 traps

snmp-server host 1.1.1.1 version 1 ciscodisco

or

snmp-server host 1.1.1.1 ciscodisco

SNMPv2 traps

snmp-server host 1.1.1.1 version 2c ciscodisco

SNMPv3 traps

snmp-server host 1.1.1.1 version 3 priv snmp-user

SNMP Informs

snmp-server enable traps
!
snmp-server host 1.1.1.1 informs version 2c ciscodisco

Cisco MIB's

Get from Cisco MIB Locater

Links