Difference between revisions of "Netband Project - SNMPv3"

From Teknologisk videncenter
Jump to: navigation, search
 
(17 intermediate revisions by 3 users not shown)
Line 1: Line 1:
<accesscontrol>NetBand</accesscontrol>
+
=SNMPv3=
This page is part of the [[Netband_Project|Netband Project]]<br/>
+
This page is part of the [[Netband%20Project|Netband Project]]<br>
*provides secure access to devices by authenticating and encrypting packets over the network.  
+
 
==Configuration==
+
*provides secure access to devices by authenticating and encrypting packets over the network.
<pre>snmp-server group mrtg-snmp-group v3 priv
+
<br>
 +
 
 +
{| cellspacing="1" cellpadding="1" border="1" width="500"
 +
|-
 +
| Level<br>
 +
| Authentication<br>
 +
| Encryption<br>
 +
|-
 +
| noAuthNoPriv<br>
 +
| Username<br>
 +
| no<br>
 +
|-
 +
| authNoPriv<br>
 +
| md5 or sha<br>
 +
| no<br>
 +
|-
 +
| authPriv <br>
 +
| md5 or sha<br>
 +
| des<br>
 +
|}
  
nmp-server user mrtg-user mrtg-snmp-group v3 auth sha ciscodisco priv des ciscodisco
+
<br>
</pre>
 
<pre>HQRT1#sh snmp user
 
  
 +
== Configuration ==
 +
<pre>snmp-server group mrtg-snmp-group v3 priv
 +
!
 +
snmp-server user mrtg-user mrtg-snmp-group v3 auth sha ciscodisco priv des ciscodisco
 +
!
 +
HQRT1#sh snmp user
 
User name: mrtg-user
 
User name: mrtg-user
Engine ID: 800000090300001BD40F8AA4
+
Engine ID: 800000090300001BD40F8AA4  
storage-type: nonvolatile       active
+
storage-type: nonvolatile active  
Authentication Protocol: SHA
+
Authentication Protocol: SHA  
Privacy Protocol: DES
+
Privacy Protocol: DES  
 
Group-name: mrtg-snmp-group
 
Group-name: mrtg-snmp-group
 +
</pre>
 +
<pre>root@hqmgmt1:~# snmpget -v3 -a sha -u mrtg-user -x des -A ciscodisco -X ciscodisco -l authpriv 10.0.0.11 1.3.6.1.2.1.1.3.0
 +
 +
DISMAN-EVENT-MIB::sysUpTimeInstance = Timeticks: (77270968) 8 days, 22:38:29.68
 +
</pre>
 +
*enable the router to send snmp notifications when a certain event takes place, like linkup/down, ospf state changes and many more.
 +
<pre>snmp-server enable traps
 
</pre>
 
</pre>
  
<pre>root@hqmgmt1:~# snmpget -v3 -a sha -u mrtg-user -x des -A ciscodisco -X ciscodisco -l authpriv 10.0.0.11 1.3.6.1.2.1.1.3.0
+
<pre>snmp-server host 10.1.1.10 version 3 priv mrtg-user ospf
DISMAN-EVENT-MIB::sysUpTimeInstance = Timeticks: (77270968) 8 days, 22:38:29.68
 
root@hqmgmt1:~#
 
 
</pre>
 
</pre>
  
==External links==
+
== External links ==
 +
 
 
[http://www.cisco.com/en/US/docs/ios/netmgmt/configuration/guide/nm_cfg_snmp_sup_ps6441_TSD_Products_Configuration_Guide_Chapter.html Cisco IOS Network Management Configuration Guide, Release 12.4T]
 
[http://www.cisco.com/en/US/docs/ios/netmgmt/configuration/guide/nm_cfg_snmp_sup_ps6441_TSD_Products_Configuration_Guide_Chapter.html Cisco IOS Network Management Configuration Guide, Release 12.4T]
 +
[[Category:network]][[Category:CCNP]][[category:students]]

Latest revision as of 06:55, 13 May 2009

SNMPv3

This page is part of the Netband Project

  • provides secure access to devices by authenticating and encrypting packets over the network.


Level
Authentication
Encryption
noAuthNoPriv
Username
no
authNoPriv
md5 or sha
no
authPriv
md5 or sha
des


Configuration

snmp-server group mrtg-snmp-group v3 priv
!
snmp-server user mrtg-user mrtg-snmp-group v3 auth sha ciscodisco priv des ciscodisco
!
HQRT1#sh snmp user
User name: mrtg-user
Engine ID: 800000090300001BD40F8AA4 
storage-type: nonvolatile active 
Authentication Protocol: SHA 
Privacy Protocol: DES 
Group-name: mrtg-snmp-group
root@hqmgmt1:~# snmpget -v3 -a sha -u mrtg-user -x des -A ciscodisco -X ciscodisco -l authpriv 10.0.0.11 1.3.6.1.2.1.1.3.0

DISMAN-EVENT-MIB::sysUpTimeInstance = Timeticks: (77270968) 8 days, 22:38:29.68
  • enable the router to send snmp notifications when a certain event takes place, like linkup/down, ospf state changes and many more.
snmp-server enable traps
snmp-server host 10.1.1.10 version 3 priv mrtg-user ospf

External links

Cisco IOS Network Management Configuration Guide, Release 12.4T