Difference between revisions of "Netband Project - SNMPv3"
From Teknologisk videncenter
(→Configuration) |
|||
| (15 intermediate revisions by 3 users not shown) | |||
| Line 1: | Line 1: | ||
| − | + | =SNMPv3= | |
| + | This page is part of the [[Netband%20Project|Netband Project]]<br> | ||
| − | * | + | *provides secure access to devices by authenticating and encrypting packets over the network. |
| + | <br> | ||
{| cellspacing="1" cellpadding="1" border="1" width="500" | {| cellspacing="1" cellpadding="1" border="1" width="500" | ||
|- | |- | ||
| − | | | + | | Level<br> |
| + | | Authentication<br> | ||
| + | | Encryption<br> | ||
| + | |- | ||
| noAuthNoPriv<br> | | noAuthNoPriv<br> | ||
| Username<br> | | Username<br> | ||
| no<br> | | no<br> | ||
| − | |||
|- | |- | ||
| − | |||
| authNoPriv<br> | | authNoPriv<br> | ||
| md5 or sha<br> | | md5 or sha<br> | ||
| no<br> | | no<br> | ||
| − | |||
|- | |- | ||
| − | |||
| authPriv <br> | | authPriv <br> | ||
| md5 or sha<br> | | md5 or sha<br> | ||
| des<br> | | des<br> | ||
| − | |||
|} | |} | ||
| Line 28: | Line 28: | ||
== Configuration == | == Configuration == | ||
<pre>snmp-server group mrtg-snmp-group v3 priv | <pre>snmp-server group mrtg-snmp-group v3 priv | ||
| − | + | ! | |
| − | snmp-server mrtg-snmp-group v3 auth sha ciscodisco priv des ciscodisco | + | snmp-server user mrtg-user mrtg-snmp-group v3 auth sha ciscodisco priv des ciscodisco |
! | ! | ||
HQRT1#sh snmp user | HQRT1#sh snmp user | ||
| + | User name: mrtg-user | ||
Engine ID: 800000090300001BD40F8AA4 | Engine ID: 800000090300001BD40F8AA4 | ||
storage-type: nonvolatile active | storage-type: nonvolatile active | ||
| Line 39: | Line 40: | ||
</pre> | </pre> | ||
<pre>root@hqmgmt1:~# snmpget -v3 -a sha -u mrtg-user -x des -A ciscodisco -X ciscodisco -l authpriv 10.0.0.11 1.3.6.1.2.1.1.3.0 | <pre>root@hqmgmt1:~# snmpget -v3 -a sha -u mrtg-user -x des -A ciscodisco -X ciscodisco -l authpriv 10.0.0.11 1.3.6.1.2.1.1.3.0 | ||
| + | |||
DISMAN-EVENT-MIB::sysUpTimeInstance = Timeticks: (77270968) 8 days, 22:38:29.68 | DISMAN-EVENT-MIB::sysUpTimeInstance = Timeticks: (77270968) 8 days, 22:38:29.68 | ||
| + | </pre> | ||
| + | *enable the router to send snmp notifications when a certain event takes place, like linkup/down, ospf state changes and many more. | ||
| + | <pre>snmp-server enable traps | ||
| + | </pre> | ||
| + | |||
| + | <pre>snmp-server host 10.1.1.10 version 3 priv mrtg-user ospf | ||
</pre> | </pre> | ||
| Line 45: | Line 53: | ||
[http://www.cisco.com/en/US/docs/ios/netmgmt/configuration/guide/nm_cfg_snmp_sup_ps6441_TSD_Products_Configuration_Guide_Chapter.html Cisco IOS Network Management Configuration Guide, Release 12.4T] | [http://www.cisco.com/en/US/docs/ios/netmgmt/configuration/guide/nm_cfg_snmp_sup_ps6441_TSD_Products_Configuration_Guide_Chapter.html Cisco IOS Network Management Configuration Guide, Release 12.4T] | ||
| + | [[Category:network]][[Category:CCNP]][[category:students]] | ||
Latest revision as of 06:55, 13 May 2009
SNMPv3
This page is part of the Netband Project
- provides secure access to devices by authenticating and encrypting packets over the network.
| Level |
Authentication |
Encryption |
| noAuthNoPriv |
Username |
no |
| authNoPriv |
md5 or sha |
no |
| authPriv |
md5 or sha |
des |
Configuration
snmp-server group mrtg-snmp-group v3 priv ! snmp-server user mrtg-user mrtg-snmp-group v3 auth sha ciscodisco priv des ciscodisco ! HQRT1#sh snmp user User name: mrtg-user Engine ID: 800000090300001BD40F8AA4 storage-type: nonvolatile active Authentication Protocol: SHA Privacy Protocol: DES Group-name: mrtg-snmp-group
root@hqmgmt1:~# snmpget -v3 -a sha -u mrtg-user -x des -A ciscodisco -X ciscodisco -l authpriv 10.0.0.11 1.3.6.1.2.1.1.3.0 DISMAN-EVENT-MIB::sysUpTimeInstance = Timeticks: (77270968) 8 days, 22:38:29.68
- enable the router to send snmp notifications when a certain event takes place, like linkup/down, ospf state changes and many more.
snmp-server enable traps
snmp-server host 10.1.1.10 version 3 priv mrtg-user ospf
External links
Cisco IOS Network Management Configuration Guide, Release 12.4T