3Com VCX v7111 User Manual page 368
Voip
Hide thumbs
Also See for VCX v7111:
- User manual (245 pages) ,
- Installation manual (58 pages) ,
- Product manual (15 pages)
Table of Contents
Advertisement
The concept of trusted managers is considered to be a weak form of security and is
therefore, not a required part of SNMPv3 security, which uses authentication and privacy.
However, the board's SNMP agent applies the trusted manager concept as follows:
There is no way to configure trusted managers for only a SNMPv3 user. An SNMPv2c
community string must be defined.
If specific IPs are configured as trusted managers (via the community table), then only
SNMPv3 users on those trusted managers are given access to the agent's MIB objects.
Configuration of Trusted Managers using ini File
To set the Trusted Mangers table from start-up, write the following in the ini file:
SNMPTRUSTEDMGR_X = D.D.D.D
where X is any integer between 0 and 4 (0 sets the first table entry, 1 sets the second, and
so on), and D is an integer between 0 and 255.
Configuration of Trusted Managers using SNMP
To configure Trusted Managers, the EM must use the SNV7111-COMMUNITY-MIB, the
snmpTargetMIB and the TGT-ADDRESS-MASK-MIB.
To add the first Trusted Manager:
(The following procedure assumes that there is at least one configured read-write
community. There are currently no Trusted Managers. The taglist for columns for all
srCommunityTable rows are currently empty).
Add a row to the snmpTargetAddrTable with these values: Name=mgr0, TagList=MGR,
1
Params=v2cparams.
Add a row to the tgtAddressMaskTable table with these values: Name=mgr0,
2
tgtAddressMask=255.255.255.255:0. The agent does not allow creation of a row in this
table unless a corresponding row exists in the snmpTargetAddrTable.
Set the value of the TransportLabel field on each non-TrapGroup row in the
3
srCommunityTable to MGR.
The following procedure assumes that there is at least one configured read-write community.
There are currently one or more Trusted Managers. The taglist for columns for all rows in the
srCommunityTable are currently set to MGR. This procedure must be performed from one of
the existing Trusted Managers.
To add a subsequent Trusted Manager, take these 2 steps:
Add a row to the snmpTargetAddrTable with these values: Name=mgrN, TagList=MGR,
1
Params=v2cparams, where N is an unused number between 0 and 4.
Add a row to the tgtAddressMaskTable table with these values: Name=mgrN,
2
tgtAddressMask=255.255.255.255:0.
368
®
3Com
VCX V7111 VoIP Gateway User Guide
Advertisement
Table of Contents
