Table of Contents
Advertisement
HUAWEI NetEngine5000E Core Router
Configuration Guide - System Management
addresses are reallocated due to network adjustment), you need to change the IP address of the
NM station in the ACL. Otherwise, the NM station cannot access the device.
3.4.3 Configuring SNMPv3 Authentication and Privacy
This section describes how to configure authentication and privacy to implement security
features of SNMPv3.
Procedure
Step 1 Run:
system-view
The system view is displayed.
Step 2 Run:
snmp-agent group v3 group-name
An SNMPv3 user group is configured.
Step 3 (Optional) Configure an ACL, add an ACL rule and to apply an ACL to SNMPv3 user group.
1.
2.
3.
Step 4 Add an SNMPv3 user to a user group.
Run:
snmp-agent usm-user v3 user-name group-name
A specific user is added to a specified SNMPv3 user group.
By mapping SNMPv3 users in different user groups into different views, you can configure
different access rights for SNMPv3 users in different user groups.
Step 5 (Optional) Configure an ACL for an SNMPv3 user.
1.
2.
3.
Issue 01 (2011-10-15)
Run:
acl acl-number
A basic ACL is created.
Run:
rule [ rule-id ] { deny | permit } source { source-ip-address source-wildcard
| any }
A rule is added to the ACL.
Run:
snmp-agent group v3 group-name acl acl-number
The ACL is applied.
Run:
acl acl-number
A basic ACL is created.
Run:
rule [ rule-id ] { deny | permit } source { source-ip-address source-wildcard
| any }
A rule is added to the ACL.
Run:
snmp-agent usm-user v3 user-name group-name acl acl-number
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
3 SNMP Configuration
80
Advertisement
Table of Contents
