Table of Contents
Advertisement
SNMP Overview
The interaction between the SNMP components can be visualized using the network topology as described in
Figure
1.
Public Network
(Internet)
Figure 1. SNMP Network Application
SNMP Versions
SNMP is available in three versions that define the security model of the community of users. The user
communities define the read, write, notify, and view access for the SNMP information. The least secure is
SNMP version 1 (SNMPv1), widely used in the 1990s. SNMP version 2 community (SNMPv2c) was created to
improve SNMPv1 security, management, and performance abilities. SNMPv2c also introduced additional
SNMP messages (GetBulk, Inform, and Report). Eventually, SNMP version 3 (SNMPv3) emerged as the IETF
standard in 2004. SNMPv3 is the most secure SNMP version. It is defined in RFC 3411 through RFC 3418,
and enhances security and introduces remote configuration features. SNMPv3 uses services, such as authen-
tication, privacy, and access control, to provide a higher level of security not present with SNMPv1 or
SNMPv2c. For these new services, identifying an SNMP server user on a remote entity is necessary to receive
and originate notifications, and also to generate and respond to commands. ASE devices support all three
versions.
Remote users are specified with an IP address or port number for the remote SNMP entity (where the user
resides). Configuration of the SNMP remote engine ID is necessary before SNMPv3 inform notifications can be
acknowledged. This is accomplished using the snmp-server engineID remote command. The remote entity's
SNMP engine ID is used for password authentication and privacy digests. A management device must be
knowledgeable about the user, the engine ID of the device, and security parameters, such as authentication,
passwords, and security level, in order for the command to be processed by the receiving agent. The SNMPv3
engine ID is a unique identifier for a system on a management domain. The default engine ID contains 11
octets (in hexadecimal notation) that represent certain information about the system. The default engine ID
format is as follows:
Table 1. ASE Engine ID Format
Octets 1 to 4
IANA ID for the product
manufacturer
6
SNMP Agent
NetVanta 1560-48-740W
SYSTEM
LNK/ACT/SPD
PoE
USB
MODE/RESET
CONSOLE
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
Octet 5
Uses 03, which identifies that octets 6 through
11 contain a medium access control (MAC)
address.
®
MENU
MENU
OK
CANCEL
1
2
3
4
5
6
7
9
8
*
0
#
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
NMS Request
Agent Response
SNMP in the NetVanta 1570
®
MENU
OK
CANCEL
MENU
CANCEL
1
2
3
4
5
6
7
8
9
0
#
*
Server
Network Management
Station (NMS)
Octets 6 to 11
System MAC
address
6AMCCG0018-29A
Advertisement
Table of Contents
Need help?
Do you have a question about the NetVanta 1570 Series and is the answer not in the manual?
Questions and answers