Setting up SNMP
FTOS supports SNMP version 1 and version 2 which are community-based security models. The primary
difference between the two versions is that version 2 supports two additional protocol operations (informs
operation and
Creating a Community
For SNMPv1 and SNMPv2, you must create a community to enable the community-based security in
FTOS. The management station generates requests to either retrieve or alter the value of a management
object and is called the
SNMP agent
Communities are necessary to secure communication between SNMP managers and agents; SNMP agents
do not respond to requests from management stations that are not part of the community.
FTOS enables SNMP automatically when you create an SNMP community and displays
must specify whether members of the community may retrieve values in read-only mode. Read-write
access is not supported.
To create an SNMP community:
Task
Choose a name for the community.
Message 1 SNMP Enabled
22:31:23: %STKUNIT0-M:CP %SNMP-6-SNMP_WARM_START: Agent Initialized - SNMP WARM_START.
View your SNMP configuration, using the command
mode, as shown in
Figure 16-1. Creating an SNMP Community
FTOS(conf)#snmp-server community my-snmp-community ro
22:31:23: %STKUNIT0-M:CP %SNMP-6-SNMP_WARM_START: Agent Initialized - SNMP WARM_START.
FTOS#do show running-config snmp
!
snmp-server community mycommunity ro
FTOS#
Read Managed Object Values
You may only retrieve (read) managed object values if your management station is a member of the same
community as the SNMP agent.
192
|
Simple Network Management Protocol (SNMP)
query) and one additional object (counter64 object).
snmpgetbulk
SNMP manager
. An
is a group of SNMP agents and managers that are allowed to interact.
SNMP community
Command
snmp-server community name
Figure
16-1.
. A network element that processes SNMP requests is called an
show running-config snmp
Message
Command Mode
ro
CONFIGURATION
from EXEC Privilege
1. You