3Com Switch 4500 Family Manual page 644
4500 series
Hide thumbs
Also See for Switch 4500 Family:
- Configuration manual (742 pages) ,
- Getting started manual (134 pages) ,
- Quick reference manual (17 pages)
Table of Contents
Advertisement
write-view: Read-write view name, a string of 1 to 32 characters. By default, no write view is configured,
namely, the NMS cannot perform the write operation on the MIB objects of the device.
notify-view: Notification view name in which traps can be sent, a string of 1 to 32 characters. By default,
no notify view is configured, namely, the agent will not send traps to the NMS.
acl-number: ID of a basic ACL, in the range 2000 to 2999. Using basic ACL can restrict the source
addresses of SNMP messages, namely, permitting or refusing the SNMP messages with specific
source addresses, thus restricting access between the NMS and the agent.
Description
Use the snmp-agent group command to create an SNMP group, and set the security mode and
corresponding SNMP view of the group.
Use the undo snmp-agent group command to remove an SNMP group.
For SNMPv3, group name and security mode (whether authentication and privacy are performed) can
jointly define a group. Groups with the same group name but different security mode are different
groups. For the details, see the following examples.
By default, the SNMP groups created using the snmp-agent group v3 command do not authenticate or
encrypt packets.
Related commands: snmp-agent mib-view, snmp-agent usm-user.
Examples
# Create an SNMPv1 group named v1group.
<Sysname> system-view
System View: return to User View with Ctrl+Z.
[Sysname] snmp-agent group v1 v1group
# Create an SNMPv3 group v3group, set the security mode to no authentication no privacy, and set the
read view, write view and view in which traps can be sent to ICMP view.
<Sysname> system-view
System View: return to User View with Ctrl+Z.
[Sysname] snmp-agent group v3 v3group read-view icmp write-view icmp notify-view icmp
# Create an SNMPv3 group v3group, set the security mode to authentication and privacy, and permit
only access from the NMS whose IP address is 192.168.0.108 to the agent using ACL.
[Sysname] acl number 2001
[Sysname] rule 0 permit source 192.168.0.108 0
[Sysname] snmp-agent group v3 v3group privacy acl 2001
In this case, when you use the display snmp-agent group command to display group information, you
can see that two groups with the name v3group are created, but their security modes are noAuthnoPriv
and AuthPriv respectively.
<Sysname> display snmp-agent group
Group name: v3group
Security model: v3 noAuthnoPriv
Readview: ViewDefault
Writeview: icmp
Notifyview : icmp
Storage-type: icmp
1-15
Advertisement
Chapters
Table of Contents
