Configuring SNMP Security |
| Posted: 30 May 2010 04:19 AM PDT
1.Enable the SNMP community string to define the relationship between the network management station and the agent with the following command: snmp−server community {ro|rw} {number} The number value references an optional access−list. 2.Use this command to configure the router to send traps to an NMS host: snmp−server host host [version {1|2c}] 3.Configure the type of traps for which a notification is sent to the NMS. You do so with the following command: snmp−server enable traps [notification type] – [notification option] 4.Set the system contact, location, and serial number. You can set the systems contact with the snmp−server contact [text] command. You set the location with the snmp−server location [text] command, and you set the serial number with the snmp−server chassis−id [text] command. 5.Use the access−list command to specify a list of hosts that are allowed read−, read/write, or write−only access to the router. The picture below: shows Router 1, which is configured to allow SNMP read−only access and read/write access from two separate hosts. Router 1 is also configured to send SNMP trap information to the same two hosts. The following lines show how Router 1 should be configured so SNMP access from both host 192.168.10.1 and 192.168.10.2 is allowed and SNMP trap information is sent to both hosts: access−list 12 permit 192.168.10.1  Router 1 configured for SNMP |
| You are subscribed to email updates from "Cisco" via ehsan in Google Reader To stop receiving these emails, you may unsubscribe now. | Email delivery powered by Google |
| Google Inc., 20 West Kinzie, Chicago IL USA 60610 | |
0 comments:
Post a Comment