Snmpv3 configuration example, Network requirements, Configuration procedure – H3C Technologies H3C S5120 Series Switches User Manual

Page 586

Advertising
background image

1-10

SNMPv3 Configuration Example

Network requirements

z

As shown in

Figure 1-4

, the NMS connects to the agent through an Ethernet.

z

The IP address of the NMS is 1.1.1.2/24.

z

The IP address of the agent is 1.1.1.1/24.

z

The NMS monitors and manages the interface status of the agent using SNMPv3. The agent

reports errors or faults to the NMS. The inbound port for traps on the NMS is 5000.

Figure 1-4 Network diagram for SNMPv3

Configuration procedure

1) Configuring the agent

# Configure the IP address of the agent as 1.1.1.1/24 and make sure that there is a route between the

agent and the NMS. (The configuration procedure is omitted here)

# Configure the access right: the user can read and write the objects under the interface node with the

OID of 1.3.6.1.2.1.2, and cannot access other MIB objects. Set the user name to managev3user,

authentication protocol to MD5, authentication key to authkey, the privacy protocol to DES56, and the

privacy password to prikey.

<Sysname> system-view

[Sysname] undo snmp-agent mib-view ViewDefault

[Sysname] snmp-agent mib-view included test interfaces

[Sysname] snmp-agent group v3 managev3group read-view test write-view test

[Sysname] snmp-agent usm-user v3 managev3user managev3group authentication-mode md5 authkey

privacy-mode des56 prikey

# Configure the contact person and physical location information of the device.

[Sysname] snmp-agent sys-info contact Mr.Wang-Tel:3306

[Sysname] snmp-agent sys-info location telephone-closet,3rd-floor

# Enable sending of traps to the NMS with an IP address of 1.1.1.2/24, using public as the community

name.

[Sysname] snmp-agent trap enable

[Sysname] snmp-agent target-host trap address udp-domain 1.1.1.2 params securityname public

v3

2) Configuring the SNMP NMS

SNMPv3 uses an authentication and privacy security model. On the NMS, the user needs to specify the

username and security level, and based on that level, configure the authentication mode, authentication

password, privacy mode, and privacy password. In addition, the timeout time and number of retries

should also be configured. The user can inquire and configure the device through the NMS.

Advertising
Popular Brands
Popular manuals