Vpn site-to-site sample configuration, Configure snmp -26, Vpn site-to-site sample configuration -26 – Enterasys Networks XSR-3020 User Manual
Page 70: Central site branch sites
VPN Site-to-Site Sample Configuration
3-26 Software Configuration
Configure SNMP
The previously configured ACL will be applied to all SNMP requests. Stricter ACLs can be written
if tighter security controls are required.
XSR(config)#snmp-server community toMonitor1 ro 26
+
Adds an SNMP community with read-only privileges attached to ACL 26
XSR(config)#snmp-server community toConfigure1 rw 26
+
Adds another SNMP community with read-write privileges attached to ACL 26
XSR(config)#snmp-server enable traps
+
Enables traps to be transmitted
XSR(config)#snmp-server contact [email protected]
+
Specifies contact information for the management server
XSR(config)#snmp location “HQ 2nd floor”
+
Specifies the server locationr
XSR(config)#snmp-server host 192.168.2.101 traps trapCommunity
+
Specifies management station to send traps to
XSR(config)#snmp-server host 192.168.2.102 traps trapCommunity
+
Specifies another management station to send traps to
VPN Site-to-Site Sample Configuration
The following VPN topology, shown in
, configures a central site XSR to connect over
IPSec tunnels with a remote ANG-1105 and two XSRs.
Figure 3-5 VPN Site-to-Site Topology
The following script configures the VPN topology shown in
SEC
URIT
Y RO
UTE
RS
XSR
-1850
ETH
ERN
ET
POR
T 1
ETH
ERN
ET
POR
T 2
SYS
VPN
CON
SOLE
NIM
1
NIM
2
10/10
0BT
10/10
0BT
ACT
ACT
POW
ER
112.16.244.10
112.16.1.221
Central Site
Branch Sites
XSR
ANG-1105
Firewall
112.16.244.9
112.16.76.2
112.16.80.2
Gateway IP address
for all remote sites
SEC
URIT
Y RO
UTE
RS
XSR
-1850
ETHER
NET
POR
T 1
ETH
ERN
ET
POR
T 2
SY
S
VP
N
CON
SO
LE
NIM
1
NIM 2
10/100B
T
10/1
00BT
ACT
AC
T
PO
WE
R
112.16.244.7
SEC
URIT
Y RO
UTE
RS
XSR
-1850
ETH
ERN
ET
POR
T 1
ETH
ERN
ET
POR
T 2
SYS
VPN
CO
NSO
LE
NIM
1
NIM
2
10/1
00B
T
10/1
00B
T
ACT
ACT
POWE
R
ANG-1105
XSR
112.16.244.5
112.16.72.2
XSR