How to configure ACL via SNMP?

Steven_zhangCreated at:Dec 11, 2019 11:28:30Updated at:Dec 11, 2019 11:28:34

[1] Create ACL

(1) Set the status to "createAndWait".

C:\usr>snmpset -v 1 -c private 192.168.1.1 .1.3.6.1.4.1.259.10.1.42.101.1.16.4.15.1.5.1 i 5

SNMPv2-SMI::enterprises.259.6.10.94.1.16.4.15.1.5.1 = INTEGER: 5

 Note: You could see the brown number 1 that means ACL number.

 

(2) Set the ACL 's name to "test".

C:\usr>snmpset -v 1 -c private 192.168.1.1 .1.3.6.1.4.1.259.10.1.42.101.1.16.4.15.1.2.1 s test

SNMPv2-SMI::enterprises.259.6.10.94.1.16.4.15.1.2.1 = STRING: "test"

 

(3) Set the ACL's type to "ip standard".

C:\usr>snmpset -v 1 -c private 192.168.1.1 .1.3.6.1.4.1.259.10.1.42.101.1.16.4.15.1.3.1 i 2

SNMPv2-SMI::enterprises.259.6.10.94.1.16.4.15.1.3.1 = INTEGER: 2

 

(4) Set the status to "active".

C:\usr>snmpset -v 1 -c private 192.168.1.1 .1.3.6.1.4.1.259.10.1.42.101.1.16.4.15.1.5.1 i 1

SNMPv2-SMI::enterprises.259.6.10.94.1.16.4.15.1.5.1 = INTEGER: 1

 

[2] Create ACE

(1) Set the status to "createAndWait".

C:\usr>snmpset -v 1 -c private 192.168.1.1 .1.3.6.1.4.1.259.10.1.42.101.1.16.4.17.1.22.1 i 5

SNMPv2-SMI::enterprises.259.6.10.94.1.16.4.17.1.22.1 = INTEGER: 5

Note: You could see the red number 1 that means ACE number.

 

(2) Set the Ace type.

C:\usr>snmpset -v 1 -c private 192.168.1.1 .1.3.6.1.4.1.259.10.1.42.101.1.16.4.17.1.2.1 i 1

SNMPv2-SMI::enterprises.259.6.10.94.1.16.4.17.1.2.1 = INTEGER: 1

 

(3) Values = (1: permit), (2: deny).

C:\usr>snmpset -v 1 -c private 192.168.1.1 .1.3.6.1.4.1.259.10.1.42.101.1.16.4.17.1.3.1 i 1

SNMPv2-SMI::enterprises.259.6.10.94.1.16.4.17.1.3.1 = INTEGER: 1

 

(4) Set SourceIpAddr and SourceIpAddrBitmask.

C:\usr>snmpset -v 1 -c private 192.168.1.1 .1.3.6.1.4.1.259.10.1.42.101.1.16.4.17.1.4.1 a 192.168.2.1

SNMPv2-SMI::enterprises.259.6.10.94.1.16.4.17.1.4.1 = IpAddress: 192.168.2.1

C:\usr>snmpset -v 1 -c private 192.168.1.1 .1.3.6.1.4.1.259.10.1.42.101.1.16.4.17.1.5.1 a 255.255.255.0

SNMPv2-SMI::enterprises.259.6.10.94.1.16.4.17.1.5.1 = IpAddress: 255.255.255.0

 

(5) Set the status to active.

C:\usr>snmpset -v 1 -c private 192.168.1.1 .1.3.6.1.4.1.259.10.1.42.101.1.16.4.17.1.22.1 i 1

SNMPv2-SMI::enterprises.259.6.10.94.1.16.4.17.1.22.1 = INTEGER: 1

 

[3] Attach ACE to ACL

(1) Assign ACL Number.

C:\usr>snmpset -v 1 -c private 192.168.1.1 .1.3.6.1.4.1.259.10.1.42.101.1.16.4.16.1.0 i 1

SNMPv2-SMI::enterprises.259.6.10.94.1.16.4.16.1.0 = INTEGER: 1

 

(2) Chose the ACL type.

C:\usr>snmpset -v 1 -c private 192.168.1.1 .1.3.6.1.4.1.259.10.1.42.101.1.16.4.16.2.0 i 2

SNMPv2-SMI::enterprises.259.6.10.94.1.16.4.16.2.0 = INTEGER: 2

 

(3) Assign the ACE Number.

C:\usr>snmpset -v 1 -c private 192.168.1.1 .1.3.6.1.4.1.259.10.1.42.101.1.16.4.16.3.0 i 1

SNMPv2-SMI::enterprises.259.6.10.94.1.16.4.16.3.0 = INTEGER: 1

 

(4) Attach ACE to ACL, Values = (1: noAction), (2: attach), (3: detach)

C:\usr>snmpset -v 1 -c private 192.168.1.1 .1.3.6.1.4.1.259.10.1.42.101.1.16.4.16.4.0 i 2

SNMPv2-SMI::enterprises.259.6.10.94.1.16.4.16.4.0 = INTEGER: 2


    Hot articles