How to configure SNMPv3 notification messages on ECS4510 Series ?

Steven_zhangCreated at:Dec 11, 2019 13:23:27Updated at:Dec 11, 2019 13:23:31

Topology

mceclip0.png

Product Model & Software

ECS4510-28T firmware version: v1.5.2.16

SNMP Server software: MG-soft v10.0.0.4044

 

Configure Procedures

1. Setting an IP address on ECS4510-28T.

Console(config)#interface vlan 1
Console(config-if)#ip address 192.168.1.1 255.255.255.0

2. Specifies an "engine-id" for the SNMP server.

Console(config)#snmp-server engine-id remote 192.168.1.20 8000052301c0a80114

*Please find the engine-id from your SNMP server.

The "engine-id" is automatically generated that is unique to the host.

mceclip3.png

 

3. Create a remote SNMPv3 user.

Console(config)#snmp-server user andy super remote 192.168.1.20 v3 auth md5 andytest

* Also need to create a same user on your SNMP server.

mceclip2.png

 

4. Create an SNMP "view entry" which controls user access to the MIB for the specific notification message.

Console(config)#snmp-server view super 1.3.6.1.4.1.259.10.1.24.* included

*This example OID could access to whole the MIB tree of ECS4510-28T.

 

5. Create an SNMP group sets the access policy for the assigned users, and mapping SNMP users to SNMP views.

Console(config)#snmp-server group super v3 auth

 

6. Specify the target SNMP server that will receive inform messages.

Console(config)#snmp-server host 192.168.1.20 inform andy version 3 auth

*If we specify an SNMP Version 3 host, then the community-string is interpreted as an SNMP user name.

Thus here community-string "andy" is the user name.

 

7. SNMP informs collector will receive the SNMPv3 trap.

mceclip1.png

 

Troubleshooting

If the SNMP server still can't receive the trap message from switch.

Please continue to capture SNMP packet on the SNMP server, then you could start to do the troubleshooting.

Generally it can be divided into the following two cases.

 

1) Host has not received the SNMP packets. >>> check the configuration of the switch.

!
snmp-server engine-id remote 192.168.1.20 8000052301c0a80114
snmp-server group super v3 auth
snmp-server user andy super remote 192.168.1.20 v3 auth md5 andytest
snmp-server view super 1.3.6.1.4.1.259.10.1.24.* included
snmp-server host 192.168.1.20 inform andy version 3 auth
!
!
interface vlan 1
 ip address 192.168.1.1/24
!

2) Host has received the SNMP packets. >>> check the engine-ID and user profile of SNMP server and switch.

mceclip0.png

 


    Hot articles