On Mon, 21 Aug 2006 10:09:08 +0100, Dave Shield wrote:
>On 18/08/06, Bruce Penrod <[EMAIL PROTECTED]> wrote:
>> I've been using ucd-snmp for several years and recently upgraded to
>> net-snmp for its IPV6 capabilities.
>
>Which version of Net-SNMP are you using?
5.3.1
>
>> However I'm running into a problem
>> with snmptrapd. It doesn't seem to want to log the traps it receives,
>> and it does receive them. In fact, it even responds to informs that it
>> receives as well. I can tell this by using the -d command line
>> argument.
>
>That sounds very much like the new trapd access control.
>By default, trapd won't accept anything unless it's configured to allow it.
>
>
>> I haven't figured out any combination of switches to get it
>> to print the trap info anywhere. Here is how I invoke it, with no
>> snmptrapd.conf file:
>>
>> snmptrapd --authcommunity="log trappists" -Lo -d -n -f -m ALL -Os
>> udp6:162 udp:162
>
>I haven't personally tried '--authcommunity' as a command-line option,
>but that ought to work.
>A couple of things to try:
>
> a) create an snmptrapd.conf file, containing
> authcommunity "log trappists"
> and run snmptrapd using that.
>
> b) try using a community string that doesn't contain white space
> That shouldn't cause any problems, but it's worth checking
>
> c) look closely at the packet dump of the incoming trap.
> Does it contain the "log trappists" string?
>
>The dump should start with something like:
>
>0000: 30 xx 02 01 00 04 0D 6C 6F 67 20 74 72 61 70 70 0......log trapp
>0016: 69 73 74 73 xx xx xx xx xx xx xx xx xx xx xx xx ists............
>
>(or possibly 30 xx 02 01 01 ....)
>Is that what you're seeing?
>
>
>Dave
Thanks, Dave. I understood the syntax of the authcommunity directive to be
authcommunity TYPES COMMUNITY
where TYPES is one or several of: log, exec, net
In my case I was trying to tell it to log traps received with community
trappists. The packet that is displayed with the -d commandline argument is:
Received 94 bytes from UDP: [192.168.1.1]:1039
0000: 30 5C 02 01 01 04 09 74 72 61 70 70 69 73 74 73 0\.....trappists
0016: A7 4C 02 04 7C AD B9 CC 02 01 00 02 01 00 30 3E §L..|¹Ì......0>
0032: 30 10 06 08 2B 06 01 02 01 01 03 00 43 04 01 82 0...+.......C...
0048: 64 AC 30 19 06 0A 2B 06 01 06 03 01 01 04 01 00 dª0...+.........
0064: 06 0B 2B 06 01 04 01 EC 03 09 01 00 02 30 0F 06 ..+.........0..
0080: 0A 2B 06 01 04 01 EC 03 09 01 02 02 01 06 .+...........
When I invoke the daemon, there are no error messages, so it does seem to like
the commandline arguments OK.
Bruce
-------------------------------------------------------------------------
Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job easier
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
_______________________________________________
Net-snmp-users mailing list
[email protected]
Please see the following page to unsubscribe or change other options:
https://lists.sourceforge.net/lists/listinfo/net-snmp-users
