Birgit, Somewhere I found a response saying that if you put the -e option with the engine id from /var/net-snmp/snmpd.conf it works. I tried this and in fact it does work even with authPriv. So the bug appears to be that trapsess does not automatically determine (and use) the engine id for the agent. Once you specify the engine id on the trapsess line it uses the right boots, and time fields of the USM data and the stack can receive and decode the traps correctly.
Here is the line in the config file for net-snmp snmpd 5.3.1 (compiled on RHEL 4): trapsess -e ENGINE_ID -v 3 -l authPriv -u USERNAME -a MD5 -A AUTH_PASS -x DES -X PRIV_PASS TARGET_IP where engine id is taken from /var/net-snmp/snmpd.conf oldEngineID field. And username has been created using createUser in same file (/var/net-snmp..) Josh Ps. My next task is to get linkup/linkdown traps working from the agent. -----Original Message----- From: Birgit Arkesteijn [mailto:[EMAIL PROTECTED] Sent: Wednesday, April 16, 2008 6:24 AM To: Josh Bers Cc: 'List for discussion of the Westhawk SNMP stack' Subject: Re: FW: sending V3 traps with trapsess Dear Josh, I've had problems in the past, but I think it's not the same problem, see http://sourceforge.net/mailarchive/forum.php?thread_name=20060206182223.GB36 13%40westhawk.co.uk&forum_name=net-snmp-users Unfortunately Wes' answer to my latest posting is omitted from this view. I seem to remember he agreed with me, though. I can only get trapsess to work with -l noAuthNoPriv. My note in snmpd.conf says: # Keep getting parsing failed errors Sorry, Birgit On 09/04/08 22:36, Josh Bers wrote: > Has anyone been able to get net-snmp to send authenticated and encrypted v3 > traps to a Westhawk manager... I am running into loads of problems using > net-snmp 5.3.1. It never seems to use the local user name or USM security > parameters! > > Any pointers would be much appreciated. > > Josh > > -----Original Message----- > From: Josh Bers [mailto:[EMAIL PROTECTED] > Sent: Wednesday, April 09, 2008 5:11 PM > To: 'Dave Shield' > Cc: 'net-snmp-users@lists.sourceforge.net' > Subject: RE: sending V3 traps with trapsess > > Now I am using 5.3.1 and getting the following error when I configure > trapsess (found in /var/log/message): > > Snmpd[pid]: snmpd: send_trap: USM unknown security name (no such user > exists) > > This is strange because on the line above the trapsess entry in > /etc/snmp/snmpd.conf I declare the user as a rwuser snmproot! > > Is there some other configuration file that I need to tell about the users > that I will use in trapsess from the snmpd agent? > > Josh > > > -----Original Message----- > From: Josh Bers [mailto:[EMAIL PROTECTED] > Sent: Thursday, April 03, 2008 2:43 PM > To: 'Dave Shield' > Cc: 'net-snmp-users@lists.sourceforge.net' > Subject: RE: sending V3 traps with trapsess > > Dave, > > OK, I will be upgrading shortly to net-snmp 5.3.1. Would you expect with > that version that the following trapsess will use the authoritative engineID > of the currently running snmpd process when sending traps to > <target-manager>? > > trapsess -v 3 -u snmproot -a MD5 -A <rootAuthPass> -l authPriv -x DES -X > <rootPrivPass> <target-manager> > > > Josh > > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf Of Dave > Shield > Sent: Wednesday, April 02, 2008 3:09 PM > To: Josh Bers > Cc: net-snmp-users@lists.sourceforge.net > Subject: Re: sending V3 traps with trapsess > > On 02/04/2008, Josh Bers <[EMAIL PROTECTED]> wrote: >> I am seeing strange behavior when configuring snmpd to send traps using >> trapsess command in the snmpd.conf file. >> >> When I don't specify an engineID explicitly it attempts to do discovery > even >> though I am not asking for INFORMS! > >> I am using version 5.1.2. Does anyone know if this has been fixed >> on later versions? > > I've just tried this with both the current development code, > and the 5.2.x line. In both cases, the agent sends the trap > immediately, with no engine probe. > > I don't have a 5.1.x version immediately accessible, but I > seem to remember something being added a while back to > delay the engine probe for an SNMPv3 session until it > was actually needed. So I suspect that this problem has > indeed been fixed in later releases. > > Please note that the 5.1.x line was closed down about two > years ago. We would *strongly* recommend that you > upgrade to a more recent version. > > Dave > > ------------------------------------------------------------------------- > Check out the new SourceForge.net Marketplace. > It's the best place to buy or sell services for > just about anything Open Source. > http://ad.doubleclick.net/clk;164216239;13503038;w?http://sf.net/marketplace > _______________________________________________ > Net-snmp-users mailing list > Net-snmp-users@lists.sourceforge.net > Please see the following page to unsubscribe or change other options: > https://lists.sourceforge.net/lists/listinfo/net-snmp-users > > -- -- Birgit Arkesteijn, [EMAIL PROTECTED], -- Westhawk Ltd, Albion Wharf, 19 Albion Street, Manchester M1 5LN, UK -- Company no: 1769350 -- Registered Office: -- 15 London Road, Stockton Heath, Warrington WA4 6SJ. UK. -- tel.: +44 (0)161 237 0660 -- <URL: http://www.westhawk.co.uk> ------------------------------------------------------------------------- This SF.net email is sponsored by the 2008 JavaOne(SM) Conference Don't miss this year's exciting event. There's still time to save $100. Use priority code J8TL2D2. http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone _______________________________________________ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users
