RE: How to create a VACM view that blocks particular rows in a table
From: d.t.shi...@liverpool.ac.uk To: skjaiswa...@hotmail.com CC: net-snmp-users@lists.sourceforge.net On 7 September 2012 07:30, Suresh kumar skjaiswa...@hotmail.com wrote: Hi Dave Please find out of snmpwalk -v 2c -c public -On 172.16.3.151 1.3.6.1.6.3.15.1.2.2.1 .1.3.6.1.6.3.15.1.2.2.1.3. 17.128.0.31.136.128.176.43.0.0.5.141.73.80.0.0.0.0. 14.100.101.102.97.117.108.116.85.115.101.114.77.68.53 = STRING: defaultUserMD5 OK - That gives you the information you need to determine the OID to put in the 'view' directive Turn the last number in the first line into a 0 (because you'll want to match all column objects) Turn the first number in the third line into a 0 (because you'll want to match varying length usernames) Delete 85.115. from the third name (just leaving the prefix default) Use the resulting OID in the view directive. As for the mask, write down a string of 1 bits, one for each number in this OID. Then take the two subidentifiers that you set to 0 above, and turn the corresponding bits in this list to 0 as well. That gives you the mask to use (in binary) So just convert that to hex, and you're done. OK? Dave -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users
RE: How to create a VACM view that blocks particular rows in a table
Hi Dave We created the following configuration in snmpd.conf. The engine ID is 0x80001f8880606307655045efc8; however the below configuration is not working. Please let us know if the engine ID used is correct? How do we verify the mask? createUser deepti MD5 net-snmp #VACM Configuration # First, map the community name (COMMUNITY) into a security name # (local and mynetwork, depending on where the request is coming # from): #com2sec custom_sec 192.168.10.0/24 public view myVacm included .1.3.6.1.6.3.15.1.2.2 view myVacm excluded .1.3.6.1.6.3.15.1.2.2.1.0.17.80001f8880606307655045efc8.0.100.101.102.97.117.108.116 0xff:e0:00:01:fa rouser deepti auth -V myVacm Thanks ~Suresh Date: Tue, 4 Sep 2012 11:09:16 +0100 Subject: Re: How to create a VACM view that blocks particular rows in a table From: d.t.shi...@liverpool.ac.uk To: skjaiswa...@hotmail.com CC: net-snmp-users@lists.sourceforge.net On 4 September 2012 09:37, Suresh kumar skjaiswa...@hotmail.com wrote: But anyone who has rw/ro access to the Snmpusm table will be able to view these internal users starting with “default” as well. We want that when any operator accesses SNMPUSM table, he should be able to view users that are created ( for example deepti1 in the below case) but not the internal users/default users ( starting with “defaultX”). OK - I see what you mean. In VACM terms, this implies creating a view where particular rows belonging to a table can be accessed while some can be blocked. Exactly. We want a sample VACM configuration for the same. Not tested, but try something like the following: view myVacm included .1.3.6.1.6.3.15.1.2.2 view myVacm excluded .1.3.6.1.6.3.15.1.2.2.1.0.17.{engineID}.0.100.101.102.97.117.108.116 0xff:ef:ff:fd:fa rouser {operator} auth -V myVacm or view myVacm included .1.3.6.1.6.3.15.1.2.2 view myVacm excluded .1.3.6.1.6.3.15.1.2.2.1.0.17.{engineID}.0.100.101.102.97.117.108.116 0xff:e0:00:01:fa rouser {operator} auth -V myVacm You'll need to insert the (numeric) value of your SNMP Engine ID where indicated. Try running the same snmpwalk command as before but with the option '-On' to see the appropriate values. Note that the mask is crafted based on a 17-octet engineID (which seems to be what you're using). If that's not correct, then you'll need to tweak the OID and mask accordingly. The difference between the two sample above are whether the engine ID is explicitly matched, or ignored. It shouldn't make any real difference which you use. But the length of the engineID *is* significant, as this affects the masking bits that are applied to the username. Dave -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users
How to block read-write access to the default v3 users only
Hi Dave, We have added around 2 default users in the snmp persist file to enable v3 user creation/cloning through snmpusm utility. The output of the SNMPUSM table is as follows: C:\SnmpUtilitysnmpwalk -v 2c -c public 172.16.3.151 1.3.6.1.6.3.15.1.2.2.1 SNMP-USER-BASED-SM-MIB::usmUserSecurityName..ê~..X`DP.deepti1 = STRING: deepti1 SNMP-USER-BASED-SM-MIB::usmUserSecurityName..ê~..X`DP.defaultUserMD5 = STRING: defaultUserMD5 SNMP-USER-BASED-SM-MIB::usmUserSecurityName..ê~..X`DP.defaultUserSHA = STRING: defaultUserSHA SNMP-USER-BASED-SM-MIB::usmUserCloneFrom..ê~..X`DP.deepti1 = OID: SNMPv2-SMI::zeroDotZero SNMP-USER-BASED-SM-MIB::usmUserCloneFrom..ê~..X`DP.defaultUserMD5 = OID: SNMPv2-SMI::zeroDotZero SNMP-USER-BASED-SM-MIB::usmUserCloneFrom..ê~..X`DP.defaultUserSHA = OID: SNMPv2-SMI::zeroDotZero SNMP-USER-BASED-SM-MIB::usmUserAuthProtocol..ê~..X`DP.deepti1 = OID: SNMP-USER-BASED-SM-MIB::usmHMACMD5AuthProtocol SNMP-USER-BASED-SM-MIB::usmUserAuthProtocol..ê~..X`DP.defaultUserMD5 = OID: SNMP-USER-BASED-SM-MIB::usmHMACMD5AuthProtocol SNMP-USER-BASED-SM-MIB::usmUserAuthProtocol..ê~..X`DP.defaultUserSHA = OID: SNMP-USER-BASED-SM-MIB::usmHMACSHAAuthProtocol SNMP-USER-BASED-SM-MIB::usmUserAuthKeyChange..ê~..X`DP.deepti1 = SNMP-USER-BASED-SM-MIB::usmUserAuthKeyChange..ê~..X`DP.defaultUserMD5 = SNMP-USER-BASED-SM-MIB::usmUserAuthKeyChange..ê~..X`DP.defaultUserSHA = SNMP-USER-BASED-SM-MIB::usmUserOwnAuthKeyChange..ê~..X`DP.deepti1 = SNMP-USER-BASED-SM-MIB::usmUserOwnAuthKeyChange..ê~..X`DP.defaultUserMD5 = SNMP-USER-BASED-SM-MIB::usmUserOwnAuthKeyChange..ê~..X`DP.defaultUserSHA = SNMP-USER-BASED-SM-MIB::usmUserPrivProtocol..ê~..X`DP.deepti1 = OID: SNMP-USER-BASED-SM-MIB::usmNoPrivProtocol SNMP-USER-BASED-SM-MIB::usmUserPrivProtocol..ê~..X`DP.defaultUserMD5 = OID: SNMP-USER-BASED-SM-MIB::usmNoPrivProtocol SNMP-USER-BASED-SM-MIB::usmUserPrivProtocol..ê~..X`DP.defaultUserSHA = OID: SNMP-USER-BASED-SM-MIB::usmNoPrivProtocol SNMP-USER-BASED-SM-MIB::usmUserPrivKeyChange..ê~..X`DP.deepti1 = SNMP-USER-BASED-SM-MIB::usmUserPrivKeyChange..ê~..X`DP.defaultUserMD5 = SNMP-USER-BASED-SM-MIB::usmUserPrivKeyChange..ê~..X`DP.defaultUserSHA = SNMP-USER-BASED-SM-MIB::usmUserOwnPrivKeyChange..ê~..X`DP.deepti1 = SNMP-USER-BASED-SM-MIB::usmUserOwnPrivKeyChange..ê~..X`DP.defaultUserMD5 = SNMP-USER-BASED-SM-MIB::usmUserOwnPrivKeyChange..ê~..X`DP.defaultUserSHA = SNMP-USER-BASED-SM-MIB::usmUserPublic..ê~..X`DP.deepti1 = SNMP-USER-BASED-SM-MIB::usmUserPublic..ê~..X`DP.defaultUserMD5 = SNMP-USER-BASED-SM-MIB::usmUserPublic..ê~..X`DP.defaultUserSHA = SNMP-USER-BASED-SM-MIB::usmUserStorageType..ê~..X`DP.deepti1 = INTEGER: nonVolatile(3) SNMP-USER-BASED-SM-MIB::usmUserStorageType..ê~..X`DP.defaultUserMD5 = INTEGER: nonVolatile(3) SNMP-USER-BASED-SM-MIB::usmUserStorageType..ê~..X`DP.defaultUserSHA = INTEGER: nonVolatile(3) SNMP-USER-BASED-SM-MIB::usmUserStatus..ê~..X`DP.deepti1 = INTEGER: active(1) SNMP-USER-BASED-SM-MIB::usmUserStatus..ê~..X`DP.defaultUserMD5 = INTEGER: active(1) SNMP-USER-BASED-SM-MIB::usmUserStatus..ê~..X`DP.defaultUserSHA = INTEGER: active(1) C:\SnmpUtility What VACM configuration should go into snmpd.conf to block read-write access to the default users ONLY? The user for example “deepti1” should be accessible but not the users starting with “defaultXXX”. Regards ~Suresh -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users
RE: How to create a VACM view that blocks particular rows in a table
Hi Dave The default users have been added to snmpusm table for V3 user creation/cloning which is internal to the SNMP Agent. But anyone who has rw/ro access to the Snmpusm table will be able to view these internal users starting with “default” as well. We want that when any operator accesses SNMPUSM table, he should be able to view users that are created ( for example deepti1 in the below case) but not the internal users/default users ( starting with “defaultX”). In VACM terms, this implies creating a view where particular rows belonging to a table can be accessed while some can be blocked. We want a sample VACM configuration for the same. Regards Suresh Date: Tue, 4 Sep 2012 08:25:29 +0100 Subject: Re: How to block read-write access to the default v3 users only From: d.t.shi...@liverpool.ac.uk To: skjaiswa...@hotmail.com CC: net-snmp-users@lists.sourceforge.net On 4 September 2012 08:15, Suresh kumar skjaiswa...@hotmail.com wrote: We have added around 2 default users in the snmp persist file to enable v3 user creation/cloning through snmpusm utility. What VACM configuration should go into snmpd.conf to block read-write access to the default users ONLY? That's looking at things the wrong way. You don't need any VACM configuration settings to block access. You need VACM configuration settings to *grant* access. The user for example “deepti1” should be accessible but not the users starting with “defaultXXX”. So use either rouser deepti1 or rwuser deepti1 (depending on whether this user should have read-only vs read-write) If there's no similar r{o,w}user line that refers to the default users (or an equivalent 'group' setting), then they won't have any access. Dave -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users
Received response for SNMPv3 inform; but Agent still sending inform for the number of retries configured.(Stuck Please help...)
Hi Wes Please clarify issues seen in 2 and 3. 2. Also sending report SNMP-USER-BASED-SM-MIB::usmStatsNotInTimeWindows.0 (See EngineIDErrorPkt.pcap). updated System time on Agent; still error received. 3. V3 Inform received by Trap Receiver; response sent to agent but agent is sending inform again (retry = 1; See Inform-Retry.pcap). Hi Dave I also attached trapdconfig(in zip file 7.z format) I’m using manage Engine MIB Browser for receiving Trap From: harda...@users.sourceforge.net To: skjaiswa...@hotmail.com CC: net-snmp-cod...@lists.sourceforge.net; net-snmp-users@lists.sourceforge.net Subject: Re: Received response for SNMPv3 inform; but Agent still sending inform for the number of retries configured. Date: Wed, 20 Jun 2012 08:12:48 -0700 Suresh kumar skjaiswa...@hotmail.com writes: 1. Engine ID discovered correctly during discovery; but Agent still incrementing usmStatsUnknownEngineIDs.0 (See EngineIDErrorPkt.pcap) 2. Also sending report SNMP-USER-BASED-SM-MIB::usmStatsNotInTimeWindows.0 (See EngineIDErrorPkt.pcap). updated System time on Agent; still error received. These are actually normal. In the process of engineID discovery (and time discovery) the agent will receive a message with the wrong engineID, so the agent increments the count and sends back the real one. That's actually how engineID discovery works. -- Wes Hardaker Please mail all replies to net-snmp-cod...@lists.sourceforge.net -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ ___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ ___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users
Re Received response for SNMPv3 inform; but Agent still sending inform for the number of retries configured.
Gentle Reminder Please responce my query regarding 23 . Thanks ~Suresh From: skjaiswa...@hotmail.com To: net-snmp-cod...@lists.sourceforge.net; net-snmp-users@lists.sourceforge.net Subject: Re Received response for SNMPv3 inform; but Agent still sending inform for the number of retries configured. Date: Fri, 22 Jun 2012 13:55:52 +0530 opps forgot to atttached file Hi Wes Thanks for quick reply Please clarify issues seen in 2 and 3. 2. Also sending report SNMP-USER-BASED-SM-MIB::usmStatsNotInTimeWindows.0 (See EngineIDErrorPkt.pcap). updated System time on Agent; still error received. 3. V3 Inform received by Trap Receiver; response sent to agent but agent is sending inform again (retry = 1; See Inform-Retry.pcap). Hi Dave I also attached trapdconfig(in zip file 7.z format) I’m using manage Engine MIB Browser for receiving Trap From: harda...@users.sourceforge.net To: skjaiswa...@hotmail.com CC: net-snmp-cod...@lists.sourceforge.net; net-snmp-users@lists.sourceforge.net Subject: Re: Received response for SNMPv3 inform; but Agent still sending inform for the number of retries configured. Date: Wed, 20 Jun 2012 08:12:48 -0700 Suresh kumar skjaiswa...@hotmail.com writes: 1. Engine ID discovered correctly during discovery; but Agent still incrementing usmStatsUnknownEngineIDs.0 (See EngineIDErrorPkt.pcap) 2. Also sending report SNMP-USER-BASED-SM-MIB::usmStatsNotInTimeWindows.0 (See EngineIDErrorPkt.pcap). updated System time on Agent; still error received. These are actually normal. In the process of engineID discovery (and time discovery) the agent will receive a message with the wrong engineID, so the agent increments the count and sends back the real one. That's actually how engineID discovery works. -- Wes Hardaker Please mail all replies to net-snmp-cod...@lists.sourceforge.net -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ ___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ ___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users TrapReceiver-Conf1.7z Description: Binary data -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users
Re Received response for SNMPv3 inform; but Agent still sending inform for the number of retries configured.
opps forgot to atttached file Hi Wes Thanks for quick reply Please clarify issues seen in 2 and 3. 2. Also sending report SNMP-USER-BASED-SM-MIB::usmStatsNotInTimeWindows.0 (See EngineIDErrorPkt.pcap). updated System time on Agent; still error received. 3. V3 Inform received by Trap Receiver; response sent to agent but agent is sending inform again (retry = 1; See Inform-Retry.pcap). Hi Dave I also attached trapdconfig(in zip file 7.z format) I’m using manage Engine MIB Browser for receiving Trap From: harda...@users.sourceforge.net To: skjaiswa...@hotmail.com CC: net-snmp-cod...@lists.sourceforge.net; net-snmp-users@lists.sourceforge.net Subject: Re: Received response for SNMPv3 inform; but Agent still sending inform for the number of retries configured. Date: Wed, 20 Jun 2012 08:12:48 -0700 Suresh kumar skjaiswa...@hotmail.com writes: 1. Engine ID discovered correctly during discovery; but Agent still incrementing usmStatsUnknownEngineIDs.0 (See EngineIDErrorPkt.pcap) 2. Also sending report SNMP-USER-BASED-SM-MIB::usmStatsNotInTimeWindows.0 (See EngineIDErrorPkt.pcap). updated System time on Agent; still error received. These are actually normal. In the process of engineID discovery (and time discovery) the agent will receive a message with the wrong engineID, so the agent increments the count and sends back the real one. That's actually how engineID discovery works. -- Wes Hardaker Please mail all replies to net-snmp-cod...@lists.sourceforge.net -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ ___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users TrapReceiver-Conf1.7z Description: Binary data -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users
RE: Received response for SNMPv3 inform; but Agent still sending inform for the number of retries configured.
From: skjaiswa...@hotmail.com To: net-snmp-cod...@lists.sourceforge.net; net-snmp-users@lists.sourceforge.net Subject: RE: Received response for SNMPv3 inform; but Agent still sending inform for the number of retries configured. Date: Thu, 21 Jun 2012 15:27:46 +0530 Hi Wes Thanks for quick reply Please clarify issues seen in 2 and 3. 2. Also sending report SNMP-USER-BASED-SM-MIB::usmStatsNotInTimeWindows.0 (See EngineIDErrorPkt.pcap). updated System time on Agent; still error received. 3. V3 Inform received by Trap Receiver; response sent to agent but agent is sending inform again (retry = 1; See Inform-Retry.pcap). Hi Dave I also attached trapdconfig(in zip file 7.z format) I’m using manage Engine MIB Browser for receiving Trap From: harda...@users.sourceforge.net To: skjaiswa...@hotmail.com CC: net-snmp-cod...@lists.sourceforge.net; net-snmp-users@lists.sourceforge.net Subject: Re: Received response for SNMPv3 inform; but Agent still sending inform for the number of retries configured. Date: Wed, 20 Jun 2012 08:12:48 -0700 Suresh kumar skjaiswa...@hotmail.com writes: 1. Engine ID discovered correctly during discovery; but Agent still incrementing usmStatsUnknownEngineIDs.0 (See EngineIDErrorPkt.pcap) 2. Also sending report SNMP-USER-BASED-SM-MIB::usmStatsNotInTimeWindows.0 (See EngineIDErrorPkt.pcap). updated System time on Agent; still error received. These are actually normal. In the process of engineID discovery (and time discovery) the agent will receive a message with the wrong engineID, so the agent increments the count and sends back the real one. That's actually how engineID discovery works. -- Wes Hardaker Please mail all replies to net-snmp-cod...@lists.sourceforge.net -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users
Received response for SNMPv3 inform; but Agent still sending inform for the number of retries configured.
Hi Dave Following is the snmpd.conf configuration: trapsess -v 3 -Ci -r 1 -t 5 -e 0x80001f8880386a8adc0005946b -n -a SHA -A mypassword -l authNoPriv -u traptest 192.168.101.226 1. Engine ID discovered correctly during discovery; but Agent still incrementing usmStatsUnknownEngineIDs.0 (See EngineIDErrorPkt.pcap) 2. Also sending report SNMP-USER-BASED-SM-MIB::usmStatsNotInTimeWindows.0 (See EngineIDErrorPkt.pcap). updated System time on Agent; still error received. 3. V3 Inform received by Trap Receiver; response sent to agent but agent is sending inform again (retry = 1; See Inform-Retry.pcap). P.S i'm using netsnmp-5.7.1 Also attached pcap file that i was coptured Regards ~Suresh Inform-Retry.pcap Description: Binary data EngineIDErrorPkt.pcap Description: Binary data -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users
Can we create a session with SNMP Manger using net-snmp agent?
Hi Dave i'm using net-snmp 5.7.1 version. Can we create a session with SNMP Manger using net-snmp agent? For example, we have configured certain IP addresses that are allowed to access the agent. Is there a way we can create and maintain sessions with those managers? IS the response to the below query correct? Customer: To add to the list of questions/features: how are we handling the sessions? Can we see all the logged in session – Web, TL1 and SNMP? There is a cancel session feature which is also required from SNMP – where an admin user can cancel other user sessions. Think about how can this be achieved in SNMP. Developer: Yes, you can see all the logged in sessions from SNMP. SNMP Manager itself does not create a session with the agent and hence it cannot be stored anywhere. Every operation in SNMP is considered as an independent operation without any session associated with it. ~Suresh -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ ___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users
Can we create a session with SNMP Manger using net-snmp agent?
Hi Dav i'm using net-snmp 5.7.1 version. Can we create a session with SNMP Manger using net-snmp agent? For example, we have configured certain IP addresses that are allowed to access the agent. Is there a way we can create and maintain sessions with those managers? IS the response to the below query correct? Customer: To add to the list of questions/features: how are we handling the sessions? Can we see all the logged in session – Web, TL1 and SNMP? There is a cancel session feature which is also required from SNMP – where an admin user can cancel other user sessions. Think about how can this be achieved in SNMP. Developer: Yes, you can see all the logged in sessions from SNMP. SNMP Manager itself does not create a session with the agent and hence it cannot be stored anywhere. Every operation in SNMP is considered as an independent operation without any session associated with it. ~Suresh -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users
SNMP INFORM(V3) not acknowledged by snmpd
We are not able to receive acknowledgment from snmptrapd when we are sending snmpv3 inform from agent The snmpd.conf contains trapsess -v 3 –Ci –r 6 –t 5 -n -a SHA -A mypassword -x AES -X mypassword -l authPriv -u traptest -e 0x81020304 xx.xx.xx.xx(ip address) The same snmptrapd acknowledges when we send trap from command line utility snmptrap -v 3 –Ci –r 6 –t 5 -n -a SHA -A mypassword -x AES -X mypassword -l authPriv -u traptest -e 0x81020304 localhost 0 linkUp.0 ~Suresh -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users
SNMP INFORM(V3) not acknowledged by snmpd
We are not able to receive acknowledgment from snmptrapd when we are sending snmpv3 inform from agent The snmpd.conf contains trapsess -v 3 –Ci –r 6 –t 5 -n -a SHA -A mypassword -x AES -X mypassword -l authPriv -u traptest -e 0x81020304 xx.xx.xx.xx(ip address) The same snmptrapd acknowledges when we send trap from command line utility snmptrap -v 3 –Ci –r 6 –t 5 -n -a SHA -A mypassword -x AES -X mypassword -l authPriv -u traptest -e 0x81020304 localhost 0 linkUp.0 ~Suresh Privakey Unkow.pcap Description: Binary data -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users
RE: snmpbulkget ?
what is diffrent between snmpbulkget nad snmpbulkwalk ?. i tryed to snmpbulkget it get 10 row at time in using single getnext but wireshark udp packet size only 200 Byte swhy not we will up max UDP size row? ~Suresh Date: Thu, 24 May 2012 10:31:58 +0100 Subject: Re: snmpbulkget ? From: d.t.shi...@liverpool.ac.uk To: cz...@o2.pl CC: net-snmp-users@lists.sourceforge.net On 24 May 2012 10:20, czezz cz...@o2.pl wrote: So, assuming: - to get single value, the most beneficial is reguler SNMPGET Assuming you know the index value of the object you require - yes. (If not, then use GetNext) SNMPGET = Get request SNMPGETNEXT SNMPWALK = GetNext SNMPBULKGET SNMPBULKWALK = GetBulk Correct. (Also bear in mind that GetBulk is only available with SNMP v2c v3. It can't be used with SNMPv1) Dave -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ ___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users
snmp v3 usm issue in create/change user password
We followed the steps given in the below link, we are getting error no encryption type specified, which I need in order to know to change the key http://net-snmp.sourceforge.net/docs/man/snmpusm.html $ snmpusm -v3 -u initial -n -l authNoPriv -a MD5 -A setup_passphrase 192.168.101.221 create wes initial Did not find 'InetAddressPrefixLength' in module INET-ADDRESS-MIB (/usr/local/share/snmp/mibs/IP-MIB.txt) Did not find 'InetVersion' in module INET-ADDRESS-MIB (/usr/local/share/snmp/mibs/IP-MIB.txt) Did not find 'InetZoneIndex' in module INET-ADDRESS-MIB (/usr/local/share/snmp/mibs/IP-MIB.txt) Did not find 'InetPortNumber' in module INET-ADDRESS-MIB (/usr/local/share/snmp/mibs/TCP-MIB.txt) Did not find 'InetPortNumber' in module INET-ADDRESS-MIB (/usr/local/share/snmp/mibs/UDP-MIB.txt) User successfully created. sandeep_manwatkar@PSNG384 ~ $ snmpusm -v 3 -u wes -n -l authNoPriv -a MD5 -A setup_passphrase 192.168.101.221 passwd setup_passphrase new_passphrase Did not find 'InetAddressPrefixLength' in module INET-ADDRESS-MIB (/usr/local/share/snmp/mibs/IP-MIB.txt) Did not find 'InetVersion' in module INET-ADDRESS-MIB (/usr/local/share/snmp/mibs/IP-MIB.txt) Did not find 'InetZoneIndex' in module INET-ADDRESS-MIB (/usr/local/share/snmp/mibs/IP-MIB.txt) Did not find 'InetPortNumber' in module INET-ADDRESS-MIB (/usr/local/share/snmp/mibs/TCP-MIB.txt) Did not find 'InetPortNumber' in module INET-ADDRESS-MIB (/usr/local/share/snmp/mibs/UDP-MIB.txt) no encryption type specified, which I need in order to know to change the key -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users
Need to configure SNMPv3 user without net-snmp restart
Hi, We need to provision the SNMP Agent with SNMPv3 user configuration from GUI and we are using the following steps to do the same: 1.Stop any SNMP daemon running on the system using kill command. 2.Add the following line in the file /var/net-snmp/snmpd.conf createUser username SHA password AES 3.Add the following line in the file /usr/local/share/snmp/snmpd.conf rwuser username 4.Start the snmpd daemon – snmpd -d The issue is that every time a new user is configured, the SNMP Agent needs to be restarted which is not acceptable to the stakeholders. The re-read of configuration file using the command kill –HUP (without restart) does not reload the persistent file. The net-snmp-config command needs restart of the agent. The utility snmpusm will have to be built on Montavista (target machine) to configure v3 users. Please suggest a mechanism where the SNMPv3 user add/delete will not need Agent restart. We are usuing net-snmp 5.7.1 version. -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users
RE: Geting error in mib whne sent request.
Yes Dave this mib is present in this directory and all its dependent mib also present in this directory also like SNMPv2-SMI and SNMPv2-TC and header is INET-ADDRESS-MIB is like.. INET-ADDRESS-MIB DEFINITIONS ::= BEGIN IMPORTS MODULE-IDENTITY, mib-2, Unsigned32 FROM SNMPv2-SMI TEXTUAL-CONVENTION FROM SNMPv2-TC; ~Suresh Date: Thu, 10 May 2012 21:44:43 +0100 Subject: Re: Geting error in mib whne sent request. From: d.t.shi...@liverpool.ac.uk To: skjaiswa...@hotmail.com CC: net-snmp-users@lists.sourceforge.net On 10 May 2012 18:55, Suresh kumar skjaiswa...@hotmail.com wrote: Hello all i'm geting following errors in when we run net-snmp-5.7 and walk request send to agent throug snmp utility. thase are standard IP,UDP and TCP mib which are come with net-snmp-5.7.1 version. Did not find 'InetAddressPrefixLength' in module INET-ADDRESS-MIB (C:/SNMP/share/snmp/mibs/IP-MIB.txt) Is the INET-ADDRESS-MIB present in this directory? Dave -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users
RE: how delete entire row from table .
Thank Dave for response. Suppose we have mib like PortGruopTable its having column like PortGroupName and PortGroupMemberTable we have implement functionality like user can Create ProtGrroupName with mandatoryPortGroupName its ok for Me PortGroupName having access read-create but portGroupMemberPort I need both access like read-create and read-write because portGroupmember port can be modify in later .. Please suggest me how can I resolve this problem . ~Suresh Date: Mon, 7 May 2012 20:01:39 +0100 Subject: Re: how delete entire row from table . From: d.t.shi...@liverpool.ac.uk To: skjaiswa...@hotmail.com CC: net-snmp-users@lists.sourceforge.net On 7 May 2012 19:52, Wes Hardaker harda...@users.sourceforge.net wrote: 3- Is any difference between mib object having MAX-ACCESS read-write or MAX-ACCESS read-create read-create objects are designed to be created when new rows are created, where as read-write means the manager isn't allow to create new objects there and con only modify existing ones. Also note that you cannot mix read-write and read-create within the same MIB table. For any given table - the (writeable) column object must either *all* be read-write (plus read-only for the others). or they must *all* be read-create (or read-only). You can't have some read-write and others read-create in the same table. Dave -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users
Geting error in mib whne sent request.
Hello all i'm geting following errors in when we run net-snmp-5.7 and walk request send to agent throug snmp utility. thase are standard IP,UDP and TCP mib which are come with net-snmp-5.7.1 version. thease error come snmp utility side when send walk requet also found net-snmp-5.7.1 agnelog file. Did not find 'InetAddressPrefixLength' in module INET-ADDRESS-MIB (C:/SNMP/share/snmp/mibs/IP-MIB.txt) Did not find 'InetVersion' in module INET-ADDRESS-MIB (C:/SNMP/share/snmp/mibs/IP-MIB.txt) Did not find 'InetZoneIndex' in module INET-ADDRESS-MIB (C:/SNMP/share/snmp/mibs/IP-MIB.txt) Did not find 'InetPortNumber' in module INET-ADDRESS-MIB (C:/SNMP/share/snmp/mibs/TCP-MIB.txt) Did not find 'InetPortNumber' in module INET-ADDRESS-MIB (C:/SNMP/share/snmp/mibs/UDP-MIB.txt) -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users
how delete entire row from table .
Hello Dav We are using net-snmp 5.7.1 and extended the snmp agent with our enterprise specific mibs. We have used “ mib2c -c mib2c.iterate.conf” option to generate skeleton code for Table objects. We need to support following functionality during set opration. Delete a entire row from table. Create a row. And modify row two or more columns in a single table. My quations is provide above such operation during set in table we must have RowStatus column in mib table like ? vtpVlanEditRowStatus OBJECT-TYPE SYNTAX RowStatus 1:active 2:notInService 3:notReady 4:createAndGo 5:createAndWait 6:destroy MAX-ACCESS read-create STATUS current. If we generate a code that mib containing the RowStatus OBJECT-TYPE Using “ mib2c -c mib2c.iterate.conf” we found some more switch case in skeleton code like. case COLUMN_CALIENTTCONNROWSTATUS: switch (*request-requestvb-val.integer) { case RS_CREATEANDGO: case RS_CREATEANDWAIT: . 1. We want to know a. how create a row if row cotain 20 colums Do we need each colum in row should have read-wirte? b. What will be index of that colum for creating new row. If without index is it possible?. Like during update in set we have to pass index of that colums snmpset -v 2c -c private 192.168.101.177 1.3.6.1.4.1..2.1.1.1.1.1000 s NewGenName1.3.6.1.4.1..2.1.1.1.21.1000 i 25 and its is working fine for valide index. c. how we delete entire row from table?. is this we requere index for table. d. how to delete single row. 2.Secondly we want to our net-snmp give responde only request is coming from some specific IP. How we rid this in net-snmp. 3- Is any difference between mib object having MAX-ACCESS read-write or MAX-ACCESS read-create.because i need funcnality create new connection in our switch after creating from snmp manager we do not want two modify this with set request user albe to do delete connection through manager. 4. We also want block request from unknonk ip address for only for snmp service is net-snmp able block this request with only v2 support not in v3. ~Suresh -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ ___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ ___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users
how to create and delete row in table.
Hello All We are using net-snmp 5.7.1 and extended the snmp agent with our enterprise specific mibs. We have used “ mib2c -c mib2c.iterate.conf” option to generate skeleton code for Table objects. We need to support following functionality during set opration. Delete a entire row from table. Create a row. And modify row two or more columns in a single table. My quations is provide above such operation during set in table we must have RowStatus column in mib table like ? vtpVlanEditRowStatus OBJECT-TYPE SYNTAX RowStatus 1:active 2:notInService 3:notReady 4:createAndGo 5:createAndWait 6:destroy MAX-ACCESS read-create STATUS current. If we generate a code that mib containing the RowStatus OBJECT-TYPE Using “ mib2c -c mib2c.iterate.conf” we found some more switch case in skeleton code like. case COLUMN_CALIENTTCONNROWSTATUS: switch (*request-requestvb-val.integer) { case RS_CREATEANDGO: case RS_CREATEANDWAIT: . 1. We want to know a. how create a row if row cotain 20 colums Do we need each colum in row should have read-wirte? b. What will be index of that colum for creating new row. If without index is it possible?. Like during update in set we have to pass index of that colums snmpset -v 2c -c private 192.168.101.177 1.3.6.1.4.1..2.1.1.1.1.1000 s NewGenName1.3.6.1.4.1..2.1.1.1.21.1000 i 25 and its is working fine for valide index. c. how we delete entire row from table?. 2.Secondly we want to our net-snmp give responde only request is coming from some specific IP. How we rid this in net-snmp. 3- Is any difference between mib object having MAX-ACCESS read-write or MAX-ACCESS read-create. ~Suresh -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users
Net-snmp time out issue for snmp walk request
Hello All We are using net-snmp 5.7.1 and extended the snmp agent with our enterprise specific mibs. We have used “ mib2c -c mib2c.iterate.conf” option to generate skeleton code for Table objects. Now the tables we are implementing contains dynamic data, so as per our implementation, the snmpd fetches current data on every time it gets a walk request(after catche time out time ). However it takes a long time to fetch the data from third party service (CORBA service in our case) and loading it in snmp table. During this it responds back timeout for the snmp walk request (Timeout: No Response from xxx.xxx.xxx.xx) We also tried out using increase cache time out “(define XX_PORTGROUPTABLE_TIMEOUT 60 “ to 600) and using option –t in snmp utility side. 1. We would like to know what is the best approach to implement dynamic table object in net-snmp? We are re-populating the complete table for snmp walk request if the time lag between two successive requests exceeds the cache timeout. Is it the right approach ? 2. Does net-snmp support retry mechanism? i.e. Since in our case it takes around 5-10 minutes to populate complete table, is there any way that will keep the client session alive instead of responding timeout. ~Suresh -- For Developers, A Lot Can Happen In A Second. Boundary is the first to Know...and Tell You. Monitor Your Applications in Ultra-Fine Resolution. Try it FREE! http://p.sf.net/sfu/Boundary-d2dvs2 ___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users
Regarding System Mib get/set on SysLocation, and SysContact
Hello All, I using net-snmp 7.1,we have get/set operation on system mib like sysName, sysContact and sysLocation.i know that get/set working fine for sysName. and Set operation only work for sysContact and sysLocation if is not configure in snmpd.conf. My Requirement is that .1. What we set sysContact/SysLocation using snmpset its should also reflect our GUI and some other component.Because of above Requirement we have to call some external API for getting SysContact/SysLocation and have to pass it net-snmp for snmpget.and also when we do snmpset operation to call some external API to refelect the change in GUI and some other component . I was trying to debug this in net-snmp and found that system_parse_config_sysloc(const char *token, char *cptr) and system_parse_config_syscon(const char *token, char *cptr) is fill up value in global variable sysLocation, sysContact in system_Mib.c files at the time net-snmp launching not at time of snmpget/snmpset. But unable find that how its pass for snmpget and how this value are set when we do snmpset operationthis is important for overwrite this functionality using some our external API for getting/setting sysContact/sysLoaction for some other component. Can any help me.. -- This SF email is sponsosred by: Try Windows Azure free for 90 days Click Here http://p.sf.net/sfu/sfd2d-msazure___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users
RE: mib2c.table_data.conf, cache timeout period does'nt seems to change.
Hi I have also generated code usinng mib2c.iterator cache time out is working for 60 or more thnan 60 seconds if it set value less than 60 seconds say 10 or 20 or 30 second at that time xxx_PortTable_free(netsnmp_cache * cache, void *vmagic) is calling also 60 second Dave please let me is 60 seconds are minimum time for cache cleanup. ~Suresh Date: Fri, 10 Feb 2012 20:51:45 + Subject: Re: mib2c.table_data.conf, cache timeout period does'nt seems to change. From: d.t.shi...@liverpool.ac.uk To: francois.bouch...@mpbc.ca CC: net-snmp-users@lists.sourceforge.net On 10 February 2012 20:06, Francois Bouchard francois.bouch...@mpbc.ca wrote: I was asking for hints about the cache timeout values. It can't be modify when changing the xxx_TIMEOUT define statement ( ie.e stays at 60 seconds ) H you should be able to modify this timeout by editing the header file and recompiling the module. Perhaps you could post the code that you're working with so that we can test this Dave -- Virtualization Cloud Management Using Capacity Planning Cloud computing makes use of virtualization - but cloud computing also focuses on allowing computing to be delivered as a service. http://www.accelacomm.com/jaw/sfnl/114/51521223/ ___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users -- Virtualization Cloud Management Using Capacity Planning Cloud computing makes use of virtualization - but cloud computing also focuses on allowing computing to be delivered as a service. http://www.accelacomm.com/jaw/sfnl/114/51521223/___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users
how to register enterprise specific traps extended in net-snmp agent on event basis
how to register enterprise specific traps extended in net-snmp agent on event basis i.e the trap should be sent when a particular event occurs? We have generated trap definition by extending our enterprise specific MIB module. However we did not find any function that could register this trap with our CORBA object which is notified when the trap condition occurs. We have seen only the snmp_alarm* functions that call the registered trap every “X” seconds. Our requirement is the call the registered trap whenever the event occurs and not in a periodic manner as specified in snmp_alarm* functions. How can this be achieved? ~Suresh -- Learn Windows Azure Live! Tuesday, Dec 13, 2011 Microsoft is holding a special Learn Windows Azure training event for developers. It will provide a great way to learn Windows Azure and what it provides. You can attend the event by watching it streamed LIVE online. Learn more at http://p.sf.net/sfu/ms-windowsazure___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users
Regarding cross compile and Perl Dependecy
Hello all, I have to build net-snmp 5.6.1 on taget RT Linux. i what know how i build this for cross compile target platform on Montavista Linux.? and Second think i also want know what are the net-snmp dependency on Perl. is Perl is lib is require on target platform. Thanks in Advance ~Suresh -- All the data continuously generated in your IT infrastructure contains a definitive record of customers, application performance, security threats, fraudulent activity, and more. Splunk takes this data and makes sense of it. IT sense. And common sense. http://p.sf.net/sfu/splunk-novd2d___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users
How to convert entire MIB at once using mib2c
Hello all i want convert entire MIB object to c/h file using mib2c at once can any once do this before please let me know . if not what i need change in mib2c script. Thanks in advance. ~suresh -- RSA(R) Conference 2012 Save $700 by Nov 18 Register now http://p.sf.net/sfu/rsa-sfdev2dev1___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users
SNMPv3
Hi, When I tried doing the snmpwalk for SNMPv3, I got the following error. regr...@sinkhole3% snmpwalk -v 3 -n router -u me -l noAuthNoPriv -a MD5 -A 123456789 -x DES X Abcd12345 veena mplsTunnelTable Abcd12345: Unknown Object Identifier (Sub-id not found: mib-2 - Abcd12345) Please help me out, where I am missing Thanks Suresh -- This SF.net email is sponsored by Make an app they can't live without Enter the BlackBerry Developer Challenge http://p.sf.net/sfu/RIM-dev2dev ___ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users