chandrasekharreddy chinnapareddygari
writes:
> variable-bindings: 1 item
> RFC1213-MIB::mib-2.15.3.1.1.4.0.0.41.218
> (1.3.6.1.2.1.15.3.1.1.4.0.0.41.218):
> Object Name: 1.3.6.1.2.1.15.3.1.1.4.0.0.41.218
> (RFC1
Hi ,
I am getting "snmpwalk: security service 3 error parsing ScopedPDU " and
"Timeout: No Response from localhost" while doing snmpwalk on bgpI
SNMPv2 walk
---
snmpwalk -v2c -c public localhost 1.3.6.1.2.1.15.4
registered debug token recv, 1
recv:
Hi all,
We are cross-compiling Net-SNMP 5.9.1 for Windows using MinGW-64. On executing
snmpget from a manager, we get the following error.
snmpget -v 3 -u user -a SHA -A 12345ucp -x AES -X 12345uce -l authPriv
10.205.21.85 OID
SNMP log on the Windows server reports "security service 3
passwords - when a new v3 user is added -
that is not occurring when I call update_config();
Thanks,
Joan
-Original Message-
From: Wes Hardaker
Sent: Tuesday, January 5, 2021 3:40 PM
To: Joan Landry
Cc: net-snmp-users@lists.sourceforge.net
Subject: Re: snmpd.conf security
External
v3 user is added?
Thanks,
Joan
-Original Message-
From: Wes Hardaker
Sent: Tuesday, January 5, 2021 3:40 PM
To: Joan Landry
Cc: net-snmp-users@lists.sourceforge.net
Subject: Re: snmpd.conf security
External email: [harda...@users.sourceforge.net
Joan Landry writes:
> Would like to know if there is a way to make snmpd.conf file more
> secure - as currently it shows the password for a usm user.
> createUser v3user MD5 abcdefghij DES abcdefghij trapsess -r 10 -t 3 -l
> authPriv -u v3user -a MD5 -A abcdefghij -x DES -X abcdefghij
> 10.11.12.
Would like to know if there is a way to make snmpd.conf file more secure - as
currently it shows the password for a usm user.
createUser v3user MD5 abcdefghij DES abcdefghij trapsess -r 10 -t 3 -l authPriv
-u v3user -a MD5 -A abcdefghij -x DES -X abcdefghij 10.11.12.98
I tried deleting the file
Hi,
I can create an initial SNMPv3 user with authNoPriv and MD5, using
net-snmp-create-v3-user, and then clone it with snmpusm. No problem,
all straight from the docs.
Now I need a user with SHA-AES and authPriv, on the same agent. Per
snmpusm(1), I assume I would create a template user, and th
Hi Guys :D
So, I'm trying to compile KSM for SNMPv3 but I'm stuck in some
configurations, I guess.
I'm using Centos7 and kerberos v5 on my machine and net-snmp-5.7.3.tar.gz
(there's no .rpm for that version and the ksm of 5.7.2 seems to be broken).
I used
./configure --with-s
On Fri, Aug 8, 2014 at 3:11 AM, Ajay Tiwari wrote:
> --
>
> * [bugs:#2567] <http://sourceforge.net/p/net-snmp/bugs/2567> Unknown
> Security Model*
>
> *Status:* open
> *Group:* 64-bit
> *Created:* Fri Aug 08, 2014 07:11 AM UTC by Ajay Ti
Hi All,
When I am sending the trap using command line, I am getting the error in
My Application as "Unknown Security Model : 3". My application code uses
net-snmp library.
I installed net-snmp package to generate the trap. Here is the trap I am using :
C:\usr\bin&g
il Siddharth
Sent: Wednesday, August 06, 2014 10:55 PM
To: net-snmp-users@lists.sourceforge.net
Cc: Rohit Santoshi - ERS, HCL Tech
Subject: net-snmp Trap Error : Unknown Security Model
Hello,
My Application is not receiving the SNMPV3 traps and the logs which I can see
has "Unknown Security
in the snmptrapd.conf(5) man page.
In particular, the description of the "authuser" directive.
Dave
--
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and
be compassionate, to have it make some difference that you have lived and
lived well". (Ralph Waldo Emerson)
>
> From: Chris Bartram
>To: "net-snmp-users@lists.sourceforge.net"
>
>Sent: Monday, July 2, 2012 8:41 AM
>Subject
Is there an up-to-date tutorial online somewhere on setting up Net SNMP SNMPv3
agents on RHEL5 systems? Full encryption/ AES security - plus certificates? -
and something I can easily replicate across hundreds of systems?
I've found lots of "tutorials" online - many with conflic
Hi,
I have some trouble with snmpv3 configration.
I am using MG-SOFT MIB Brower 4.9. And I created a snmpv3 user, but
the message always like that:
Synchronize:
SNMPv3 report received from remote agent.
Security engine ID updated.
User profile name: no1
Security user name: mifi
Security
nity public
engineIDType 3
From: Brian Jones [mailto:babe...@gmail.com]
Sent: Thursday, October 20, 2011 2:13 PM
To: Gary Dunlap
Cc: -snmp-us...@lists.sourceforge.net
Subject: Re: net-snmp security conundrum
How do you handle the case of a user created via snmp from a remote station?
In this ca
I tried a similar snmpusm command, and it's rejected with an authorization
error, with "access denied to that object". I don't really know enough about
usm/vacm, etc. to know what prevents another user from being created. If
there's a security hole here I'd defin
From: Gary Dunlap
Sent: Thursday, October 20, 2011 2:03 PM
To: 'Brian Jones'
Cc: '-snmp-us...@lists.sourceforge.net'
Subject: RE: net-snmp security conundrum
Are you talking about snmpd? I just edit/recreate snmpd.conf to match the
users defined in the GUI, then give snmpd
te:
> I tried a similar snmpusm command, and it's rejected with an authorization
> error, with "access denied to that object". I don't really know enough about
> usm/vacm, etc. to know what prevents another user from being created. If
> there's a security ho
mgmtprivate included .1.3.6.1.4
>
> rocommunity public default -V mgmtprivate
>
> rwcommunity private default -V mgmtprivate
>
> trapcommunity public
>
> engineIDType 3
>
>
>
> From: Brian Jones [mailto:babe...@gmail.com]
> Sent: Thursday, October 20, 2011 2:13 PM
> To
>
> ** **
>
> *From:* Brian Jones [mailto:babe...@gmail.com]
> *Sent:* Thursday, October 20, 2011 1:46 PM
> *To:* net-snmp-users@lists.sourceforge.net
> *Subject:* net-snmp security conundrum
>
> ** **
>
> I am trying to write a GUI for net-snmp on a FreeBS
I am trying to write a GUI for net-snmp on a FreeBSD based appliance and I
am struggling with the security model. The way I see it, I can
create/modify usmUsers in one of two ways.
1) via directly editing the static and persistent config files
2) via commands like snmpuser
If I chose method 1
On Thu, Oct 14, 2010 at 4:46 PM, slowpoison wrote:
> On Thu, Oct 14, 2010 at 12:51 PM, Wes Hardaker
> wrote:
> > That really means that in the agent in order to create a new SNMPv3/USM
> > user you need to have an existing one to "clone" from. It's a boot
> > strapping issue mostly (you have to
> On Thu, 14 Oct 2010 13:46:46 -0700, slowpoison
> said:
s> Right. I understand that to create a user via snmpusm, one would
s> always need an "initial" user. I'm asking if there is a non-snmpusm
s> way to create the users. I know I can write "createUser" tokens into
s> snmpd.conf, but t
> From: slowpoison [mailto:slowpoi...@slowpoison.net]
> always need an "initial" user. I'm asking if there is a non-snmpusm
> way to create the users. I know I can write "createUser" tokens into
> snmpd.conf, but that would mean re-starting snmpd every time a user is
> added. I'm trying to a
On Thu, Oct 14, 2010 at 12:51 PM, Wes Hardaker
wrote:
> That really means that in the agent in order to create a new SNMPv3/USM
> user you need to have an existing one to "clone" from. It's a boot
> strapping issue mostly (you have to authenticate with something ("a
> user") in order to create a
VV> I read in the snmpusm manual that I need to have an "initial" user
VV> to create additional users. I am wondering about the security
VV> implications of this requirement. Seems like I will have to
VV> hard-code the snmpv3 password in the application I'm writing
I read in the snmpusm manual that I need to have an "initial" user to create
additional users. I am wondering about the security implications of this
requirement. Seems like I will have to hard-code the snmpv3 password in the
application I'm writing to wrap the snmpv3 user cr
> It took me a while to realize what you were missing. It's a rather
> important line:
>
>init_snmp("snmpapp");
*facepalm*
That was the problem all right. Thanks a bunch.
Note to self: If you C&P a piece code, then realize you did something
wrong and have to re-structure it, make sure to c
> On Fri, 23 Oct 2009 17:44:15 +0200, "Schmidt-Goertz, Ulrich"
> said:
US> I am trying to write a program that uses SNMP SET (v3) to modify an
US> agent's configuration. Being a total SNMP newbie, I took the example
US> code from the wiki and re-wrote it to perform a SET instead of a GET
http://pastebin.com/m2dbf4e2d
Now here's the problem: Whenever my program attempts to send the SET
message, I get the following output on stderr:
no such security service available: 3
snmp_build: unknown failure
Accordingly, snmp_synch_response returns 1 and the response PDU is NULL.
Now I'm
> From: Samer Vazdekis [mailto:sbazd...@hotmail.com]
> Sent: Thursday, August 27, 2009 6:45 PM
> I'm defining the community name for SNMPv1 and SNMPv2c. I'm also
> defining the security name and authorization passwords in snmpd.conf.
> Now, I have scripts that call snmp
2009/8/28 Samer Vazdekis :
> But, what about SNMPv3? If the default password is defined in snmp.conf,
> won't the external request get the default password and hence they don't
> need to give one. Making it trivial to access the box without a password of
> their own? Is
But, what about SNMPv3? If the default password is defined in snmp.conf, won't
the external request get the default password and hence they don't need to give
one. Making it trivial to access the box without a password of their own? Is
this a security threat?
Thanks for your time.
2009/8/28 Samer Vazdekis :
> would external snmp requests make
> it's way to the device without verification of community name or security
> credentials because they are already defined as defaults in snmp.conf?
It makes absolutely no differe
Hi guys,
I'm defining the community name for SNMPv1 and SNMPv2c. I'm also defining the
security name and authorization passwords in snmpd.conf. Now, I have scripts
that call snmp commands. Now, since the community name and other parameters can
change by configuration, I don't
> From: Amar Mudrankit [mailto:amar.mudran...@gmail.com]
> Sent: Sunday, July 05, 2009 8:25 PM
> I am trying to configure snmp security in such a way that one
> user should only
> get view of ucd MIB in the following way.
>
> <>
>
> createUser cac
I am trying to configure snmp security in such a way that one user should only
get view of ucd MIB in the following way.
<>
createUser cacti MD5 "xyz" DES xyz
com2sec cacti 10.10.3.70 cacti-www
group cacti-grp usm cacti
view
2009/6/29 PoWah Wong :
> Adding the engineID to the 'createUser' line make the snmptrap v3 works.
> Thanks!
> createUser -e 0x0102030405 admin MD5 12345678 DES 87654321
>
> How do the snmptrapd know the engine ID of the sendtrap application?
The two sides of the conversation need to agree on the
--- On Sun, 6/28/09, Dave Shield wrote:
> From: Dave Shield
> Subject: Re: snmptrapd.conf: Error: bad security level (noauthnopriv,
> authnopriv, authpriv)
> To: "PoWah Wong"
> Cc: "net-snmp-users"
> Received: Sunday, June 28, 2009, 4:07 AM
> 2009/
2009/6/27 PoWah Wong :
> However, sending a v3 trap
> "snmptrap -e 0x0102030405 -v 3 -u admin -l auth -a MD5 -A 12345678
> 172.20.11.72 42 coldStart.0"
> or
> "snmptrap -e 0x0102030405 -v 3 -u admin 172.20.11.72 42 coldStart.0"
Note that these include an explicit engine ID
> do not see any
--- On Fri, 6/26/09, Dave Shield wrote:
> From: Dave Shield
> Subject: Re: snmptrapd.conf: Error: bad security level (noauthnopriv,
> authnopriv, authpriv)
> To: "PoWah Wong"
> Cc: "net-snmp-users"
> Received: Friday, June 26, 2009, 4:15 PM
> The -d
go. That is definitely worth
keeping for now, until you manage to get traps received
successfully. Then you can start putting back these security
checks.
But the first thing is to ensure that traps are being received
by snmptrapd.
Alternatively, as Mike suggests, you could add an "
> From: PoWah Wong [mailto:wong_po...@yahoo.ca]
> Sent: Friday, June 26, 2009 9:47 AM
> snmptrapd.conf is as follows:
> createUser admin MD5 12345678 DES 87654321
> createUser adminwindows MD5 12345678 DES 87654321
>
> authuser log admin
> logOption s u
For v1/v2c, add "authCommunity lo
--- On Fri, 6/26/09, Dave Shield wrote:
> From: Dave Shield
> Subject: Re: snmptrapd.conf: Error: bad security level (noauthnopriv,
> authnopriv, authpriv)
> To: "PoWah Wong"
> Cc: "net-snmp-users"
> Received: Friday, June 26, 2009, 6:11 AM
> 2009/
2009/6/24 PoWah Wong :
>> Next - try sending the trap using
>>
>> snmptrap -e 0x0102030405 -v 3 -u admin -l
>> noauth 172.20.11.72 42 coldStart.0
>>
>> Do you see the trap logged or not?
>> If yes, what about
>>
>> snmptrap -e 0x0102030405 -v 3 -u admin -l
>> auth
--- On Wed, 6/24/09, Dave Shield wrote:
> From: Dave Shield
> Subject: Re: snmptrapd.conf: Error: bad security level (noauthnopriv,
> authnopriv, authpriv)
> To: "PoWah Wong"
> Cc: "net-snmp-users"
> Received: Wednesday, June 24, 2009, 10:27 AM
> 20
2009/6/24 PoWah Wong :
>> What happens if you replace the "authUser" line with an
>> entry
>>
>> disableAuthorization yes
>>
>> and restart the trap receiver (without the '-d' flag)
> My trap config file, restart the trap receiver but do not see traps logged:
Ok - so the problem is nothing
--- On Wed, 6/24/09, Dave Shield wrote:
> From: Dave Shield
> Subject: Re: snmptrapd.conf: Error: bad security level (noauthnopriv,
> authnopriv, authpriv)
> To: "PoWah Wong"
> Cc: "net-snmp-users"
> Received: Wednesday, June 24, 2009, 9:54 AM
> 200
og,execute admin /home/powah/snmp/trapstouch test
No - that won't work.
Check the syntax of the "authuser" directive:
authUser
TYPES (log,execute)
[-s MODEL]
USER(admin)
LEVEL (/home/powah/snmp/trapstouch)
> /home/powah/snmp/snmp
--- On Wed, 6/24/09, Dave Shield wrote:
> From: Dave Shield
> Subject: Re: snmptrapd.conf: Error: bad security level (noauthnopriv,
> authnopriv, authpriv)
> To: "PoWah Wong"
> Cc: "net-snmp-users"
> Received: Wednesday, June 24, 2009, 3:26 AM
>
2009/6/23 PoWah Wong :
> I send a test trap with netsnmp 4.5.2.1 on FC6 linux as follows:
> snmptrap -e 0x0102030405 -v 3 -u admin -l authPriv -a MD5 -A 12345678 -x DES
> -X 87654321 172.20.11.72 42 coldStart.0
>
> The wireshark program running on 172.20.11.72 capture this trap.
> However, no trap
tration != duplicate" failed agent_registry.c:535
netsnmp_subtree_load()
netsnmp_assert !"registration != duplicate" failed agent_registry.c:535
netsnmp_subtree_load()
/home/powah/snmp/snmptrapd.conf: line 4: Error: bad security level
(noauthnopriv, authnopriv, authpriv)
/home/powah/snmp/
ring it
longer as it's just filling up mailing boxes!)
ac> From the ethereal logs i can see 1st request it send to snmp device has
ac> security name as (Initial).
ac> Next request onwards it sends my username (eg;:"devicetest") along
ac> with auth and priv keys.
a
Hi,
I am using I-reasoning MIB browser .
>From the ethereal logs i can see 1st request it send to snmp device has
security name as (Initial).
Next request onwards it sends my username (eg;:"devicetest") along with auth
and priv keys.
Is "Inital"security name used to
Hi,
I am using I-reasoning MIB browser .
>From the ethereal logs i can see 1st request it send to snmp device has
security name as (Initial).
Next request onwards it sends my username .
I knew Inital security name used to discover the engine id device.
Please any one tell what will be
> From: Pachiappan D [mailto:dpachiap...@gmail.com]
> Sent: Monday, April 13, 2009 8:58 AM
> I am extending the net-snmp agent (5.4.1).
>
>
> RFC 3414 allows the following security postures ,
> 1. minimum-secure
>
> 2.semi-s
Can anyone please advice me on this ?
-Pachi-
On 4/8/09, Pachiappan D wrote:
>
> Hi,
> I am extending the net-snmp agent (5.4.1).
>
> RFC 3414 allows the following security postures ,
> 1. minimum-secure
> 2.semi-secure
> 3.very-secure (i.e., no-initial-configura
2009/3/24 sanjaykumar :
> I am configuring the net-snmp-5. 4.2.1. I am trying to enable
> authentication and privacy.
You need to have the OpenSSL library installed.
If that's available, then configure will pick this up and
enable full authentication/privacy automatically.
> For that
Hi All,
I am configuring the net-snmp-5. 4.2.1. I am trying to
enable authentication and privacy.
For that I found a MACRO: "NETSNMP_USE_INTERNAL_MD5".
What does mean :
Does it necessary to define the above macro to support the AUTH feature
?
or net-snmp support the auth featur
> On Thu, 12 Feb 2009 13:50:10 -0800, "Wayne Liu"
> said:
WL> In general where can I get info on files changes from one release to
WL> another, other than doing a brute-force diff on the source files?
The brute-force diff is the only available patch at the moment, sorry...
WL> Is th
Hello All;
Release 5.3.2.3 NEWS has the following description:
snmpd:
- SECURITY ISSUE: A bug in the getbulk handling code could let
anyone with even minimal access crash the agent.
Can someone please tell me what's the bug/patch number(s) corresponding
to this fix.
In ge
Cc: net-snmp-users@lists.sourceforge.net
Subject: Re: Netsnmp Security issue
2008/7/31 Joan Landry <[EMAIL PROTECTED]>:
> Why should the -I option have an impact on the master agent doing
> authentication?
Because the authentication and access control functions are
implemented
2008/7/31 Joan Landry <[EMAIL PROTECTED]>:
> Why should the -I option have an impact on the master agent doing
> authentication?
Because the authentication and access control functions are
implemented as (optional) modules. If you omit these module
from the master agent, then it won't do authent
-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On
Behalf Of Dave Shield
Sent: Thursday, July 31, 2008 8:18 AM
To: Joan Landry
Cc: net-snmp-users@lists.sourceforge.net
Subject: Re: Netsnmp Security issue
2008/7/31 Joan Landry <[EMAIL PROTECTED]>:
> I want netsnmp to handle certain par
2008/7/31 Joan Landry <[EMAIL PROTECTED]>:
> I want netsnmp to handle certain parts of the mib tree so I start it up
> with the following cmd line:
[snip]
> When I do this net-snmp ignores the authentication in the snmpd.conf
> with respect to the users I allow access via the com2sec option.
All,
I want netsnmp to handle certain parts of the mib tree so I start it up
with the following cmd line:
./snmpd -f -Le -I
snmpEngine,snmpMPDStats,at,ip,snmp_mib,tcp,icmp,udp,setSerialNo,ipCidrRo
uteTable,tcpConnectionTable
I want the subagnet to handle the rest of the mib tree.
When I do this
R, sc_check_keyed_hash_quit);
>}
>
> to the v5.2.1/snmplib/scapi.c to accomplish the security bug.
Yes.
That's exactly what you need to do.
Dave
-
Check out the new SourceForge.net Marketplace.
It's the be
Hi,
I am an employee in Motorola. And we are imformed of the " SECURITY
RELEASE: Multple Net-SNMP Versions Released", however, we couldn't find
the patch for the net-snmp-5.2.1.
Becuase we are using the version of net-snmp-5.2.1, so we wonder if we
could get a patch for
> On Tue, 10 Jun 2008 13:15:02 +0100, <[EMAIL PROTECTED]> said:
hk> Thanks for the update. I just downloaded v5.3.2.1. The version number is
hk> still reported as 5.3.2.
Unfortunately, I missed one file in the version update. I caught it
later and it's correct in the SVN snapshot but isn't i
Hi,
Thanks for the update. I just downloaded v5.3.2.1. The version number is
still reported as 5.3.2. And the CHANGES file doesn't include an entry
for 5.3.2.1 (NEW does though).
Regards,
Holger
Holger Klaas
BT Exact
tel (01473) 642135
fax (01473) 641333
web http://www.bt.com
_
I regret to inform you about multiple new releases of the Net-SNMP
suite. There is a ***CRITICAL SECURITY ISSUE*** that appears in the
SNMPv3 implementation that exists in every release made since the
SNMPv3 code was written (which includes all versions of UCD-SNMP and
Net-SNMP beyond version
On 17/04/2008, <[EMAIL PROTECTED]> wrote:
> Does any one let me know how to access SecurityString
What do you mean by "SecurityString"
> in mib2c generated Subagent source code?
If you're working in an AgentX subagent, then this isn't possible.
The SNMP administrative information is not
Hi,
Does any one let me know how to access SecurityString in mib2c
generated Subagent source code?
I am using iterator helper for generating my subagent code.
Thanks
Krishna
-
This SF.net email is sponsored by the
've removed all
of the IP address information.
~ Wendy
Hope your chamber music "marathon" went well!
-Original Message-
From: Dave Shield [mailto:[EMAIL PROTECTED]
Sent: Monday, January 21, 2008 6:53 AM
To: McGowen, Wendy
Cc: net-snmp-users@lists.sourceforge.net
Subject
On 14/01/2008, McGowen, Wendy <[EMAIL PROTECTED]> wrote:
> We'll be allowing the user to configure the SNMP security through our UI
> (which does NOT use SNMP), so we're hoping to keep it as simple as possible.
> I've been testing with what I guess is called "
So it sounds like the first approach is acceptable for read-only data.
Are most SNMP savvy customers going to want the added security of
limiting the IP addresses that can access the data, even if it's
read-only? That's what it boils down to, what the customers are going to
want.
May
Mike Ayers wrote:
>> From: [EMAIL PROTECTED]
>> [mailto:[EMAIL PROTECTED] On
>> Behalf Of Davin
>> Sent: Monday, January 14, 2008 10:59 AM
>
>> I'd
>> stick with
>> 2c unless you have a real reason to use 1, and I don't belief this
>> qualifies.
>
> I don't know why you'd say this. Al
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On
> Behalf Of Davin
> Sent: Monday, January 14, 2008 10:59 AM
> I'd
> stick with
> 2c unless you have a real reason to use 1, and I don't belief this
> qualifies.
I don't know why you'd say this. Almost anything which supports
irst release.
>
>
>
> We’ll be allowing the user to configure the SNMP security through our UI
> (which does NOT use SNMP), so we’re hoping to keep it as simple as
> possible. I’ve been testing with what I guess is called “v2” security –
> where you have to list IP addresses
I've implemented the first round of our SNMP agents - we'll be
supporting get's only, along with traps; no set's will be supported for
the first release.
We'll be allowing the user to configure the SNMP security through our UI
(which does NOT use SNMP), so we're
Hi all !!!
I have the next code to open an SNMP session. I am doubting about the
security model I am using. Is it SBSM or USM? Is SBSM implemented yet?
Thanks a lot.
Gemma S Anton
netsnmp_session *abre_sesion (char *IP_agente)
{
FILE *flog;
netsnmp_session *psesion
just removing the line 'vp->val_len *= sizeof(oid);', but that
didn't fix things either. If anyone has a correct fix for these two issues
I would greatly appreciate it.
Thanks
From: "mike johnson" <[EMAIL PROTECTED]>
To: net-snmp-users@lists.sourceforge.net
): callback.c, 318:
callback: calling a callback for maj=1 min=5
trace: vacm_check_view(): mibgroup/mibII/vacm_conf.c, 1243:
mibII/vacm_vars: vacm_in_view: ver=1, community=public
trace: vacm_check_view(): mibgroup/mibII/vacm_conf.c, 1341:
mibII/vacm_vars: vacm_in_view: No security name found
trace:
Hello
I'm trying to write an application to configure AT-8326GB switches on my
network to enable/disable MAC addresses on ports via SNMP. I'm new to
SNMP and net-snmp. I have the MIB file, but I don't know if I'm able to
set port security and assign MAC addresses using
>>>>> On Fri, 28 Apr 2006 15:11:32 +0100, "Tripathi Anoop-A18046" <[EMAIL
>>>>> PROTECTED]> said:
Tripathi> i intend to use Net-Snmp for realizing snmp v3 agent, and i
Tripathi> need to understand if the Net-Snmp code has been certified
Hi
i intend to use Net-Snmp for realizing snmp v3 agent, and i need to
understand if the Net-Snmp code has been certified to be Secure by some security
organization
in particular i'm interested in the security certification from
CERT.
thanks and
regards
anoop.
> On Wed, 22 Feb 2006 17:57:23 +0100, "talpun talp" <[EMAIL PROTECTED]>
> said:
talpun> we are tryng to configure net-snmp for snmpv3.
talpun> We have some problem with usm user. Into snmpd.conf I inserted the
talpun> statement:
talpun> createUser -e 0x1234567890 maurizio MD5 1234567890
1234567890 -u maurizio -a MD5 -A 1234567890 -l
authNoPriv 10.17.252.27 sysName.0
It returns the following error:
snmpget: USM unknown security name (no such user exists) (Sub-id not found:
(top) -> sysName)
My snmpd.conf is:
##
rwuser maurizio auth
For those who aren't subscribed to the net-snmp-announce list:
Begin forwarded message:
Date: Fri, 13 Jan 2006 19:25:27 -0800
From: Wes Hardaker <[EMAIL PROTECTED]>
To: net-snmp-announce@lists.sourceforge.net
Subject: SECURITY FIX: net-snmp 5.3.0.1 is released
In version 5.3
On Tue, 15 Mar 2005 20:31:18 -0500 Chuck wrote:
CC> The system mib also gives a timeout message.
CC>
CC> I have the net-snmp snmpd running, and an agentx subagent running. I am
CC> able to query my mib (with snmpwalk) and get expected responses. But this
CC> is on the localhost. I have my firew
> On Wed, 30 Mar 2005 09:32:36 +0530, Jude Amal Anand <[EMAIL PROTECTED]>
> said:
Jude> But even in the AGENT CODE i wrote i saw only
Jude> send_v2trap(var_list);
That actually is an API not for sending SNMP version traps, but PDU
version traps. SNMPv3 makes use of version 2 PDUs and t
-- Forwarded message --
From: Jude Amal Anand <[EMAIL PROTECTED]>
Date: Sun, 13 Mar 2005 00:27:36 +0530
Subject: Security??
To: snmp
I am using the latest version of NET-SNMP.
I have written the MIB and a small AGENT which sends TRAPs regularly
for every 30 seconds.
I
agentx subagent running. I am
able to query my mib (with snmpwalk) and get expected responses. But this
is on the localhost. I have my firewall turned off.
I think my net-snmp security is not configured correctly. Can anyone
provide a net-snmp security primer or provide a simple security file
I am using the latest version of NET-SNMP.
I have written the MIB and a small AGENT which sends TRAPs regularly
for every 30 seconds.
I heard SNMP v 3 employs SECURITY / AUTHORISATION .
But even in the AGENT CODE i wrote i saw only
send_v2trap(var_list);
1. How can I authorise who shud view
96 matches
Mail list logo