MES3000 Ethernet switch series
141
snmp-server community
community
[view
viewname
]
[ro | rw | su]
[
ipv4_address
|
ipv6_address
|
ipv6z_address
]
[
mask
|
prefix_length
]
[use-acl
ip_acl_name
] snmp-server
community-group
community
groupname
[
ipv4_address
|
ipv6_address
] [
mask
|
prefix_length
]
community:(1..20)
characters;
viewname: (1..30)
characters;
groupname: (1..30)
characters;
mask:
/255.255.255.255;
prefix_length: -/32;
ip_acl_name: (1..32)
characters;
format:
IPv4: A.B.C.D
IPv6: X:X:X:X::X
IPv6z:X:X:X:X::X%<ID>
Define the community string value for SNMP data exchange.
-
community
—community string (password) for access via SNMP
-
ro
—read-only access
-
rw
—read-write access
-
su
—administrator access
-
viewname
—define the name for SNMP browsing rule, that should
be pre-configured with the
snmp-server view
command. Define
objects available to the community.
-
ipv4
_address, ipv6_address, ipv6z_address— device IP address
-
mask—
IPv4 address mask, that defines source address bits to be
compared to the specific IP address
-
prefix_length
—number of bits that comprise IPv4 address prefix
-
ip_acl_name
—name of the existing ACL list
-
groupname
—define the name of the group that should be pre-
configured with the
snmp-server group
command. Define objects
available to the community.
no snmp-server community
community
[
ipv4_address
|
ipv6_address
|
ipv6z_address
]
Remove community string parameters.
snmp-server view
view_name
OID
{included | excluded}
view_name: (1..30)
characters
Create or edit SNMP browsing rule—the rule that allows or restricts
the browsing server to access OID.
-
OID
—MIB object identifier, represented as ASN.1 tree (string type
1.3.6.2.4, may include reserved words, e.g.: system, dod). '*' symbol
allows to describe the sub-tree family: 1.3.*.2)
-
include
—OID is included in the browsing rule
-
exclude
—OID is excluded from the browsing rule
no snmp-server view
view_name
[
OID
]
Remove browsing rule for SNMP
snmp-server group
groupname
{v1 | v2 | v3 {noauth | auth |
priv} [notify
notifyview
]} [read
readview
] [write
writeview
]
groupname: (1..30)
characters;
notifyview: (1..30)
characters;
readview: (1..30)
characters;
writeview: (1..30)
characters
Create SNMP group or match table for SNMP users and SNMP
browsing rules.
-
v1,v2,v3
—SNMP v1, v2, v3 security model
-
noauth, auth, priv
—authentication type used by SNMP v3
(noauth—w/o
authentication,
auth—authentication
w/o
encryption, priv—encrypted authentication)
-
notifyview
—name of the browsing rule that is allowed to specify
inform and trap SNMP agent messages
-
readview
—name of the browsing rule that is allowed to read
switch SNMP agent content
-
writeview
—name of the browsing rule that is allowed to enter the
data and to configure switch SNMP agent contents
no snmp-server group
groupname
{v1 | v2 | v3
[noauth | auth | priv]}
Remove SNMP group
snmp-server user
username
groupname
{v1 | v2c | remote
host
v3 | v3
[encrypted]
[auth
{md5 | sha}
auth_password
]}
username: (1..20)
characters;
groupname: (1..30)
characters;
engineid_string: (5..32)
characters;
auth_password: (1..32)
characters;
md5: 16 or 32 bytes;
sha: 20 or 36 bytes;
IPv4: A.B.C.D;
IPv6: X:X:X:X::X;
IPv6z: X:X:X:X::X%<ID>
Create SNMPv3 user.
-
username
—username
-
groupname
—group name
-
engineid_string
—remote SNMP device identifier that the user
belongs to
-
auth_password
—authentication and key generation password
-
md5
—MD5 key
-
sha
—SHA key
-
host
—IP address/host name
no snmp-server user
username
[
remote
engineid_string
]
Remove SNMPv3 user.
snmp-server filter
filter_name
OID
{
included
|
excluded
}
filter_name: (1..30)
characters
Create or edit SNMP filter rule that allows to filter inform and trap
messages sent to SNMP server.
-
filter_name
—SNMP filter name
-
oid
—MIB object identifier, represented as ASN.1 tree (string type
1.3.6.2.4, may include reserved words, e.g.: system, dod. '*' symbol
allows to describe the sub-tree family: 1.3.*.2)
-
include
—OID is included in the filter rule
-
exclude
—OID is excluded from the filter rule