Foundry NetIron M2404C and M2404F Metro Access Switches
Configuring SNMP (Rev. 03)
Simple Network Management Protocol
© 2008 Foundry Networks, Inc.
Page 41 of 48
device-name
#
configure terminal
device-name
(config)#
snmp-server enable
2. Create snmp view, starting from the 1.3.6 object ID in the MIB tree:
device-name
(config)#
snmp-server view MyView 1.3.6 included
3. Create group
public_grp
with SNMP v1 security level and define the access
rights for the group:
device-name
(config)#
snmp-server group public_grp v1 read MyView write
MyView notify none
4. Define group
public_grp
with SNMP v2 security level and define the access
rights for the group:
device-name
(config)#
snmp-server group public_grp v2 read MyView write
MyView notify none
5. Define group
public_grp
with SNMP v3 authenticated and encrypted model
and define the access rights of the group:
device-name
(config)#
snmp-server group public_grp v3 priv read MyView
write MyView notify none
6. Display the created groups and access rights that were assigned above:
device-name
#
show snmp-server group
group name: public_grp security model:v1
read view: MyView write view: MyView
notify view: none row status: active
group name: public_grp security model:v2c
read view: MyView write view: MyView
notify view: none row status: active
group name: public_grp security model:v3 priv
read view: MyView write view: MyView
notify view: none row status: active
Defining Users and Assigning Users to Groups
The following example shows how to create users and join them to groups for the v3 security
models.
1. Enable the SNMP server:
device-name
#
configure terminal
device-name
(config)#
snmp-server enable
2. Create a user with name
public
and attach it to the group
public_grp
for the
user security model v1
.
The restrictions of the v1_read, v1_write views will be
applied on the SNMPv1 PDUs received with the community name
public
.
device-name
(config)#
snmp-server user public group public_grp v1
3. Attach the user
public
to the group
public_grp
for the security model v2. The
restrictions of the v2_read, v2_write views will be applied on the SNMPv2c