10.
SNMP Server Configuration
MN700004 Rev 01
90
exact-match
Only the IPs with an exact match of the specified argument (used only for routing
protocols).
Example
The following example shows a basic filtering configuration:
device-name
(config)#
access-list filter deny 10.0.0.0/9
device-name
(config)#
access-list filter permit 10.0.0.0/8
Displaying the Named Access Lists
The
show access-lists
command, in Privileged (Enable) mode, displays the defined named
access lists.
Command Syntax
device-name
#
show access-lists
Example
The following example displays the defined rule for any routing protocol. The access list,
named
jiji
, permits access from any source. The access list, named
phone
, permits all
addresses from the range 34.34.34.6/16 that meet an exact match.
device-name
(config)#
access-list jiji permit any
device-name
(config)#
access-list phone permit 34.34.34.6/16
device-name
#
show access-lists
access-list jiji permit any
ccess-list phone permit 34.34.34.6/16
Assigning an Access List to a User
The
snmp-server access-list
command, in Global Configuration mode, assigns an access list
to the specified user. The
no
form of this command, removes the access list assigned to the
specified user.
The access list can permit or deny access to a user or according to the access list rule. The
access list rules contain a
permit
or
deny
action and a source IP address. To define the named
access list use the
access-list
command in Global Configuration mode. The defined access
lists can be viewed by the
show access-lists
command in Privileged (Enable) mode.
Command Syntax
device-name
(config)#
snmp-server access-list
USER-NAME ACL-NAME
device-name
(config)#
no snmp-server access-list
USER-NAME
Argument Description
USER-NAME
The user name.
ACL-NAME
The access list name.
Example
device-name
(config)#
access-list MyLyst permit 220.132.0.0/16
device-name
(config)#
snmp-server access list UN MyLyst