Chapter 4: Remote Management HTTP and SNMP
Variables in the groups: interface, ds3, dot3 & mau, control the
link datapath; allowing write access allows disabling the link.
Specific variables disabled for all write users are secure.
Specific statistics disabled for all read users are invisible
and secure.
HTTP Management
The converter contains a comprehensive, user-friendly HTTP management interface which allows a
manager to monitor bit-error-rates on the DS3/E3 link, lost packets, and user-friendly status messages at a
single, color-coded HTTP screen. A screenshot is available at
www.e3switch.com
. Most settings that can
be modified via SNMP can also be set through the HTTP interface in a more user-friendly manner.
Refer to the configuration section of this document for guidance on specific settings.
Event Log File
A timestamped log of operating status and events may be accessed at the HTTP management administration
page.
Resetting
Two options for resetting the converter may be accomplished at the HTTP management administration
page. A management software reset will reset counters, statistics, MIB variables, and management software
of the converter without interrupting data flow across the link. A hardware reset will temporarily interrupt
link data flow as if the converter had experienced a power cycle. A hardware reset is only possible with
hardware version 5.4 or greater and firmware since July 29
th
, 2008 as shown at the HTTP management
screen or SNMP sysDescr variable. For new functionality to take effect, a hardware reset is required after
upgrading firmware but need not be initiated immediately. A software reset is not appropriate after
upgrading firmware, as only the management CPU would be reset while the packet transfer CPU would be
operating with the older, incompatible version of firmware.
SNMP
The converter contains an SNMP agent which can respond to version 1 and version 2c requests for network
statistics from remote SNMP clients. The agent can also generate notifications of important network events
such as when network ports go up/down or experience high error rates. These trap notifications can be sent
to multiple hosts if desired, and using free or commercial software, the receiving hosts can log the
notifications or even generate email or pager messages for network managers.
SNMPv2c is inherently an insecure protocol, so the converter implements VACM to restrict access to
“safe” statistics and settings. Please refer to the security discussion section of this document.
SNMP configuration of various parameters such as community names and trap destinations is accessed
through the HTTP management interface and is implemented as a configuration file having an snmpd.conf
structure. Snmpd.conf is described by third parties in publicly available documents.
Statistics and settings accessible via SNMP are called MIB-variables and are organized in a hierarchical
tree topology. The MIB variable trees implemented by the converter include recent versions of the DS3/E3,
interface, MAU, dot3, and many of the typical IP-network MIB trees. The full list of MIB trees available is
listed by viewing the system.sysORTable of the converter. As mentioned earlier, access to certain trees or
variables is initially disabled for security reasons, but can be set as the user wishes through the VACM
settings. The converter can typically return 1000 MIB variables per second in bulk requests and support
SNMP response message sizes up to 5000 bytes.
Upgrading Firmware
For activation of additional capabilities of the converter, see the “Feature Activation” section. Feature
upgrades do not necessarily require a firmware upgrade.
11
