Configuration Guide User guide
FastIron Configuration Guide 421
53-1002494-02
Chapter
10
SNMP Access
Table 76 lists individual Brocade switches and the SNMP access methods they support. These
features are supported in the Layer 2, base Layer 3, edge Layer 3, and full Layer 3 software
images, except where explicitly noted.
SNMP overview
SNMP is a set of protocols for managing complex networks. SNMP sends messages, called protocol
data units (PDUs), to different parts of a network. SNMP-compliant devices, called agents, store
data about themselves in Management Information Bases (MIBs) and return this data to the SNMP
requesters.
Chapter 4, “Security Access” introduced a few methods used to secure SNMP access. They
included the following:
• “Using ACLs to restrict SNMP access” on page 114
• “Restricting SNMP access to a specific IP address” on page 116
• “Restricting SNMP access to a specific VLAN” on page 119
• “Disabling SNMP access” on page 124
This chapter presents additional methods for securing SNMP access to Brocade devices. It
contains the following sections:
• “SNMP community strings”
• “User-based security model”
• “SNMP v3 configuration examples”
• “SNMP version 3 traps”
• “Displaying SNMP Information”
• “SNMP v3 configuration examples”
TABLE 76 Supported SNMP access features
Feature FESX
FSX 800
FSX 1600
FWS FCX ICX 6610 ICX 6430
ICX 6450
SNMP v1, v2, v3 Yes Yes Yes Yes Yes
Community strings Yes Yes Yes Yes Yes
User-based security model for SNMP v3 Yes Yes Yes Yes Yes
SNMP v3 traps Yes Yes Yes Yes Yes
Defining the UDP port for SNMP v3 traps Yes Yes Yes Yes Yes
SNMP v3 over IPv6 Yes Yes Yes Yes Yes
AES encryption for SNMP v3 Yes Yes Yes Yes Yes