Manualshelf

R3721-F3210-F3171-HP High-End Firewalls System Management and Maintenance Configuration Guide-6PW101

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module
141142143144145146147148149150
139
[Firewall] snmp-agent mib-view included test interfaces
[Firewall] snmp-agent group v3 managev3group read-view test write-view test
[Firewall] snmp-agent usm-user v3 managev3user managev3group authentication-mode md5
authkey privacy-mode des56 prikey
# Configure contact person and physical location information for the Firewall.
[Firewall] snmp-agent sys-info contact Mr.Wang-Tel:3306
[Firewall] snmp-agent sys-info location telephone-closet,3rd-floor
# Enable traps, specify the NMS at 1.1.1.2 as a trap destination, and set the username to
managev3user for the traps.
[Firewall] snmp-agent trap enable
[Firewall] snmp-agent target-host trap address udp-domain 1.1.1.2 params securityname
managev3user v3 privacy
2. Configure the SNMP NMS:
{ Specify the SNMP version for the NMS as v3.
{ Create two SNMP users: managev3user and public.
{ Enable both authentication and privacy functions.
{ Use MD5 for authentication and DES for encryption.
{ Set the authentication key to authkey and the privacy key to prikey.
{ Set the timeout time and maximum number of retries.
For information about configuring the NMS, see the NMS manual.
NOTE:
The configurations on the Firewall and the NMS must match.
3. Verify the configuration:
{ After the above configuration, an SNMP connection is established between the NMS and the
Firewall. The NMS can get and configure the values of some parameters on the Firewall
through MIB nodes.
{ Execute the shutdown or undo shutdown command to an idle interface on the Firewall, and the
NMS receives the corresponding trap.
SNMP logging configuration example
Network requirements
C o n f i g u r e t h e F i r e w a l l (1.1.1.1 / 24 ) i n Figure 65 to log the SNMP operations performed by the NMS.
Figure 65 Network diagram