4000 Router Series Network Management and Monitoring Command Reference

ManualsBrandsHP ManualsNetwork HardwareHP MSR3024 TAA-compliant AC Router

151

152

153

154

155

156

157

158

159

160

142

Parameters

read: Assigns the specified community the read only access to MIB objects. A read-only community can

only inquire MIB information.

write: Assigns the specified community the read and write access to MIB objects. A read and write

community can configure MIB information.

simple: Sets a community name in plain text. For security purposes, this community name is saved in

cipher text.

cipher: Sets and saves the community name in cipher text.

community-name: Sets a case-sensitive community name. In plain text, the community name must be a

string of 1 to 32 characters. In cipher text, the community name must be a string of 33 to 73 characters.

Input a string as escape characters after a backslash (\).

mib-view view-name: Specifies the MIB view available for the community. The view-name argument

represents a MIB view name, a string of 1 to 32 characters. A MIB view represents a set of accessible

MIB objects. If no MIB view is specified, the specified community can access the MIB objects in the

default MIB view ViewDefault.

acl acl-number: Specifies a basic IPv4 ACL to filter NMSs by source IPv4 address. The acl-number

argument represents an ACL number in the range of 2000 to 2999. In the specified community, only

NMSs with an IPv4 address permitted in the ACL can access the SNMP agent. If no ACL is specified, the

specified ACL does not exist, or the specified ACL does not have any rules, all NMSs in the SNMP

community can access the SNMP agent. For detailed information about ACL, see ACL and QoS

Configuration Guide.

acl ipv6 ipv6-acl-number: Specifies a basic IPv6 ACL to filter NMSs by source IPv6 address. The

ipv6-acl-number argument represents an ACL number in the range of 2000 to 2999. In the specified

community, only NMSs with an IPv6 address permitted in the IPv6 ACL can access the SNMP agent. If

no ACL is specified, the specified ACL does not exist, or the specified ACL does not have any rules, all

NMSs in the SNMP community can access the SNMP agent.

Usage guidelines

This command is for SNMPv1 and SNMPv2c, and is applicable only to non-FIPS mode.

To set and save a community name in plain text, do not specify the simple or cipher keyword.

You can create up to 10 SNMP communities by using the snmp-agent community command. To create

more SNMP communities, use the snmp-agent usm-user { v1 | v2c } command.

An SNMPv1 or SNMPv2c community comprises a set of NMSs and SNMP agents, and is identified by

a community name. An NMS and an SNMP agent must use the same community name to authenticate

to each other.

Typically, public is used as the read-only community name and private is used as the read and write

community name. To improve security, assign your SNMP communities a name other than public and

private.

Examples

# Create the read-only community readaccess in plain text so an SNMPv1 or SNMPv2c NMS can use

the community name readaccess to read the MIB objects in the default view ViewDefault.

<Sysname> system-view

[Sysname] snmp-agent sys-info version v1 v2c

[Sysname] snmp-agent community read simple readaccess