Posted on March 29, 2021 5:23 pm
 |  Asked by Andrew McBride
 |  48 views
0
0
Print Friendly, PDF & Email

Hi all,

I am configuring a 7050 switch on 4.24.4M for snmp v3. Is there a command to include all mibs instead of having to specify exactly which ones I want the manager to poll?

 

Thanks!

Andy

0
Answered on March 30, 2021 7:03 am

Hi Andy,

Thanks for reaching out.

We can walk the SNMPv3 entire MIB tree by issuing below commands:

switch(conf)#bash   --->Enter bash mode

[admin@switch ~]$snmpwalk -v3 -l authPriv -u bhavana -a SHA -A vbtxKc08dj1k9Amn45IA29dhXREBdVaw -x AES -X n0kAnXLyuLZi2SggoD8QXzcRagTNU3H5 switch . 

[ . ]  represents to walk the entire MIB tree from top to bottom.

Here switch represents hostname of the device.

Output:

LLDP-MIB::lldpStatsRxPortAgeoutsTotal.218 = Gauge32: 0
LLDP-MIB::lldpStatsRxPortAgeoutsTotal.219 = Gauge32: 0
LLDP-MIB::lldpStatsRxPortAgeoutsTotal.220 = Gauge32: 0
LLDP-MIB::lldpLocChassisIdSubtype.0 = INTEGER: macAddress(4)
LLDP-MIB::lldpLocChassisId.0 = Hex-STRING: 44 4C A8 C6 4D 45
LLDP-MIB::lldpLocPortIdSubtype.1 = INTEGER: interfaceName(5)
LLDP-MIB::lldpLocPortIdSubtype.2 = INTEGER: interfaceName(5)

<trimmed for brevity>
LLDP-EXT-DOT1-MIB::lldpXdot1ConfigPortVlanTxEnable.37 = INTEGER: true(1)
LLDP-EXT-DOT1-MIB::lldpXdot1ConfigPortVlanTxEnable.38 = INTEGER: true(1)

For SNMPv3 we need to setup username , authentication and privilege passcodes and then use the same on client side when communicating.We need below additional configs for SNMPv3 to setup username, auth and priv passcodes:

switch(config)#sh run sec snmp
snmp-server engineID local f5717f001c73c52c8f00
snmp-server community public ro
snmp-server group test v3 priv
snmp-server user bhavana test v3 localized f5717f001c73c52c8f00 auth sha e54969e048f45ea56e678999f6400985bcaefd07 priv aes 5292bfe389550146f9551635c74b54f519d5049d

You can refer to the below  EOS manual for SNMPv3 configurations:

https://www.arista.com/en/um-eos/eos-snmp

 

However for SNMPv2 we don't require username/auth/priv passcodes.we can walk the entire SNMPv2 MIB tree by just issuing below command:

switch(conf)#bash   --->Enter bash mode

[admin@switch ~]$snmpwalk -v2c -c public switch .

ENTITY-MIB::entPhysicalDescr.100349233 = STRING: DOM RX Power Sensor for Ethernet49/3
ENTITY-MIB::entPhysicalDescr.100349240 = STRING: Lane 3 for Xcvr for Ethernet49
ENTITY-MIB::entPhysicalDescr.100349241 = STRING: DOM TX Bias Sensor for Ethernet49/4
ENTITY-MIB::entPhysicalDescr.100349243 = STRING: DOM RX Power Sensor for Ethernet49/4

<trimmed for brevity>

ENTITY-MIB::entPhysicalParentRelPos.100006004 = INTEGER: 4
ENTITY-MIB::entPhysicalParentRelPos.100006005 = INTEGER: 5

SNMPv3 differs from SNMPv2 only in terms of securing the packets, however the end O/P's will remain the same.

 

Thanks,

Bhavana.

0
Posted by Andrew McBride
Answered on April 12, 2021 2:57 pm

Thanks for the feedback on this!

I am a bit stuck on the "snmp-server view viewname include ..." command.

Is there a documented list of allowed MIB or object names? For example I could configure:

'snmp-server view Zenoss-View snmpv2 included' or even:

'snmp-server view Zenoss-View bobsmib included' even though bobsmib is not an actual mib.

My question then is how do I know how to include MIB-2 since hyphens are not allowed in the command. The command allows MIB2 but it also allows anything without a hyphen. How do I know exactly what the allowed BIB name should be?

Post your Answer

You must be logged in to post an answer.