02-15-2011 07:26 AM
Hi.
We are triying to restrict SNMP write community access in WAE devices. We want only some management platforms ip addresses will be able to access to wae devices using SNMP write community but we are unable to do it using GUI or CLI. CLI has "snmp-server access-list" command, but we don´t find the way to link it with "snmp-server community <...> rw" command.
Do you know the way to do it?
Thanks!!.
Solved! Go to Solution.
02-21-2011 03:50 AM
Hello,
snmp-server access-list is orhorogonal to the other snmp commands. It is applied before the request enters the snmp subsystem.
So if you only need to have that some servers can use snmp on the WAE you can use this to limit the access.
If you want some servers to have rw access and others only ro access you should use different communities.
I hope this helps, Peter
02-21-2011 03:50 AM
Hello,
snmp-server access-list is orhorogonal to the other snmp commands. It is applied before the request enters the snmp subsystem.
So if you only need to have that some servers can use snmp on the WAE you can use this to limit the access.
If you want some servers to have rw access and others only ro access you should use different communities.
I hope this helps, Peter
02-21-2011 04:44 AM
Hi Peter.
Thanks for your answer.
I have configured a SNMP read-only community and a second SNMP read-write-community. I´m looking for to allow to everybody SNMP read-only community access, and only two or three ip addresses could access to SNMP read-write community, using SNMP v2c. I have been testing with "snmp-server access-list
B.R.
02-21-2011 06:04 AM
Hello B.R.
There is no possibility to limit the rw community to a few hosts using the v2 infrastructure.
One would have to use snmpv3 to do something with a bit more security.
Sorry about this, Peter
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide