Cisco Router - Not Sending SNMP Traps

TW80CJ5 · ‎05-27-2021

I have a Cisco ISR 4431 Router running Fuji 16.9.7. I am not sending any snmp traps to my SNMP server. I have ran debug snmp detail and no information returns. See the configuration below that shows my snmp traps and the show snmp command.

I have the following snmp configuration:

!!!!!SNMP INFORMATION!!!!!
!
!
snmp-server location WEST_REGION
snmp-server view WEST_REGION_VIEW iso included
snmp-server group WEST_REGION v3 priv read WEST_REGION_VIEW write WEST_REGION_VIEW
snmp-server user WEST_REGION_USER WEST_REGION v3 auth sha Password123! priv aes 256 Password123!
snmp-server group WEST_REGION v3 priv context vlan match prefix
snmp-server host 192.168.10.45 traps version 3 priv WEST_REGION_VIEW udp-port 162
snmp-server source-interface traps Loopback10
snmp-server ifindex persist
snmp mib flash cache
!
snmp-server enable traps snmp authentication linkdown linkup coldstart warmstart
snmp-server enable traps vrrp
snmp-server enable traps pfr
snmp-server enable traps flowmon
snmp-server enable traps ds1
snmp-server enable traps entity-perf throughput-notif
snmp-server enable traps call-home message-send-fail server-fail
snmp-server enable traps tty
snmp-server enable traps casa
snmp-server enable traps license
snmp-server enable traps smart-license
snmp-server enable traps cef resource-failure peer-state-change peer-fib-state-change inconsistency
snmp-server enable traps memory bufferpeak
snmp-server enable traps config-copy
snmp-server enable traps config
snmp-server enable traps config-ctid
snmp-server enable traps dhcp
snmp-server enable traps fru-ctrl
snmp-server enable traps entity
snmp-server enable traps event-manager
snmp-server enable traps hsrp
snmp-server enable traps pimstdmib neighbor-loss invalid-register invalid-join-prune rp-mapping-change interface-election
snmp-server enable traps ipmulticast
snmp-server enable traps isis
snmp-server enable traps ip local pool
snmp-server enable traps msdp
snmp-server enable traps mvpn
snmp-server enable traps pim neighbor-change rp-mapping-change invalid-pim-message
snmp-server enable traps pppoe
snmp-server enable traps cpu threshold
snmp-server enable traps rsvp
snmp-server enable traps syslog
snmp-server enable traps l2tun session
snmp-server enable traps l2tun pseudowire status
snmp-server enable traps aaa_server
snmp-server enable traps atm subif
snmp-server enable traps pki
snmp-server enable traps ethernet evc status create delete
snmp-server enable traps ether-oam
snmp-server enable traps ethernet cfm cc mep-up mep-down cross-connect loop config
snmp-server enable traps ethernet cfm crosscheck mep-missing mep-unknown service-up
snmp-server enable traps entity-state
snmp-server enable traps entity-qfp mem-res-thresh throughput-notif
snmp-server enable traps adslline
snmp-server enable traps vdsl2line
snmp-server enable traps flash insertion removal lowspace
snmp-server enable traps srp
snmp-server enable traps entity-diag boot-up-fail hm-test-recover hm-thresh-reached scheduled-test-fail
snmp-server enable traps cnpd
snmp-server enable traps bfd
snmp-server enable traps bgp cbgp2
snmp-server enable traps ipsla
snmp-server enable traps auth-framework sec-violation
snmp-server enable traps bulkstat collection transfer
snmp-server enable traps alarms informational
snmp-server enable traps vrfmib vrf-up vrf-down vnet-trunk-up vnet-trunk-down
snmp-server enable traps ethernet cfm alarm
snmp-server enable traps rf
snmp-server enable traps transceiver all
!
!
!
!
!
FIELDOFF1-RTR-01#sh snmp
Chassis: FJC2424D0M5
Location: WEST_REGION
0 SNMP packets input
0 Bad SNMP version errors
0 Unknown community name
0 Illegal operation for community name supplied
0 Encoding errors
0 Number of requested variables
0 Number of altered variables
0 Get-request PDUs
0 Get-next PDUs
0 Set-request PDUs
0 Input queue packet drops (Maximum queue size 1000)
0 SNMP packets output
0 Too big errors (Maximum packet size 1500)
0 No such name errors
0 Bad values errors
0 General errors
0 Response PDUs
0 Trap PDUs
Packets currently in SNMP process input queue: 0
SNMP global trap: enabled

SNMP logging: enabled
Logging to 192.168.10.45.162, 0/10, 0 sent, 0 dropped.

marce1000 · ‎05-28-2021

- You don't show anything about configured (trap) communities :

https://community.cisco.com/t5/networking-documents/snmp-traps-are-not-sent-or-received/ta-p/3131340

>...

Your NMS displays traps only if the device uses the correct trap community string in its traps. Some trap listeners require the trap community to be the same as the read-only community string. Others are hard coded to only listen to public, as shown:

>...

(Check the rest of the document too)

M.

-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '

TW80CJ5 · ‎05-28-2021

OK, I tried that...I rebuilt my configs and added the community string and it still didnt work. I did read that v3 doesnt require the community command...???

TW80CJ5 · ‎05-28-2021

OK, I had a misconfiguration with the following:

snmp-server host 192.168.10.45 traps version 3 priv SNMP_VIEW udp-port 162

SHOULD HAVE BEEN:

snmp-server host 192.168.10.45 traps version 3 priv SNMP_USER udp-port 162

I also added my ACL to the server group and community string.

I am now sending SNMP Data....

Richard Burts · ‎05-28-2021

Thanks for letting us know that you have found the misconfiguration. Always good to see a post where someone has found the solution to their own problem. +5 for sharing this.

HTH

Rick

TW80CJ5 · ‎06-21-2021

Thanks Mr. Burts!!! This means a lot coming from a legend such as yourself!!!!! Hae a great week!!!