09-05-2011 02:19 AM - edited 03-11-2019 02:20 PM
Hi Team,
I have a simple query for the issues I m facing currently.
I have @ remote site remote site PIX firewall which is configurd to get the Snmp poll on the server locate outside via site to site VPN.
There is another snmp server located also in inside which I’m not managing it .
========================================================================
below are the command for the snmp configured on PIX.
snmp-server host inside x.x.x.x community XXXXX ---This is not managed by us
snmp-server host inside x.x.x.x community XXXXX
snmp-server host outside y.y.y.y (private IP tunneled though VPN) poll community YYYYY ---Managed by us
snmp-server host outside y.y.y.y poll community YYYYY
snmp-server community XXXXX
snmp-server enable traps snmp authentication linkup linkdown coldstart
snmp-server enable traps syslog
access-list acl-VPN-tunnel line 2 extended permit ip host z.z.z.z (outside interface of PIX firewall) host Y.Y.Y.Y (server located outside)
==============================================================================
there are 2 snmp community & server defined in snmp-server host command for 2 different IP address belongs to snmp server and we can only define one global snmp-server community for any one of them .Question is how the snmp community take a precedence .
Currently I am able to ping from my snmp server from outside to the PIX firewall outside interface over L2L VPN but somehow the snmp server is not listening when i do port query on 161 por!.
Appreciate you inputs for the same and let me know if any more details are needed
09-05-2011 12:57 PM
Can anybody give a solution on above query.
09-07-2011 03:34 AM
Issue sorted out...
12-20-2011 09:59 AM
What was the resolution? I am having the same issue.
Thanks!
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide