cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

647
Views
0
Helpful
1
Replies
Highlighted
Beginner

SNMPv3 issues after Firepower Upgrade on ASA SFR module and 7050 IPS

We upgraded our sensors last night   SFR   6.5.0.4  and the 7050 to 6.4.0.9.   After the upgrade completed, we lost SNMP from our Science Logic device.

 

I tried SNMPWALK   but I get :

 

snmpwalk: Unsupported security level

 

I also created a new SNMPv3 user called test    and can see the account in snmpd.conf   but SNMPWALK shows:

snmpwalk: Unknown user name

 

FP7050:~# more /etc/snmpd.conf
dlmod sfLifTable /usr/local/sf/lib64/snmp/sfLifTable.so
dlmod sfVifTable /usr/local/sf/lib64/snmp/sfVifTable.so
dlmod sfPifTable /usr/local/sf/lib64/snmp/sfPifTable.so
dlmod sfVrouterTable /usr/local/sf/lib64/snmp/sfVrouterTable.so
dlmod sfVbridgeTable /usr/local/sf/lib64/snmp/sfVbridgeTable.so
dlmod sfSensor /usr/local/sf/lib64/snmp/sfSensor.so
agentaddress udp:161
agentaddress udp6:161
rouser orion_asa authpriv
rouser em7mon authpriv
rouser test authpriv
rouser em7 authpriv

 

 

Has anyone else experienced this issue?

 

I do have a TAC case opened.

1 REPLY 1
Highlighted
Beginner

From TAC

On affected Sensor

 

pmtool status | grep snmpd
pmtool disablebyid snmpd
pmtool status | grep snmpd

cat /var/net-snmp/snmpd.conf
cat /etc/snmpd.conf

cat /var/cisco/deploy/sandbox/exported-files/var/net-snmp/snmpd.conf
vim /var/cisco/deploy/sandbox/exported-files/var/net-snmp/snmpd.conf
cat /var/cisco/deploy/sandbox/exported-files/var/net-snmp/snmpd.conf
cp /var/net-snmp/snmpd.conf /var/net-snmp/snmpd.conf.bak
cp /etc/snmpd.conf /etc/snmpd.conf.bak

cp /var/cisco/deploy/sandbox/exported-files/var/net-snmp/snmpd.conf /var/net-snmp/
cp /var/cisco/deploy/sandbox/exported-files/var/net-snmp/snmpd.conf /etc/
pmtool enablebyid snmpd
pmtool status | grep snmpd

cat /var/net-snmp/snmpd.conf
cat /etc/snmpd.conf

 

Force deploy to sensor and test  SNMPWALK

Content for Community-Ad