Cisco Community
English
Register
Welcome Cisco Designated VIP 2021 Class in the 10th Year Anniversary of the Program -- CHECK THE LIST
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
1772
Views
0
Helpful
2
Replies
Highlighted
michael.ledzbor
Beginner
Beginner
‎11-05-2012 01:41 AM
‎11-05-2012 01:41 AM

SNMP v3 configured on a C3750 switch but it sends SNMPv2 traps

Hi colleagues, our networkmanagement server has to receive SNMP v3 traps. Therefore a c3750 switch [ios 12.2(25)SEC] has been configured as follows: configured on switch: bn3cisw01(config-if)#do sho run | incl snmp snmp-server engineID remote 10.108.107.11 80001F88809C5A37120BE5905000000000 snmp-server group admin v3 auth notify *tv.FFFFFFFF.FFFFFFFF.FFFFFFFF.F snmp-server trap-source Vlan1042 snmp-server enable traps snmp linkdown linkup snmp-server enable traps cpu threshold snmp-server host 10.108.107.11 version 3 auth admin ######################## After triggering a SNMP trap by shutting down interface Gi1/0/13, v2 traps have been send: sw01(config-if)# 2w4d: %LINK-5-CHANGED: Interface GigabitEthernet1/0/13, changed state to administratively down 2w4d: SNMP: Queuing packet to 10.108.107.11 2w4d: SNMP: V2 Trap, reqid 460, errstat 0, erridx 0 sysUpTime.0 = 156149620 snmpTrapOID.0 = snmpTraps.3 ifIndex.10113 = 10113 ifDescr.10113 = GigabitEthernet1/0/13 ifType.10113 = 6 lifEntry.20.10113 = administratively down 2w4d: SNMP: Packet sent via UDP to 10.108.107.11 ######################## recived by Server: [root@sv91 tmp]# tshark -i any port 162 Running as user "root" and group "root". This could be dangerous. Capturing on Pseudo-device that captures on all interfaces   0.000000 10.108.107.8 -> 10.108.107.11 SNMP sNMPv2-Trap SNMPv2-MIB:   :sysUpTime.0 SNMPv2-MIB:   :snmpTrapOID.0 IF-MIB:   :ifIndex.10113 IF-MIB:   :ifDescr.10113 IF-MIB:   :ifType.10113 SNMPv2-SMI:   :enterprises.9.2.2.1.1.20.10113 ######################## Why do we receive SNMP v2 traps? Please let us know if there are any mistakes in our switch configuration.  Many thanks in advance. Best regards, Mike

Labels:
1 person had this problem
0 Helpful
Reply
2 REPLIES 2
Highlighted
smitesh kharecha
Contributor
Contributor
‎11-05-2012 01:45 AM
‎11-05-2012 01:45 AM

For SNMPv3 traps, you need to configure SNMP informs...

Regards,

Smitesh

0 Helpful
Reply
Highlighted
dynamitec1
Beginner
Beginner
‎12-03-2012 01:09 PM
‎12-03-2012 01:09 PM

I have an SNMP v3 server, IOS is 12.2 (55) on my 3750X and 3560X, but traps only works on v2.


I'm attending the LMS 4.x training for a week, I'm going to straighten this up with the Cisco instructor.



From another thread/user:
https://supportforums.cisco.com/thread/2151735

"Enabling SNMP Traps on Switch Ports

Admin > Collection Settings: User Tracking > Device Trap Configuration

You must configure the Cisco switches for sending SNMPv1/SNMPv2 MAC Notification Traps when a host is connected to or disconnected from that port.  Even if the device is managed with SNMPv3, LMS processes only SNMPv1/SNMPv2 traps."

I'd be careful with SNMP informs, read more about it before proceeding. From my reading, it creates a lot of noise in your network.

pay attention to "Use Guidelines" at the bottom of the doc.

http://www.cisco.com/en/US/tech/tk648/tk362/technologies_tech_note09186a0080094a05.shtml#con

0 Helpful
Reply
Latest Contents
Cisco SD-WAN Data Policies
Created by David Samuel Penaloza Seijas on 01-27-2021 02:03 PM
0
0
0
0
Hello all, I have written a technology primer about SD-WAN Data policies in my blog. I hope it is helpful  https://recurseit.com/2021/01/27/cisco-sd-wan-data-policies/
Configuring MACsec Switch to Switch with Pre-Shared-Key
Created by Timothy Glen on 01-27-2021 12:29 PM
0
0
0
0
Summary Here we will go over the configuration needed for MACsec Switch to Switch using a Pre-Shared Key.  Topics that will be covered include, command usage, key derivation and key server election. Please see the MACsec History and Terminology for ... view more
Introducing Cisco Catalyst Micro Switches: Small but Powerfu...
Created by manshar4 on 01-27-2021 06:12 AM
0
5
0
5
With increased deployments of high-performance connectivity solutions there is need to maximize security, network speed, bandwidth and efficiency. Fiber to the office/desk etc. (FTTx) is not a new concept, however it is viewed as a key pillar in driving t... view more
A Quick Look at Cisco Catalyst PON Series
Created by szeya on 01-26-2021 02:20 PM
0
0
0
0
What is PON ? A Passive Optical Network (PON) is a point-to-multipoint architecture which use a single strand of single mode fiber to deliver voice, video, data to several users (or devices). PON network uses passive splitters in the optical distribution ... view more
MACsec History & Termonology
Created by Timothy Glen on 01-26-2021 01:00 PM
0
0
0
0
This will be the first in a series of documents I write on MACsec. Some of the other topics I’ll be writing are: As the configuration will become increasingly complex, I suggest you read them in order.   Configuring MACsec Switch to Switch with Pre-... view more
Content for Community-Ad