Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2383
Views
0
Helpful
9
Replies

snmp port-security

Go to solution
Peter von Nostrand
Level 1
Level 1

‎01-07-2016 07:07 AM - edited ‎03-08-2019 03:20 AM

We need to check with snmp if an interface has Security Violation Count other than 0. Is there any way to do this? Our switches are 2960S.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Rolf Fischer
Level 9
Level 9

‎01-07-2016 07:33 AM

Hi Peter,

you can try CISCO-PORT-SECURITY-MIB cpsIfViolationCount:

snmpbulkwalk -v2c -c public -OQs 192.168.173.11 enterprises.9.9.315.1.2.1.1.9
enterprises.9.9.315.1.2.1.1.9.10101 = 0
enterprises.9.9.315.1.2.1.1.9.10102 = 0
enterprises.9.9.315.1.2.1.1.9.10103 = 0
(...)

HTH
Rolf

View solution in original post

0 Helpful
9 Replies 9

Go to solution
Rolf Fischer
Level 9
Level 9

‎01-07-2016 07:33 AM

Hi Peter,

you can try CISCO-PORT-SECURITY-MIB cpsIfViolationCount:

snmpbulkwalk -v2c -c public -OQs 192.168.173.11 enterprises.9.9.315.1.2.1.1.9
enterprises.9.9.315.1.2.1.1.9.10101 = 0
enterprises.9.9.315.1.2.1.1.9.10102 = 0
enterprises.9.9.315.1.2.1.1.9.10103 = 0
(...)

HTH
Rolf

0 Helpful

Go to solution
Peter von Nostrand
Level 1
Level 1
In response to Rolf Fischer

‎01-07-2016 08:00 AM

Hey Rolf, thx, but there is no such oid when I query the switch. Do I have to enable something else besides the snmp-server on the switch?

0 Helpful

Go to solution
Rolf Fischer
Level 9
Level 9
In response to Peter von Nostrand

‎01-07-2016 09:14 AM

Could you share the snmp-server config of your switch (remove the community strings, if existing) and the output of 'show port-security'?

0 Helpful

Go to solution
Peter von Nostrand
Level 1
Level 1
In response to Rolf Fischer

‎01-07-2016 09:18 AM

Sure, it's just this one:

snmp-server community public RO

0 Helpful

Go to solution
Rolf Fischer
Level 9
Level 9
In response to Peter von Nostrand

‎01-07-2016 09:37 AM

Hm, and you have port-security enabled on at least one interface?

What IOS version are you running?

0 Helpful

Go to solution
Peter von Nostrand
Level 1
Level 1
In response to Rolf Fischer

‎01-07-2016 09:45 AM

Yes, I have it configured on an interface. The IOS version is 15.0(1) SE2.

0 Helpful

Go to solution
Rolf Fischer
Level 9
Level 9
In response to Peter von Nostrand

‎01-07-2016 10:02 AM

Unfortunately I won't have access to our switches until tomorrow morning and I can't recall what version we're using on this platform.

What happends when you query 1.3.6.1.4.1.9.9.315 (ciscoPortSecurityMIB)?

Does the switch respond when you query other objects, for instance the System MIB?

0 Helpful

Go to solution
Peter von Nostrand
Level 1
Level 1
In response to Rolf Fischer

‎01-07-2016 10:58 AM

Rolf, thanks for your time. I did a test using snmp v2 and it was OK. 

Thanks again.

0 Helpful

Go to solution
Rolf Fischer
Level 9
Level 9
In response to Peter von Nostrand

‎01-07-2016 11:10 AM

Glad to hear that it works. Thanks for using the rating system :)

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card