SNMP - Catalyst 3560

Unanswered Question
Oct 2nd, 2007

I need to active SNMP on some of our 3560 switches for a third party support vendor.

We want to do it in a way that is secure, and only allows the 3rd party to see certain things on the switch.

What it appears I need are:

1)An Access List with specific IP addresses,

2)A new community string with Read Only Access

3)Access to only certain MIB's. We need to track Packet Loss, Jitter, etc., particular to our VOIP network.

I know how to turn on SNMP with a new community name, and give it read only access...however, I am not sure on the Access List, or MIB portions.

Any help would be great.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
David Stanford Tue, 10/02/2007 - 09:38

For the acl you would just do something like:

access-list 1 permit 10.10.10.1

Then add the acl to your comm string

snmp-server community public ro 1

For the access to certain mibs you would do snmp-server views:

snmp-server view myview internet included

snmp-server view myview ciscoFlashMIB excluded

Then apply this to the comm string:

http://www.cisco.com/en/US/products/sw/iosswrel/ps1835/products_configuration_guide_chapter09186a008030c762.html#wp1001150

Actions

This Discussion