SNMP View Configuration Question

Darshannaidoo · ‎07-28-2008

Hi Guys

What i would like to do is setup a "snmp view" and restrict access to specific interfaces and then limit access to certain mibs.

The problem is i have 10+ interfaces that i will need to snmp get from.

and if i have to define every OID for each interface then it will make my view config very large for example.

If i want to see ifInUcastPkts for 3 interfaces

OID 1.3.6.1.2.1.2.2.1.11

My SNMP view would be

snmp-server view roview ifEntry.11.10116 included

snmp-server view roview ifEntry.11.10124 included

snmp-server view roview ifEntry.11.10601 included

if i want ifAdminStatus

OID 1.3.6.1.2.1.2.2.1.7

snmp-server view roview ifEntry.7.10116 included

snmp-server view roview ifEntry.7.10124 included

snmp-server view roview ifEntry.7.10601 included

is there a way to cut down on the config using wildcards? and still have some sort of security

Joe Clarke · ‎07-28-2008

Darshannaidoo · ‎07-28-2008

Thats fine i did know that the wildcard existed but it only denotes a specific sub tree.

in my example i dont think it will work as if i use

snmp-server view roview ifEntry.*.10116 included

then all of the ifEntry.* subtree will be visible for that interface.

Joe Clarke · ‎07-28-2008

Yes, that's true. There is no range wildcard or mask that can be applied.