01-23-2009 08:03 AM
Hey folks,
I'm in a bit of a quandrie here...
I'm trying to archive the config from a 6513 FWSM, it is bombing out with an SNMP errorâ¦I was under the impression that I could merely use SSH to perform the archiveâ¦The error is implying, that at least once, works needs to inventory the FWSM using SNMP, is that the case, or should I just be able to config the credentials in CS and then connect using SSHâ¦maybe I've missed something??
Solved! Go to Solution.
01-23-2009 05:50 PM
No. RME relies on being able to periodically poll managed devices for inventory information. SNMP is a requirement throughout the management lifetime of a device.
01-23-2009 12:25 PM
ALL devices must be configured for SNMP before LMS can manage them. Therefore, you will need to configure the FWSM for SNMP. Once the FWSM has been managed, and RME has it in a Normal state, then you can archive the config. Config archive for the FWSM will happen with either telnet or SSH depending on your chosen protocol order.
01-23-2009 05:29 PM
understood and thats what i was afraid of...
Let me ask this question...If after it has been inventoried and in a normal state, can snmp then be removed and merely archive the configs using telnet/ssh???
01-23-2009 05:50 PM
No. RME relies on being able to periodically poll managed devices for inventory information. SNMP is a requirement throughout the management lifetime of a device.
01-23-2009 05:54 PM
alrighty..thanks J...
01-23-2009 06:00 PM
let me ask this last question..If I'm not concerned about periodically polling to update the inventory, would it be feasible to remove the SNMP config and merely connect using SSH to archive the config? I have been told, and I havent found it anywhere yet, that SNMPV3 is not supported on the FWSM's...
01-23-2009 06:05 PM
No, SNMPv3 is not supported on the FWSMs, PIX, or ASA devices. However, neither is SNMP read-write. You must keep SNMP enabled, but it's not like that can be used to change anything. The most one could gain is information. That can be limited by only allowing the LMS server to poll the FWSM via SNMP.
01-23-2009 06:08 PM
roger that...thanks again J.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide