Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

A Tale of 2 Machines and SNMP Traps

Hi,

Consider a situation in which ASA's outside interface with a security level of 0 is connected to the WAN router's ethernet interface.

Is it possible to send SNMP traps from this router to logging software residing on the ASA's inside interface with a security level of 100?

Any help will be greatly appreciated.

--Noman Bari

4 REPLIES
Gold

Re: A Tale of 2 Machines and SNMP Traps

I assume router interface has Public IP and logging server has private IP...

So if you want to reach server from outside you need static mapping of server to some public IP

static (inside,outside) server_public_IP server_inside_IP netmask 255.255.255.255

and also permit SMTP traffic (snmp traps UDP 162) assume your outside ACL is named out

access-list out permit udp host router_IP host server_public_IP eq 162

M.

Hope that helps

New Member

Re: A Tale of 2 Machines and SNMP Traps

Hi M.,

Thank you for helping out. Just to clearify, please inform what do you mean by " also permit SMTP traffic"...Do u mean SNMP traffic bcuz thatz what the 162 shows...

--Noman Bari

Gold

Re: A Tale of 2 Machines and SNMP Traps

ahhh Sorry I meant SNMP traffic - SMTP is really not needed for SNMP traps :)))) Sorry for this mistake

New Member

Re: A Tale of 2 Machines and SNMP Traps

Hi M.,

Thanx for clearing this out....Therez absolutely no need for u to say sorry here

:)...typo errors follow the Murphy's law... :) ...

--Noman

123
Views
4
Helpful
4
Replies
CreatePlease login to create content