Craig-H
Forum Regular
Hi everyone
Im not a Cisco expert and was wondering if anyone could help me with configuring SNMP on this device. Looking for the specific commands to enable SNMP on the Cisco 877W.
I would have a target server of 192.168.21. Guess I'll load up MRTG, add to cacti or something like this...
Thanks for your help
Craig
anchor
posted 2008-Oct-20, 5pm AEST
User #9611 76 posts
Jebeem
Forum Regular
snmp-server community
ro = read only
rw = read/write
If you want to only limit that server to talk SNMP to the router, use this ACL:
access-list 10 permit 192.168.21.x
!
snmp-server community
anchor
posted 2008-Oct-20, 5pm AEST
User #140520 1475 posts
FormerBOFH
Whirlpool Enthusiast
Jebeem writes...
If you want to only limit that server to talk SNMP to the router, use this ACL...
I strongly recommend that you apply an access list and use a difficult to guess/crack SNMP community string – especially if you are using a RW configuration.
Treat the community string like a password. Use SNMP v3 if possible as it has additional security.
Believe it or not I have found Cisco devices on the Internet using no ACL and a default RW string of private – very easy to obtain configuration and decrypt the password (note: not secret).
anchor
posted 2008-Oct-20, 5pm AEST
User #250122 48 posts
Craig-H
Forum Regular
Thanks to you both for the info.
I have added the commands, including the ACL to the config. However only did RO as don't think I need RW at this stage to produce MRTG graphs?
As below, is there anything else I require to get this up and running? Or can I now focus on the MRTG side?
thanks
#show snmp
Chassis: **********
0 SNMP packets input
0 Bad SNMP version errors
0 Unknown community name
0 Illegal operation for community name supplied
0 Encoding errors
0 Number of requested variables
0 Number of altered variables
0 Get-request PDUs
0 Get-next PDUs
0 Set-request PDUs
0 Input queue packet drops (Maximum queue size 1000)
0 SNMP packets output
0 Too big errors (Maximum packet size 1500)
0 No such name errors
0 Bad values errors
0 General errors
0 Response PDUs
0 Trap PDUs
SNMP logging: disabled
anchor
posted 2008-Oct-20, 8pm AEST
edited 2008-Oct-20, 8pm AEST
User #40586 21624 posts
Thor
Whirlpool Alumni
To get polling working, a read only community string with an ACL will work just fine.
anchor
posted 2008-Oct-20, 8pm AEST
User #140520 1475 posts
FormerBOFH
Whirlpool Enthusiast
Craig Howe writes...
However only did RO as don't think I need RW at this stage to produce MRTG graphs?
RO is all you need to produce graphs.
is there anything else I require to get this up and running? Or can I now focus on the MRTG side?
As long as you have something like:
snmp-server community
access-list 10 permit 192.168.21.x
you can focus on the MRTG side.
anchor
posted 2008-Oct-20, 9pm AEST
edited 2008-Oct-20, 9pm AEST
User #250122 48 posts
Craig-H
Forum Regular
Thanks all got it working well!
cheers
Reference: http://forums.whirlpool.net.au/forum-replies-archive.cfm/1072997.html
