Tuesday, March 31, 2015

Leave a Comment

SNMPv3 inTroDuction and Configuration (CCNP)

                     SNMP {Simple Network Management Protocol}

Ø  Used to communicate between a Network Management System(NMS) and managed devices(e.g. PCs, routers, or switches)

Ø  A protocol used to monitor , configure and receive alerts from managed network devices




SNMPv3 Terms:-
Ø  SNMP View:-define the what you able to see on cisco device
Ø  SNMP Group:- we associate the view with group that identify the type of access  like read-only or read-write and also what kind of security of enabled
Ø  SNMP user:- we associate that with user that defined the what the username is what the password

Internet (ISP) interfaces Configuration
Ø  internet(config)#interface serial 1/0
Ø  internet(config-if)#description CONNECTED WITH R1
Ø  internet(config-if)#ip address 100.100.100.1 255.255.255.252
Ø  internet(config-if)#clock rate 64000
Ø  internet(config-if)#no shut
Ø  internet(config-if)#exit


Ø  internet(config)#ip route 192.168.2.0 255.255.255.0 serial1/0

Ø  R1(config)#interface Serial2/0
Ø  R1(config-if)#description CONNECTED WITH INTERNET
Ø  R1(config-if)#ip address 100.100.100.2 255.255.255.252
Ø  R1(config-if)#no shut
Ø  R1(config-if)#exit

Ø  R1(config)#interface Ethernet1/1
Ø  R1(config-if)# description CONNECTED WITH SW1
Ø  R1(config-if)# ip address 192.168.2.1 255.255.255.0
Ø  R1(config-if)#no shut
Ø  R1(config-if)#exit

SNMPv3 Configuration:-
Ø  R1(config)#snmp-server view FULL-ACCESS iso included
ü  view:- Define an SNMP MIB view
ü  FULL-ACCESS: - Name of the view
ü  iso:- MIB view family name (meaning Full Access)
ü  included:- MIB family is excluded from the view

Ø  R1(config)#snmp-server group CCNP-GROUP v3 priv match exact write FULL-ACCESS
ü  group:- Define a User Security Model group
ü  CCNP-GROUP: - Name of the group
ü  v3:- group using the User Security Model (SNMPv3)
ü  priv:- using authentication and encryption security level
ü  write:- specify a write access for the group

Ø  R1(config)#snmp-server user SHUBHAM CCNP-GROUP v3 auth sha cisco123 priv des56 cisco12345
ü  SHUBHAM: - username which we authenticate
ü  CCNP-GROUP: - Group to which the user belongs
ü  v3:- user using the v3 security model
ü  auth:- authentication parameters for the user
ü   sha:- Use HMAC SHA algorithm for authentication
ü  cisco123:- authentication password for user
ü  priv:- encryption parameters for the user
ü  des56:- Use 56 bit DES algorithm for encryption
ü  cisco12345:- privacy password for user

Troubleshooting & Verification Commands:-
Ø    show ip route
Ø    show ip interface brief
Ø    show snmp                          {shows the snmp statistics}


ü  To Monitor the Router through SNMP
ü  Download PRTG (trial 30 days) Software to monitor the Router

Click Here To Download The PDF File

0 comments:

Post a Comment