NEC N8406-022 manual SNMPv3 View configuration, View-based Access Control Model configuration

Page 67

SNMPv3 View configuration

The following table describes the SNMPv3 View Configuration commands.

Table 64 SNMPv3 View Configuration commands

Command

Description

snmp-server view <1-128>

Defines the name for a family of view subtrees up to a maximum of 32

name <1-32 characters>

characters.

 

Command mode: Global configuration

snmp-server view <1-128>tree <1-32 characters>

Defines the Object Identifier (OID), a string of maximum 32 characters, which when combined with the corresponding mask defines a family of

view subtrees.

An example of an OID is 1.3.6.1.2.1.1.1.0 Command mode: Global configuration

snmp-server view <1-128>mask <1-32 characters>

Defines the bit mask, which in combination with the corresponding tree defines a family of view subtrees. The mask can have a maximum of 32 characters.

Command mode: Global configuration

snmp-server view <1-128>type {includedexcluded}

Selects whether the corresponding instances of vacmViewTreeFamilySubtree and vacmViewTreeFamilyMask define a family of view subtrees, which is included in or excluded from the MIB view.

Command mode: Global configuration

no snmp-server view <1-128>

Deletes the vacmViewTreeFamily group entry.

 

 

Command mode: Global configuration

show

snmp-server view <1-

Displays the current vacmViewTreeFamily configuration.

128>

 

Command mode: All

View-based Access Control Model configuration

The view-based Access Control Model defines a set of services that an application can use for checking access rights of the user. Access control is needed when the user has to process SNMP retrieval or modification request from an SNMP entity.

The following table describes the User Access Control Configuration commands.

Table 65 View-based Access Control Configuration commands

Command

Description

snmp-server access <1-32>

Defines the name of the group, up to a maximum of 32 characters.

name <1-32 characters>

Command mode: Global configuration

snmp-server access <1-32>

Allows you to select the security model to be used.

security {usmsnmpv1snmpv2}

Command mode: Global configuration

snmp-server access <1-32>

Defines the minimum level of security required to gain access rights. The

level {noAuthNoPrivauthNo-

level noAuthNoPriv means that the SNMP message will be sent

PrivauthPriv}

without authentication and without using a privacy protocol. The level

 

authNoPriv means that the SNMP message will be sent with

 

authentication but without using a privacy protocol. The authPriv

 

means that the SNMP message will be sent both with authentication and

 

using a privacy protocol.

 

Command mode: Global configuration

snmp-server access <1-32>read-view <1-32 characters>

Defines a 32 character long read view name that allows you read access to a particular MIB view. If the value is empty or if there is no active MIB view having this value then no access is granted.

Command mode: Global configuration

snmp-server access <1-32>write-view <1-32 characters>

Defines a 32 character long write view name that allows you write access to the MIB view. If the value is empty or if there is no active MIB view having this value then no access is granted.

Command mode: Global configuration

snmp-server access <1-32

Defines a 32 character long notify view name that allows you notify access

notify-view <1-32

to the MIB view.

characters>

Command mode: Global configuration

no snmp-server access <1-32>

Deletes the View-based Access Control entry.

 

Command mode: Global configuration

Configuration Commands 67

Page 66 Page 68
Image 67
Page 66 Page 68
Contents N8406-022 1Gb Intelligent L2 Switch Page Contents Statistics commands Operations Commands Additional references Connecting to the switchIscli Reference IntroductionEstablishing an SSH connection Setting an IP addressTelnet 1Gb Intelligent L2 Switch IP address Establishing a Telnet connection# ssh user@1Gb Intelligent L2 Switch IP address Accessing the switchShow portchannel 1-12hashinformation Idle timeoutTypographical conventions Ping IP addressShow spanning-tree stp Show ip interfaceIscli Command Modes Accessing the IscliIscli basics Global commands Switchconfig# sp stp 1 br h Command line interface shortcutsCommand abbreviation Switchconfig# spanning-tree stp 1 bridge helloInformation Commands SNMPv3 Information commands System Information commandsProtocol SNMPv3 USM User Table informationSNMPv3 View Table information User NamePrefix SNMPv3 Access Table informationView Name Group NameIndex Name User Name Tag Trap1 Public V1v2only V1v2trap SNMPv3 Group Table informationSNMPv3 Community Table information Sec ModelSNMPv3 Target Parameters Table information SNMPv3 Target Address Table informationSec Level NameTag V1v2trapv1v2trap SNMPv3 Notify Table informationSNMPv3 dump Show snmp-server v3 Command mode AllSystem information Show recent syslog messages Usernames Enabled Oper Disabled Admin Always EnabledSystem user information Layer 2 information Show all FDB information FDB information commandsShow spanning-tree stp 1-32information Spanning Tree informationRapid Spanning Tree and Multiple Spanning Tree information Designated bridge Priority bridge128 2000 Common Internal Spanning Tree informationDesg 8000-000342fa3b80 8001 P2P, Edge 128 2000 Desg 8000-000342fa3b80 8002 128 2000Cist Root Disabled DSBDiscarding DISC, Learning LRN, Forwarding FWD, or Trunk group information Trunk group 1, Enabled port state STG 1 forwardingVlan information ARP information Layer 3 informationARP address list information Show layer3 information Command mode AllIP information Show all ARP entry informationRmon history information Igmp multicast group informationIgmp multicast router port information Rmon InformationShow rmon alarm Rmon alarm informationInterval Show rmon event Rmon event informationLink status information Port Tag Rmon Pvid Port informationVLANs Logical Port to GEA Port mapping Show geaport Command mode AllUplink Failure Detection information Information dump Port Statistics Statistics commandsEthernet statistics Bridging statisticsDot3StatsSingleCollisionFrames Dot3StatsAlignmentErrorsDot3StatsFCSErrors Dot3StatsInternalMacTransmitErrorInterface statistics Show interface gigabitethernet port number ip-counters Internet Protocol IP statisticsShow interface gigabitethernet port number link-counters Layer 2 statisticsLink statistics FDB statisticsIP statistics Layer 3 statisticsARP statistics ArpEntriesCur ArpEntriesHighWater ARP statisticsIcmp statistics DNS statisticsDNS statistics DnsInRequests DnsOutRequests DnsBadRequests TCP statistics UDP statistics Show mp udp-block Management Processor statisticsIgmp Multicast Group statistics Show mp tcp-blockAll UDP allocated control blocks Listen 10ad41e8/10ad5790161 CPU statistics Show snmp-server counters Command mode All except User ExecSnmp statistics Decoding Snmp messages received NTP statistics Show ntp counters Command mode AllStatistics dump Uplink Failure Detection statisticsViewing and saving changes Configuration CommandsSaving the configuration System configurationSystem host log configuration Secure Shell Server configuration Radius server configuration TACACS+ server configuration NTP server configuration System Snmp configuration SNMPv3 configuration No snmp-server user User Security Model configurationPrivacy-password password Privacy-protocol desnoneView-based Access Control Model configuration SNMPv3 View configurationSNMPv3 Community Table configuration SNMPv3 Group configurationSNMPv3 Target Parameters Table configuration SNMPv3 Target Address Table configurationSystem Access configuration SNMPv3 Notify Table configurationManagement Networks configuration User ID configuration User Access Control configurationHttps Access configuration Temporarily disabling a port Port configurationPort link configuration Layer 2 configurationName Spanning-tree mrst ModeSpanning-tree mrst Enable Spanning-tree mstpCist bridge configuration Common Internal Spanning Tree configurationCist port configuration Spanning Tree configuration Bridge Spanning Tree configuration Spanning Tree port configuration Trunk configuration Forwarding Database configurationStatic FDB configuration Vlan configuration Layer 3 configurationDefault Gateway configuration IP interface configurationIgmp configuration Address Resolution Protocol configurationIgmp snooping configuration Igmp filtering configuration Igmp static multicast router configurationIgmp filtering port configuration Domain Name System configurationIgmp filter definition Rmon history configuration Remote Monitoring configurationRmon event configuration Rmon alarm configuration Port mirroring Uplink Failure Detection configurationPort-based port mirroring Link to Disable configuration Configuration DumpFailure Detection Pair configuration Link to Monitor configurationRestoring the active switch configuration Saving the active switch configurationOperations-level port options Operations CommandsRouter# copy tftp image1image2boot-image Boot OptionsUpdating the switch software image Downloading new software to the switchSelecting a software image to run Uploading a software image from the switchRouterconfig# boot image image1image2 Switch# copy image1image2boot-image tftpResetting the switch Selecting a configuration blockAccessing the AOS CLI System maintenance Maintenance CommandsForwarding Database maintenance Debugging options ARP cache maintenanceIgmp Mrouter maintenance Igmp Snooping maintenanceUuencode flash dump Tftp system dump put Panic commandSwitch# copy flash-dump tftp server filename Switch# clear flash-dumpUnscheduled system dumps Index
Related manuals
Manual 62 pages 46.6 Kb

N8406-022 specifications

The NEC N8406-022 is a robust and versatile networking device designed primarily for organizations requiring high-performance connectivity solutions. As part of NEC's extensive portfolio of networking equipment, the N8406-022 is engineered to address the demands of modern enterprise environments, ensuring seamless communication and data processing capabilities.

One of the key features of the N8406-022 is its multi-layer switching functionality. This device supports Layer 2 and Layer 3 switching, allowing for efficient data routing and reducing latency within local area networks (LANs). This capability is particularly beneficial for businesses that rely on real-time data access and transfer, such as those in financial services, media, and telecommunications.

The N8406-022 is equipped with advanced Quality of Service (QoS) features that help prioritize critical network traffic. This means that voice and video data packets can be given precedence over less time-sensitive information, ensuring that essential communication remains clear and uninterrupted. This is crucial for organizations leveraging VoIP and video conferencing solutions.

In terms of connectivity, the NEC N8406-022 offers a variety of ports, including multiple Gigabit Ethernet ports, which facilitate high-speed data transfer and enable seamless integration into existing network infrastructures. The device may also include 10 Gigabit SFP+ ports, providing the flexibility for high-capacity uplinks to support bandwidth-intensive applications and storage solutions.

Security is another focal point of the NEC N8406-022, with integrated features such as VLAN support, access control lists (ACLs), and port security measures. These capabilities protect sensitive data from unauthorized access and ensure that only legitimate users and devices can connect to the network.

Moreover, the N8406-022 often incorporates advanced energy-efficient technologies that minimize power consumption without compromising performance. This not only contributes to operational cost savings but also supports organizations in their sustainability efforts.

With its combination of performance, security, and energy efficiency, the NEC N8406-022 stands out as a reliable networking solution suitable for a wide range of enterprises looking to enhance their connectivity and operational efficiency. Whether deployed in data centers or as part of a corporate network, this device is built to meet the evolving demands of today’s digital landscape.
Top Page Image Contents