Fujitsu BX600 SB9 manual Configuration of Snmp, Configure Snmp for SNMPv1 and SNMPv2c

Page 37

White Paper ⏐ Issue: October 2006 ⏐ Integration of BX600 SB9 Switches in Cisco Networks

Page 37 / 47

4.2SNMP

4.2.1 Introduction

In most enterprise networks, SNMP is used for monitoring of network components. The most common protocol versions are SNMPv1 and SNMPv2c, which are fully supported by the SB9. SNMPv3 is seldom used today.

4.2.2 Recommended Solution

We recommend you to enable SNMPv1 and SNMPv2c at the SB9 and (for security reasons) to enable authentication for SNMPv3.

4.2.3 Configuration of SNMP

The following steps are necessary in order to configure SNMP

∙Step 1: Configure SNMP for SNMPv1 and SNMPv2c

∙Step 2: Configure SNMPv3 authentication

∙Step 3: Test the SNMP configuration using your favorite SNMP management tool

Step 1: Configure SNMP for SNMPv1 and SNMPv2c

!SNMP v1 and v2c setup for SB9

!Configure the description, system name, contact and the location

!System Description "FSC SwitchBlade" snmp-server sysname "bx6-sb9-a" snmp-server location "Team PCT" snmp-server contact "Test123"

!configure two snmp community strings (e.g. read and write)

!

snmp-server community ro read snmp-server community rw write

!remove the default community strings no snmp-server community public

no snmp-server community private

!configure the trap receiver

!

! … for SNMPv2c

snmptrap MySNMPv2 10.222.0.20 ! … for SNMPv1

snmptrap MySNMPv1 10.222.0.20 snmpversion snmpv1

Step 2: Configure SNMPv3 authentication

It is important to set the SNMPv3 authentication protocol to “MD5” for each configured user name, to ensure that nobody can access the switch using SNMPv3 without authentication. This can only be done using the web interface.

Image 37

Contents Basic Multicast Services Contents Introduction Switch ConnectivitySwitch Management Page Introduction Configuration Recommended SolutionAuto Negotiation Port Aggregation Network problemsShut down the affected ports to avoid loops Set up the port-channelVerify the operation of the port-channels Bring up the affected portsVLANs and Trunks Vlan Trunk between SB9 and Cisco SwitchConfigure Vlan trunk Configure the port-channelsDefine the VLANs Gvrp Verify the Vlan trunkRunning ST P 802.1D with PVST+ on Vlan Trunks Spanning Tree ProtocolRunning PVST+ on Vlan Trunks while disabling STP at the SB9 SB9Rapid Spanning Tree Combining RAPID-PVST and 802.1wCombining RAPID-PVST and 802.1w after failure of Po1 Configuration with Vlan Trunks SB9 SwitchConfigure the switches Network loopsPage Page STP Verify the configurationPage Configuration without Vlan Trunks Configuration example Rstp without Vlan trunksPage Mode Type State Role Enabled Forwarding Designated Disabled Enabled Disabled PC Mbr Manual forwarding Interface BX600 port mapping Access Port and NIC ConfigurationConfigure the access ports of the switches Typical access port configurationConfigure the Broadcom NIC Page Configure the Intel Adapter Page Select Switch Fault Tolerance and press Next Press Finish Link State Configure a Link State GroupConfiguration Recommended solutionEnable multicast routing and Igmp at the layer 3 switch Enable Igmp snooping at all Layer 2 switchesVlan Page Configure the SB9 for unicast Sntp Configuration of syslog and SntpConfigure the SB9 for broadcast Sntp Configure the SB9 for logging and syslogTest the configuration Configure Snmp for SNMPv1 and SNMPv2c Configuration of SnmpConfigure SNMPv3 authentication SnmpConfiguration of SSH Remote Console AccessConfigure the SB9 Test the loginIntegration into Radius and TACACS+ Configuration of RadiusPrepare the ACS Page Specify the user’s password and press Submit Test the login Configuration of Tacacs Page Configure the SB9 Check the configuration Configuration of CDPCisco Discovery Protocol Port Monitoring Configuration of Port MonitoringFurther information in the Internet