Nortel Networks 8600 manual Configuration Example Using SNMPv3

Page 35

Technical Configuration Guide for SNMP

v2.0

December 2006

8. Configuration Example Using SNMPv3

 

SNMPv3

User 1

Access

 

User 2

 

For this configuration example, we wish to accomplish the following:

Add User 1 to USM table with authentication protocol of MD5 and privacy protocol of DES, i.e. authPriv)

Allow User 1 full MIB views with full permission starting the existing view “org”

Add User 2 to USM table authentication protocol of MD5 with no privacy protocol, i.e. authNoPriv

Allow User 2 full MIB read permission starting from the exiting “org” level, but exclude write permission from all Private Enterprise MIB’s

To accomplish the above, please follow the steps below.

A)Load the DES module:

1.Assuming the DES module has been installed on the ERS 8600 switch, enter the following command:

ERS-8610:5#config load-encryption-module DES /flash/p80c3700.des

B)Add User 1 to USM table. In this example, we will use a user name of ‘user1’, a MD5 password of ‘user1234’, and a DES privacy password of ‘userpriv’

ERS-8610:5#config snmp-v3 usm create user1 md5 auth user1234 priv userpriv

Or via 4.1.1

ERS-8610:5#config snmp-v3 usm create user1 md5 auth user1234 priv-prot des priv userpriv

C)Add User 1 to USM group. In this configuration example, we will add ‘user1’ to USM group named “group_1”

1.Add ‘user1’ to group ‘group_1’:

ERS-8610:5#config snmp-v3 group-member create user1 usm group_1

D)Assign Access Level to USM group:

1.Assign access level of ‘authPriv’ to USM group ‘group_1’

ERS-8610:5#config snmp-v3 group-access create group_1 "" usm authPriv

E)Assign the Read and Write view to the USM group:

1.Assign to usm group ‘group_1’ read and write view to ‘org’:

______________________________________________________________________________________________________

NORTEL

External Distribution

34

Image 35
Contents Technical Configuration Guide for Snmp Disclaimer Abstract Table of Contents List of Tables List of FiguresUDP SNMPv3 OverviewHidden File Details Snmp Upgrade ConsiderationsBlocking SNMPv1/2 only ERS-86105#config bootconfig flags block-snmp trueERS-86105#config bootconfig flags block-snmp false Blocking SnmpERS-86065#config sys access-policy policy 1..65535 ? ERS-86065#config sys access-policy enable true/falseERS-86065#config sys access-policy policy ERS-86065#show sys access-policy info policy2 Snmp Group Access Policy Release 3.7.9, 4.1 or higherERS-86065#config sys access-policy enable true ERS-86065#config sys access-policy policy 2 accesslevel rwaERS-86105#config sys access-policy policy 1 service ? SNMPv3 Group Access Policy Configuration ExampleERS8610-B5#show snmp-v3 group-access ERS-86105#config sys access-policy policy 2 enableAdd the SNMPv1/2 group name and models to policy ERS-86105# Snmp Community Strings Config snmp-v3 community create followed by ERS8600G3# config snmp-v3 community info ERS-86065#config snmp-v3 community infoParameter ERS-86065#show snmp-v3 notify info ERS-86065#config snmp-v3 notify ?ERS-86065#config snmp-v3 target-addr ? ERS-86105#config snmp-v3 target-param info ERS-86065#config snmp-v3 target-addr delete TAddr1ERS-86065#config snmp-v3 target-addr info ERS-86065#config bootconfig flags hsecure falsetrue New Default Community Strings in High Secure hsecure ModeERS-86065#config sys set sendAuthenticationTrap true Snmp SettingsERS-86065#config sys set snmp ? Technical Configuration Guide for Snmp V2.0 Snmp with Radius Authentication and Accounting Adding a New SNMPv3 User to USM Table Configuring SNMPv3Loading the DES or AES Encryption Module Assign USM User to USM Group ERS-86105#config snmp-v3 usm infoERS-8610-C5#config snmp-v3 group-member info ERS-86105#config snmp-v3 group-access info Assigning the USM Group Access LevelAssigning the MIB View to the USM Group ERS-86105#config snmp-v3 mib-view infoMIB Structure Creating a MIB ViewERS-86065#config sys set snmp community ro ro567pp8600 Configuration Example Changing Snmp CommunitiesConfiguration Example Snmp Communities with Release ERS-86065#config sys set snmp community rwa rwa123pp8600Out of 3 Total entries displayed ERS-8610-C5#config snmp-v3 group-access info ERS-8610-C5#config snmp-v3 community infoERS-8610-C5#config snmp-v3 mib-view info Testing Snmp Using Device Manager Technical Configuration Guide for Snmp V2.0 Configuration Example Using SNMPv3 ERS-86105#config snmp-v3 usm create user2 md5 auth user2abcd Testing SNMPv3 Using Device ManagerSoftware Baseline Document Title Publication Description Number Reference DocumentationFrom Configuration Example Appendix a Configuration Files# Snmp V3 Notify Filter Configuration Contact us
Related manuals
Manual 62 pages 39.02 Kb Manual 136 pages 14.91 Kb Manual 44 pages 49.61 Kb Manual 88 pages 41.11 Kb

8600 specifications

Nortel Networks 8600 is a highly regarded member of the Nortel Ethernet routing portfolio, specifically designed to meet the demands of today's bandwidth-hungry environments. This advanced platform is a favorite for service providers and enterprises due to its scalability, reliability, and performance capabilities.

One of the standout features of the Nortel 8600 is its exceptional scalability. The platform supports a wide range of Ethernet services that can accommodate the growth of network applications without requiring significant overhaul. This scalability is driven by its ability to provide multiple 10 Gigabit and 100 Gigabit Ethernet ports, allowing organizations to expand their network as bandwidth needs increase.

The 8600 employs a robust architecture that enhances its performance. It utilizes a switching fabric that delivers high throughput and low latency, making it ideal for applications that demand real-time data transmission, such as voice over IP (VoIP) and video streaming. With support for high-density Ethernet, the 8600 can handle a large number of simultaneous connections, facilitating seamless experiences for end-users.

Another technological highlight of the Nortel 8600 is its integrated service capabilities. The platform incorporates advanced quality of service (QoS) features that prioritize bandwidth for critical applications, ensuring reliable performance even during peak usage times. The 8600 also supports comprehensive security protocols, providing peace of mind for organizations as they navigate the complexities of modern cybersecurity challenges.

Additionally, the platform offers advanced management features that simplify network administration. Built-in tools for monitoring and reporting enhance operational visibility, enabling IT teams to quickly identify and resolve issues. The 8600 is designed to integrate smoothly with existing networking environments, offering interoperability with multiple vendors and protocols, thus protecting investment in other technologies.

Energy efficiency is another characteristic of the Nortel 8600, making it a suitable choice for organizations keen on reducing operational costs and minimizing their environmental impact. The platform is built with energy-saving components and intelligent power management that allow businesses to operate sustainably.

Overall, the Nortel Networks 8600 is a sophisticated routing solution that integrates cutting-edge technologies to meet the demands of modern network environments, making it a preferred choice for organizations seeking a balance between performance, reliability, and cost-effectiveness.