79-24
Cisco ASA 5500 Series Configuration Guide using the CLI
Chapter79 Configuring SNMP
Troubleshooting Tips
What to Do Next
See the “Monitoring SNMP” section on page79-26.
Troubleshooting Tips
To ensure that the SNMP process that receives incoming packets from the NMS is running, enter the
following command:
hostname(config)# show process | grep snmp
To capture syslog messages from SNMP and have them appear on the ASA or ASASM console, enter
the following commands:
hostname(config)# logging list snmp message 212001-212015
hostname(config)# logging console snmp
To make sure that the SNMP process is sending and receiving packets, enter the following commands:
hostname(config)# clear snmp-server statistics
hostname(config)# show snmp-server statistics
Step3 snmp-server host interface
{hostname | ip_address} [trap |
poll] [community
community-string] [version {1 |
2c | 3 username}] [udp-port port]
Example:
hostname(config)# snmp-server
host mgmt 10.7.14.90 version 3
testuser1
hostname(config)# snmp-server
host mgmt 10.7.26.5 version 3
testuser2
Specifies the recipient of an SNMP notification. Indicates the interface
from which traps are sent. Identifies the name and IP address of the NMS
or SNMP manager that can connect to the ASA. The trap keyword limits
the NMS to receiving traps only. The poll keyword limits the NMS to
sending requests (polling) only. By default, SNMP traps are enabled. By
default, the UDP port is 162. The community string is a shared secret key
between the ASA and the NMS. The key is a case-sensitive value up to 32
alphanumeric characters. Spaces are not permitted. The default
community-string is public. The ASA uses this key to determine whether
the incoming SNMP request is valid. For example, you could designate a
site with a community string and then configure the ASAand the NMS
with the same string. The ASAuses the specified string and does not
respond to requests with an invalid community string. For more
information about SNMP hosts, see the “SNMP Hosts” section on
page 79-16.
Note When SNMP Version 3 hosts are configured on the ASA, a user
must be associated with that host. To receive traps, after you have
added the snmp-server host command, make sure that you
configure the user on the NMS with the same credentials as the
credentials configured on the ASA.
Step4 snmp-server [contact |location]
text
Example:
hostname(config)# snmp-server
location building 42
hostname(config)# snmp-server
contact EmployeeA
Sets the SNMP server location or contact information.
Command Purpose