Manuals / Nortel Networks / Computer Equipment / Network Router

Nortel Networks 8600 manual Snmp Group Access Policy Release 3.7.9, 4.1 or higher

Models: 8600

1 41
Download 41 pages 17.31 Kb
Page 10
Image 10

Technical Configuration Guide for SNMP

v2.0

December 2006

3.2.1 Configuration Example: Blocking SNMP via an Access Policy

In this example, we will create an access policy to not allow SNMP for any user coming from network 172.30.x.y/16.

a)Enable access policy globally:

ERS-8606:5#config sys access-policy enable true

b)Add a new policy, in this example, since it is the first policy, we will simply create policy 2 and name it policy2:

ERS-8606:5#config sys access-policy policy 2 create

ERS-8606:5#config sys access-policy policy 2 name policy2

c)Add network 172.30.0.0/16 to policy 2:

ERS-8606:5#config sys access-policy policy 2 network 172.30.0.0/16

d)Add read/write/all access level to policy 2:

ERS-8606:5#config sys access-policy policy 2 accesslevel rwa

e)Disable SNMP service for policy 2:

ERS-8606:5#config sys access-policy policy 2 service snmp disable

After the policy has been created, enter the following command to view policy 2:

ERS-8606:5#show sys access-policy info policy2

AccessPolicyEnable: on

Id: 2

Name: policy2

PolicyEnable: true

Mode: allow

Service: httptelnetssh

Precedence: 128

NetAddr: 172.30.0.0

NetMask: 255.255.0.0

TrustedHostAddr: 0.0.0.0

TrustedHostUserName: none

AccessLevel: readWriteAll

AccessStrict: false

Usage: 337

3.3SNMP Group Access Policy – Release 3.7.9, 4.1 or higher

In release 3.7.9 or 4.1, a new policy enhancement was added that allows the administrator to specify a group or groups for SNMPv3 access. With SNMPv3, the community name is not mapped to an access level, but determined only through VACM. This allows the administrator to create separate policies for SNMP users based on USM or community and associate them to groups.

The following items where added high-lighted in red below.

ERS-8610:5#config sys access-policy policy 1 ?

______________________________________________________________________________________________________

NORTEL

External Distribution

9

Page 9 Page 11
Page 10
Image 10
Nortel Networks 8600 Snmp Group Access Policy Release 3.7.9, 4.1 or higher, ERS-86065#config sys access-policy enable true
Page 9 Page 11

8600 specifications

Nortel Networks 8600 is a highly regarded member of the Nortel Ethernet routing portfolio, specifically designed to meet the demands of today's bandwidth-hungry environments. This advanced platform is a favorite for service providers and enterprises due to its scalability, reliability, and performance capabilities.

One of the standout features of the Nortel 8600 is its exceptional scalability. The platform supports a wide range of Ethernet services that can accommodate the growth of network applications without requiring significant overhaul. This scalability is driven by its ability to provide multiple 10 Gigabit and 100 Gigabit Ethernet ports, allowing organizations to expand their network as bandwidth needs increase.

The 8600 employs a robust architecture that enhances its performance. It utilizes a switching fabric that delivers high throughput and low latency, making it ideal for applications that demand real-time data transmission, such as voice over IP (VoIP) and video streaming. With support for high-density Ethernet, the 8600 can handle a large number of simultaneous connections, facilitating seamless experiences for end-users.

Another technological highlight of the Nortel 8600 is its integrated service capabilities. The platform incorporates advanced quality of service (QoS) features that prioritize bandwidth for critical applications, ensuring reliable performance even during peak usage times. The 8600 also supports comprehensive security protocols, providing peace of mind for organizations as they navigate the complexities of modern cybersecurity challenges.

Additionally, the platform offers advanced management features that simplify network administration. Built-in tools for monitoring and reporting enhance operational visibility, enabling IT teams to quickly identify and resolve issues. The 8600 is designed to integrate smoothly with existing networking environments, offering interoperability with multiple vendors and protocols, thus protecting investment in other technologies.

Energy efficiency is another characteristic of the Nortel 8600, making it a suitable choice for organizations keen on reducing operational costs and minimizing their environmental impact. The platform is built with energy-saving components and intelligent power management that allow businesses to operate sustainably.

Overall, the Nortel Networks 8600 is a sophisticated routing solution that integrates cutting-edge technologies to meet the demands of modern network environments, making it a preferred choice for organizations seeking a balance between performance, reliability, and cost-effectiveness.