Skip to main content
Skyhigh Security

SNMP settings

The SNMP settings are settings for configuring the monitoring of system events under SNMP.

SNMP Port Settings

Settings for the ports of the SNMP agent on an appliance that listens to client requests.

Option  Definition
Listener address list Provides a list for entering the ports that listen to client requests.

The following table describes an entry in the listener address list.

Option  Definition
Protocol Specifies the protocol used for the communication between a port and the clients that it listens to.
  • UDP — When selected, UDP is used for this communication.
  • TCP — When selected, TCP is used for this communication.
Listener address Specifies the IP address and port number of a listener port.
Comment Provides a plain-text comment on a listener port.

The following two listener ports are available on an appliance and entered in this list by default.

  • UDP — 0.0.0.0:161
  • UDP — 0.0.0.0:9161

SNMP System Information

Settings for the appliance that is the monitored system.

Option Definition
Description Identifies the monitored system.
Object ID

Specifies the ID of the object in the Management Information Base (MIB) where information on the monitored system begins.

For example: .1.3.6.1.4.1.1230.2.7.1.1

Contact person Specifies the name of the person who administers the SNMP functions of the monitored system.
Physical location Specifies the location of the monitored system.

SNMP Protocol Options

Settings for SNMP protocol versions and user access to SNMP information.

Option  Definition
SNMP v1 When selected, system events are monitored under version 1 of SNMP.
SNMP v2c When selected, system events are monitored under version 2c of SNMP.
Communities for SNMPv1 and SNMPv2c access Provides a list for entering the user communities who are allowed access to SNMP information under versions 1 and 2c of SNMP.
SNMP v3c When selected, system events are monitored under version 3 of SNMP.
SNMP v3 users Provides a list for entering the users who are allowed access to SNMP information under version 3 of SNMP.
SNMP v3 info

Provides information related to version 3 of SNMP.

  • SNMPD Engine ID — ID of the host system for the SNMP agent.
    This ID is also contained in a configuration file. The path to this file is /var/lib/net-snmp/snmpd.conf.

The following tables describe the entries in the list of user communities and the list of SNMP v3 users.

Option Definition
Community string Provides a string used for authenticating a user community to let it access SNMP information. For example, public.
Allowed root OID

Identifies the item on the MIB tree that is the beginning of the information with allowed access.

If * or no value is specified here, access to all information is allowed.

Allowed from

Specifies the host name or IP address of a host system that access to SNMP information is allowed from.

A range of IP addresses in an IP subnet can also be specified here to allow access from them.

To specify this range, you must specify the IP address of the subnet, which is also known as the network prefix, and its bit-length, separated by a slash: <network prefix/bit-length>

Example: 192.168.1.184/29

The IP address or prefix of the subnet is the IP address immediately preceding the first IP address that serves to identify a host system within the subnet.

For example, if you have a subnet with the following IP addresses:
192.168.1.185
192.168.1.186
192.168.1.187

then 192.168.1.184 is the IP address or prefix of this subnet.

Read-only access When selected, only reading access to SNMP information is allowed.
Comment Provides a plain-text comment on a user community.
Option Definition
User name Specifies the name of a user who is allowed access to SNMP information.
Allowed root OID

Identifies the item on the MIB tree that is the beginning of the information with allowed access.

If * or no value is specified here, access to all information is allowed.

Authentication

Sets the authentication method used when SNMP information is accessed by a user.

Available methods: MD5, SHA-1, SHA-224, SHA-256, SHA-384, SHA-512

Some authentication methods cannot be used together with some encryption methods that are also used for creating SNMP user information. You cannot configure the following:

  • MD5 or SHA-1 with encryption method AES-192 or AES-256
  • SHA-224 with encryption method AES-256
Encryption

Sets the encryption method used to protect SNMP traffic or leaves this traffic unencrypted.

Available methods: DES, AES, AES-128, AES-192, AES-256, or None (no encryption).

Some encryption methods cannot be used together with some authentication methods that are also used for creating SNMP user information. See above for combinations that will not work.

Read-only access When selected, only reading access to SNMP information is allowed.
Comment Provides a plain-text comment on a user.

SNMP Trap Sinks

Settings for the host systems that receive SNMP messages.

Option Definition
Trap sinks Provides a list for entering the host systems, known as trap sinks, that receive messages about system events from the SNMP agent on an appliance.

The following table describes an entry in the list of trap sinks for SNMPv1 and v2.

Option Definition
Host name or IP address Specifies the host name or IP address of a host system that receives SNMP messages, which are known as traps.
Port Specifies the port on a host system that listens to SNMP messages.
Community string Specifies the string used for authenticating a user community to let it access SNMP information. For example, public.
Send SNMP v2c traps When selected, messages can be sent under version v2c of the SNMP protocol.
Comment Provides a plain-text comment on a host system that receives SNMP messages.

The following table describes an entry in the list of trap sinks for SNMPv3.

Option Definition
Host name or IP address Specifies the host name or IP address of a host system that receives SNMP messages, which are known as traps.
Port Specifies the port on a host system that listens to SNMP messages.
Send INFORM When selected, an SNMPv3 INFORM message is sent instead of a trap.
Identifying user Specifies a user name for authenticating a user to be allowed access to SNMP information.
Comment Provides a plain-text comment on a host system that receives SNMP messages.

SNMP MIB Files

Files in txt format providing additional information about SNMP monitoring on an appliance.

Option Definition
MCAFEE-SMI.txt Provides Structure of Management Information (SMI) on Skyhigh Security, including contact information for the Skyhigh Security customer service.
MCAFEE-MWG-MIB.txt Provides descriptions of the items in the Management Information Base (MIB) that you can do SNMP monitoring for on an appliance.
  • Was this article helpful?