Support Support Downloads Knowledge Base Juniper Support Portal Community

Knowledge Base

Search our Knowledge Base sites to find answers to your questions.

Ask All Knowledge Base Sites All Knowledge Base Sites JunosE Defect (KA)Knowledge BaseSecurity AdvisoriesTechnical BulletinsTechnotes Sign in to display secure content and recently viewed articles

[NSM] How to enable SNMP on the local firewall (iptables)



Article ID: KB23472 KB Last Updated: 06 Apr 2012Version: 1.0
This article provides information on how to enable SNMP on the local firewall (iptables) of NSMXpress.
How to enable SNMP on the local firewall (iptables) of NSMXpress.

To enable SNMP on iptables, make the following changes:

  • vi /etc/sysconfig/iptables:

    • A INPUT -p tcp -m tcp --dport 161 -j ACCEPT

    • A INPUT -p udp -m udp --dport 162 -j ACCEPT

  • vi /usr/libexec/nsmxwui/access/

    • sub ipt_nsm
      # guiSvr
      &ipt_ok('tcp', 7801);
      &ipt_ok('tcp', 7808);
      &ipt_ok('udp', 7802);
      &ipt_ok('tcp', 7800);
      &ipt_ok('tcp', 7803);
      &ipt_ok('tcp', 7804);
      &ipt_ok('tcp', 15400);
      &ipt_ok('tcp', 161);
      &ipt_ok('udp', 162);
      &ipt_ok('tcp', 11122);

 Now restart iptables:

/etc/init.d/iptables restart

iptables –L

It will be shown as below:

ACCEPT tcp -- anywhere anywhere tcp dpt:snmp
ACCEPT udp -- anywhere anywhere udp dpt:snmptrap

Note: Everytime NSM is upgraded, changes to will have to be made.
Comment on this article > Affected Products Browse the Knowledge Base for more articles related to these product categories. Select a category to begin.

Getting Up and Running with Junos

Getting Up and Running with Junos Security Alerts and Vulnerabilities Product Alerts and Software Release Notices Problem Report (PR) Search Tool EOL Notices and Bulletins JTAC User Guide Customer Care User Guide Pathfinder SRX High Availability Configurator SRX VPN Configurator Training Courses and Videos End User Licence Agreement Global Search