Knowledge Search


×
 

How to pull SNMP v3 information from non-default routing-instance

  [KB27284] Show Article Properties


Summary:
 This KB provide solution on how to poll information from a SNMP v3 server which is located in a non-default routing-instance
Symptoms:
 
Cause:
 
Solution:
Topology:

DUT(RI:test1)--------snmp server

DUT(router) is connecting to the snmp server via a routing-instance named test1, snmp v3 is configured on DUT and snmp server is using snmpwalk -v3 command to poll information from DUT.

In addition to the normal snmpv3 configuration, another context-prefix in [snmp v3 access group] hirerarchy needs to be added:

access {
group snmpgroup {
context-prefix test1 {                 ///here, we need to use context-prefix as RI’s name
security-model usm {
security-level authentication {
read-view allmibs;
}


when polling from the snmp v3 server, the add -n option must be added. with context of routing-instance's name:


snmpwalk -v3 -u nnmsnmpuser -l AuthNoPriv -a MD5 -A herndon1 -n test1 15.15.15.1 system

full configuration and output:

SNMPv3 Router configuration:

[edit]
user@north-re0# show snmp
v3 {
usm {
local-engine {
user nnmsnmpuser {
authentication-md5 {
authentication-key "$9$juqTzCtuOIEu0X7Vb2gUjHkfT369AuOaZ/CpuEhKM8LVwJGDqP5GUuOIEeKxNdsoJDikTFnwYJDkqf569Ap1RSyKMLxCt8XxNbw4aZD.P369BRh0Odb24ZGk.PTQn9ApB1htp0IRhKvZUDHkP/Ct01RjHApB1hc24oaikqmf3nC4aApu0IRdbwYZU"; ## SECRET-DATA
}
}
}
}
vacm {
security-to-group {
security-model usm {
security-name nnmsnmpuser {
group snmpgroup;
}
}
}
access {
group snmpgroup {
context-prefix test1 {
security-model usm {
security-level authentication {
read-view allmibs;
}
}
}
}
}
}
}
engine-id {
use-default-ip-address;
}
view allmibs {
oid .1.3.6.1 include;
}
routing-instance-access;
traceoptions {
file size 10m files 2 world-readable;
flag pdu;
flag all;
}


snmp server polling command

user$ snmpwalk -v3 -u nnmsnmpuser -l AuthNoPriv -a MD5 -A herndon1 -n test1 15.15.15.1 system
SNMPv2-MIB::sysDescr.0 = STRING: Juniper Networks, Inc. mx480 internet router, kernel JUNOS 11.4R2.14 #0: 2012-03-17 16:57:48 UTC builder@evenath.juniper.net:/volume/build/junos/11.4/release/11.4R2.14/obj-i386/bsd/kernels/JUNIPER/kernel Build date: 2012-03-17 18:22:46 UTC Copyright
SNMPv2-MIB::sysObjectID.0 = OID: SNMPv2-SMI::enterprises.2636.1.1.1.2.25
DISMAN-EVENT-MIB::sysUpTimeInstance = Timeticks: (26109399) 3 days, 0:31:33.99
SNMPv2-MIB::sysContact.0 = STRING:
SNMPv2-MIB::sysName.0 = STRING: test1@north-re0
SNMPv2-MIB::sysLocation.0 = STRING:
SNMPv2-MIB::sysServices.0 = INTEGER: 6



Related Links: