Support Support Downloads Knowledge Base Apex Support Portal Community

Knowledge Base

Search our Knowledge Base sites to find answers to your questions.

Ask All Knowledge Base Sites All Knowledge Base Sites JunosE Defect (KA)Knowledge BaseSecurity AdvisoriesTechnical BulletinsTechnotes Sign in to display secure content and recently viewed articles

[M/T/MX] SNMP polling not working after upgrading Junos

0

0

Article ID: KB28735 KB Last Updated: 04 Mar 2014Version: 1.0
Summary:

This article explains why an SNMP configuration may not work after an older version of Junos (pre 9.0) is upgraded.

Symptoms:

When an older version of Junos (pre 9.0) is upgraded, SNMP polling may fail even though it was working before the upgrade. Along with that, the following message may be seen in the logs:

snmpd[1551]: SNMPD_AUTH_FAILURE: nsa_log_community: unauthorized SNMP community from x.x.x.x to x.x.x.x

Cause:

This problem is typically a configuration issue: the community string is not formatted properly.

Solution:

In the SNMP configuration, the routing-instance name is required under the community stanza and routing-instance-access. In order to access MIB objects and perform SNMP operations for the routing-instances, SNMP v1 and v2c clients must encode the routing-instance name in the community string in their SNMP requests.

The format is:

routing-instance name@community string

The examples below show an incorrect and a correct community string.


Incorrect Community String

community "Nam3" { <----- Incorrect Community String
    authorization read-write;
    routing-instances TEST { ## Warning: 'routing-instances' is deprecated
        clients {
            0.0.0.0/0;
        }
     }
  }

This configuration will cause SNMP polling to fail and generate the log message referenced above.


Correct Community String

The proper configuration is:

community "TEST@Nam3" { <----- Correct Community String
    authorization read-write;
    routing-instances TEST { ## Warning: 'routing-instances' is deprecated
        clients {
            0.0.0.0/0;
        }
    }
}

Related Links

Comment on this article > Affected Products Browse the Knowledge Base for more articles related to these product categories. Select a category to begin.

Getting Up and Running with Junos

Getting Up and Running with Junos Security Alerts and Vulnerabilities Product Alerts and Software Release Notices Problem Report (PR) Search Tool EOL Notices and Bulletins JTAC User Guide Customer Care User Guide Pathfinder SRX High Availability Configurator SRX VPN Configurator Training Courses and Videos End User Licence Agreement Global Search