Jump to:navigation, search
Wiki

SNMP

From Securepoint Wiki

























































De.png
En.png
Fr.png









Konfiguration of SNMP-Monitoring

Last adaptation to the version: 12.6.0

New:
  • Updated to Redesign of the webinterface
notempty
This article refers to a Resellerpreview
Access: UTM-IP:Port or UTM-URL:Port
Port as configured at Network / Appliance Settings / Webserver
Default-Port: 11115
i.e.: https://utm.ttt-point.de:11115
Default: https://192.168.175.1:11115 Network Appliance Settings  Area SNMP


Introduction

The SNMP protocol is used for monitoring, error detection and error notification and is standardized.
The SNMP configuration of the UTM generally allows read-only access.
The UTM supports the following version of the SNMP protocol:

  • SNMP version 1
  • SNMP version 2c
  • SNMP version 3
  • Version 3 of the SNMP protocol allows encrypted communication. SHA1 and AES are used for encryption.
    • notempty
    If this data is requested, SNMP version 3 must be used for data protection reasons mandatory!


    Configure UTM

    Enable SNMP

    SNMP Version 1 and 2c
    Caption Value Description Server configuration UTMuser@firewall.name.fqdnNetwork UTM v12.6 SNMP Servereinstellungen SNMP 1 und 2c-en.pngServer settings SNMP 1 and 2c
    SNMP Version: 12c3 Choose prefered version
    Edit Community String: public These versions use a community string that must be entered here.
    Add Network 203.0.113.0/24 Opens a window in which a new network can be created.
    notempty
    If a network is to be shared, the exact network address must be selected.
    Delete Löscht das Netzwerk
    Save
    		 Saves the settings
    SNMP Version 3
    SNMP Version: 12c3 Choose prefered version UTM v12.6 SNMP Servereinstellungen SNMP 3-en.png
    Server settings SNMP 3
    SNMP Version 3 Username: snmpv3user Enter username
    SNMP Version 3 Password: •••••••••• Enter password
    Save
    		 Saves the settings
  • After the SNMP setup is completed, the SNMP service should be checked under Applications Application Status and started if necessary.


    • Packet filter rule

    A packet filter rule is required to access the SNMP service. This can be added under Firewall Packet filter  Button Add rule.

    General
    		Packet filter UTMuser@firewall.name.fqdnFirewallPacket filter UTM v12.6 SNMP Paketfilterregel-en.pngCreate packet filter rule
    Source: Host.svg Monitoring Server Network object that contains the host or network that will access the SNMP service
    Destination: Interface.svg internal-interface The interface via which the UTM is reached
    Service: Udp.svg snmp Choose SNMP
    Add and close
    		 Saves the rule and closes the creation dialogue.
    Update Rules
    		 Must be clicked for the rule to be finally activated.


    OIDs

    The SNMP section of the Securepoint Reseller Portal in the download area contains a .mib file that contains all OIDs currently available on the UTM with description and can be imported into common monitoring applications.
    An overview of the most important OIDs that can be queried can be found in the article SNMP-OIDs .

    Retrieved from "https://wiki.securepoint.de/index.php?title=UTM/NET/SNMP&oldid=94866"