Technical Library
|
Support
TRITON® Appliances Command Line Interface
>
System configuration
> SNMP traps and queries
SNMP traps and queries
CLI Guide | TRITON Appliances | v8.3.x
Action and Syntax
Details
Display SNMP trap server on/off status and version information.
show trap config
SNMP monitor service and SNMP trap settings are independent, but SNMP monitor service must be enabled before you activate the SNMP trap configuration.
Display a table of SNMP trap events and settings.
show trap events
Save SNMP trap events settings for editing or later use.
save trap
--location <filestore_alias>
[--default]
Saves default trap settings for editing. If "--default" is not specified, saves current trap settings.
Example:
(config)# save trap --location samba-fs
Enable or disable SNMP traps.
set trap service
--status <on|off>
SNMP monitor service and SNMP trap settings are independent, but SNMP monitor service must be enabled to activate the SNMP trap configuration.
Example:
(config)# set trap service
--status on
Load SNMP trap events configuration from a file.
load trap
--location <filestore_alias>
--file <name>
Enter the name of a predefined remote filestore alias.
Example:
(config)# load trap --location samba-fs
--file list123
Send a test trap to verify SNMP communication.
test trap event
If there is a problem sending the test trap, verify the engine ID and authentication settings and values, and verify that the network allows communication between the appliance and the SNMP manager.
Configure SNMP v1 traps for alerting.
set trap v1
--community <name>
--ip <ip_address>
--port <port>
Enter a community name, trap server IP address, and port for traps sent by the appliance.
The community name must be 5 to 64 characters long, with no spaces. All other ASCII characters can be used.
Example:
(config)# set trap v1
--community myv1community --ip 10.0.0.14
--port 162
Configure SNMP v2c traps for alerting.
set trap v2c
--community <name>
--ip <ip_address>
--port <port>
Enter a community name, trap server IP address, and port for traps sent by the appliance.
The community name must be 5 to 64 characters long, with no spaces. All other ASCII characters can be used.
Example:
(config)# set trap v2c --community myv2community --ip 10.0.0.13
--port 162
Configure SNMP v3 traps for alerting.
set trap v3
--engineid <id>
--ip <ip_address>
--port <port>
--securitylevel <level>
...
There are 3 levels of security available for SNMP v3 traps:
No authentication or encryption:
noAuthNoPriv
Authentication only:
authNoPriv
Authentication and encryption:
authPriv
See full syntax for each security level, immediately below.
Configure SNMP v3 traps with no authentication or encryption.
set trap v3 --engineid <id>
--ip <ip_address>
--port <port>
--securitylevel
noAuthNoPriv
--user <username>
Specify the engine ID, IP address, port, and user name to use for communication with your SNMP manager.
The engine ID is a hexadecimal number between 10 and 64 characters long. The number cannot be all 0 or F characters, and the length of the string must be an even number.
User is the account name to use for SNMP communication. Enter a name between 1 and 15 characters, with no spaces. Only alphanumeric characters can be used.
Example:
(config)# set trap v3 --engineid 8000000001020304
--ip 10.0.0.13 --port 162
--securitylevel noAuthNoPriv
--user trapuser
Configure SNMP v3 traps with authentication only.
set trap v3 --engineid <id>
--ip <ip_address>
--port <port>
--securitylevel
authNoPriv
--user <username>
--authentication <md5|sha>
Specify the engine ID, IP address, port, and user name to use for communication with your SNMP manager.
The engine ID is a hexadecimal number between 10 and 64 characters long. The number cannot be all 0 or F characters, and the length of the string must be an even number.
User is the account name to use for SNMP communication. Enter a name with 1-15 alphanumeric characters, with no spaces.
Specify the authentication protocol used on the trap server (md5 or sha).
You are prompted for a password. Enter a password between 1 and 64 characters, with no spaces. All other ASCII characters are okay.
Example:
(config)# set trap v3
--engineid 0x802a0581
--ip 10.17.32.5 --port 162
--securitylevel authNoPriv
--authentication sha
--user test
Password: ********
Configure SNMP v3 traps with authentication and encryption.
set trap v3 --engineid <id>
--ip <ip_address>
--port <port>
--securitylevel authPriv
--user <username>
--authentication <md5|sha>
--encrypt <des|aes>
Specify the engine ID, IP address, port, and user name to use for communication with your SNMP manager.
The engine ID is a hexadecimal number between 10 and 64 characters long. The number cannot be all 0 or F characters, and the length of the string must be an even number.
User is the account name to use for SNMP communication. Enter a name with 1-15 alphanumeric characters, with no spaces.
Specify the authentication protocol used on the trap server (md5 or sha), and the SNMP encryption protocol (des or aes).
You are prompted for a password and encryption key. The 1 to 64 characters, and the key 8 to 64 characters long, with no spaces. All other ASCII characters can be used.
Example:
(config)# Set trap v3 --engineid 8000000001020304 --ip 10.0.0.25 --port 162 --securitylevel authPriv --user trapuser
--authentication sha --encrypt md5
TRITON® Appliances Command Line Interface
>
System configuration
> SNMP traps and queries
Copyright 2016 Forcepoint LLC. All rights reserved.