Cisco Carrier Routing System and Cisco XR 12000 Series Router MIB Support Guide
Process Information for SNMP-centric MIBs
Downloads: This chapterpdf (PDF - 390.0KB) The complete bookPDF (PDF - 2.46MB) | Feedback

Table of Contents

Process Information for SNMP-centric MIBs

Overview of SNMP Framework MIBs

SNMP Message Processing

SNMPv1 and v2c Coexistence Message Processing

SNMPv3 Message Processing

SNMPv3 View-Based Access Control Model

SNMPv1/v2 Community Configuration to Tables Mappings

SNMPv1/v2 community config

SNMPv3 Configuration to Tables Mappings

SNMPv3 user config

SNMPv3 group config

SNMPv3 view config

Process Information for SNMP-centric MIBs

Overview of SNMP Framework MIBs

Table 1-1 is a summary of SNMP Framework MIBs

 

Table 1-1 SNMP Framework MIBs

MIB Module Name
RFC Number
Description

SNMPv2- MIB

RFC-1907

MIB for SNMPv2

SNMP-FRAMEWORK-MIB

RFC-2571

Architecture for describing SNMP management frameworks

SNMP-MPD-MIB

RFC-2572

Message Processing and Dispatching for SNMP

SNMP-TARGET-MIB

RFC-2573

MIBs for specifying targets of management operations

SNMP-NOTIFICATION-MIB

RFC-2573

MIB for notification filtering

SNMP-USER-BASED-SM-MIB

RFC-2574

USM1 for version 3

SNMP-VIEW-BASED-ACM-MIB

RFC-2575

VACM2

SNMP-COMMUNITY-MIB

RFC-2576

Coexistence between SNMP v1, v2, and v3

NOTIFICATION-LOG-MIB

RFC-2573

MIB for logging SNMP notifications

CISCO-BULK-FILE-MIB

MIB module for creating and deleting bulk files of SNMP data for file transfer

CISCO-FTP-CLIENT-MIB

MIB module for invoking internet FTP operations for network management processes

1.USM = User-based security model

2.VACM = View-based access control model

SNMP Message Processing

SNMPv1 and v2c Coexistence Message Processing

Figure 1-1 describes SNMPv1 and v2c Coexistence Message Processing.

Figure 1-1 SNMPv1 and v2c Coexistence Message Processing

SNMPv3 Message Processing

Figure 1-2 shows SNMPv3 PDU (Protocol Data Unit) with USM (user-based security model).

Figure 1-2 SNMPv3 Message Processing

SNMPv3 View-Based Access Control Model

Table 1-6 shows the SNMPv3 View-Based Access Control Model.

Figure 1-3 SNMPv3 View-Based Access Control Model

SNMPv1/v2 Community Configuration to Tables Mappings

SNMPv1/v2 community config

Example configuration command used for the following tables: snmp-server view tim2 RW


NoteThe first row ofTable 1-2 is a table index.


Table 1-2 is a summary of SNMPv1/v2 community config for SNMP-COMMUNITY-MIB

 

Table 1-2 SNMP-COMMUNITY-MIB: snmpCommunityTable

SNMP-COMMUNITY-MIB:: snmpCommunityTable (causes row creation)
Configuration
Sample Output

snmpCommunityName

“tim2”

snmpCommunitySecurityName

“tim2”

snmpCommunityContextEngineID

<localEngineID>

snmpCommunityContextName

“”

snmpCommunityTransportTag

“”


NoteThe first four rows ofTable 1-3 are table indexes.


Table 1-3 is a summary of SNMPv1/v2 community config for SNMP-VACM-MIB

 

Table 1-3 SNMP-VACM-MIB: vacmAccessEntry

SNMP-VACM-MIB:: vacmAccessEntry (causes row creation)
Configuration
Sample Output

vacmGroupName

“test-group”

vacmContextPrefix

“”

vacmSecurityModel

1 and 2 (v1 and v2)

vacmSecurityLevel

1 (noAuthNoPriv)

vacmAccessReadViewName

“v1default”

vacmAccessWriteViewName

“v1default”

vacmAccessNotifyViewName

“v1default”

Table 1-4 is a summary of SNMPv1/v2 community config for SNMP-VACM-MIB


NoteThe first two rows ofTable 1-4 are table indexes.


 

Table 1-4 SNMP-VACM-MIB: vacmSecurityToGroupEntry

SNMP-VACM-MIB:: vacmSecuritytoGroupEntry (causes row creation)
Configuration
Sample Output

vacmSecurityModel

1 and 2 (v1 and v2)

vacmSecurityName

“tim2”

vacmGroupName

“tim2”

SNMPv3 Configuration to Tables Mappings

SNMPv3 user config

Example configuration command used for the following tables: snmp-server user tim test-group v3


NoteThe first two rows ofTable 1-5 and Table 1-6 are table indexes.


Table 1-5 is a summary of SNMPv3 user config for SNMP-USM-MIB

 

Table 1-5 SNMP-USM-MIB: usmUserEntry

SNMP-USM-MIB:: usmUserEntry (causes row creation)
Configuration
Sample Output

usmUserEngineID

<localEngineID>

usmUserName

“tim”

usmUserSecurityName

“tim”

usmUserPrivProtocol

usmNoPrivProtocol

usmUserAuthProtocol

usmNoAuthProtocol

Table 1-6 is a summary of SNMPv3 user config for SNMP-VACM-MIB

 

Table 1-6 SNMP-VACM-MIB: vacmSecurityToGrouptEntry

SNMP-VACM-MIB:: vacmSecurityToGroupEntry (causes row creation)
Configuration
Sample Output

vacmSecurityModel

3

vacmSecurityName

“tim”

vacmGroupName

“test-group”

SNMPv3 group config

Example configuration command used for Table 1-7 : snmp-server group test_group v3 noauth notify test-view read test-view write test-view


NoteThe first four rows ofTable 1-7 are table indexes.


Table 1-7 is a summary of SNMPv3 group config for SNMP-VACM-MIB

 

Table 1-7 SNMP-VACM-MIB: vacmAccessEntry

SNMP-VACM-MIB:: vacmAccessEntry (causes row creation)
Configuration
Sample Output

vacmGroupName

“test-group”

vacmConextPrefix

“”

vacmSecurityModel

3 (v3)

vacmSecurityLevel

1 (noAuthNoPriv)

vacmAccessReadViewName

“test-view”

vacmAccessWriteViewName

“test-view”

vacmAccessNotifyViewName

“”

SNMPv3 view config

Example configuration command used for Table 1-8 : snmp-server view test-view internet included


NoteThe first two rows ofTable 1-8 are table indexes.


Table 1-8 is a summary of SNMPv3 group config for SNMP-USM-MIB

 

Table 1-8 SNMP-USM-MIB: vacmViewTreeFamilyEntry

SNMP-VACM-MIB:: vacmViewTreeFamilyEntry (causes row creation)
Configuration
Sample Output

vacmViewTreeFamilyViewName

“test-view”

vacmViewTreeFamilySubtree

.1.3.6.1 (OID = internet)

vacmViewTreeFamilyMask

“”

vacmViewTreeFamilyType

included