Hi,
The initial Problem:
-----------------------------
Inform ACKs are block by my Firewall.
Net-SNMP sends out an Infrom : [port X] --> [port 162]
Std. Infrom receiver replies: [port Y] --> [port X]
* X,Y are random ports.
Solution concept:
--------------------------
AMke net-snmp send the Informs from fixed source-ports.
So that we can allow the predefined UDP ports in the Firewall
Implementation outline:
------------------------------------
1) I'm using the snmpNotifyMIB and snmpTargetMIB for sending traps.
2) Becasue net-snmp maintains an open session for each Infrom receiver,
and each such session binds to a certain port to be re-used for
sending out Informs,
it seems that I need a different port for each Inform receiver.
(In my case I limit the receivers' number to 3, so I'll predefine 3
ports.)
3) I thought that in get_target_sessions() (target.c),
I can set the [localname , local_port] in the netsnmp_session
structure of each receiver,
when the session is created.
It doesn't seem to be working very neatly. I'm working on it.
Quesitons:
----------------
1) Does this make sence?
2) Can all Infrom-receivers be using the same session? (So I can use
only 1 port)
P.S:
I also would like to disable the engineID Probe which is not really
needed since we can take the engineID from the USM table of the
appropriate user.
Any ideas about that? (I thought I can access the USM table also in the
get_target_sessions() and set the appropriate securityEndingID.
Thanks,
Erez.
-------------------------------------------------------------------------
This SF.net email is sponsored by DB2 Express
Download DB2 Express C - the FREE version of DB2 express and take
control of your XML. No limits. Just data. Click to get it now.
http://sourceforge.net/powerbar/db2/
_______________________________________________
Net-snmp-coders mailing list
Net-snmp-coders@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/net-snmp-coders
