Dear All,

As per my implementation, I would like to have only one Manager in my
network who can configure my device, rest all can read the configuration.
For example, even multiple NMS available in the network which can read the
configuration(GET) where *only one NMS can write the configurations*(SET).

This can be achieved by adding the following directive in snmpd.conf in
case of SNMPv1 and SNMPv3,

rwcommunity public 192.168.1.1

But how can I achieve the same in case of SNMPv3? Please advise.

If my Agent is configured in SNMPv3, the following directives will be
available in the snmpd.conf file,

createUser admin MD5 password AES password123
rwuser admin priv

I tried to do the source filtering whenever the agent receives a packet and
able to achieve the same by updating the snmpUDPDomain.c and
snmpUDPIPv6Domain.c files. But due to these changes, the Agent is not
accepting GET and SET requests as it is not parsing as soon as it receives
a packet.

During the analysis, I get to know that the Agent does not perform any
source based handling in case of SNMPv3 requests as it is already much
secured. (Please correct me if I'm wrong)

So can I have source address control for SNMPv1 and SNMPv2c alone?

-- 
With Best Regards,
Anandaprabu V <https://www.linkedin.com/in/anandaprabu-v-10867671/>
Cell : +91 9500650885 | Skype : prabuvaradharajan
_______________________________________________
Net-snmp-coders mailing list
Net-snmp-coders@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/net-snmp-coders

Reply via email to