Re: Basic config for Debian package of net-snmp

Tue, 20 Jul 2004 04:52:09 -0700 

> OK, this is where I found that the file that the Debian package
> provided for me and the FAQ and other documentation did not
> seem to be talking about the same thing.


Sort of.
The Debian package is using the individual access control directives,
that are described in the very next FAQ entry:

  I don't understand the new access control stuff - what does it mean?

The "rocommunity" and similar settings are just a wrapper round these
(as it says in the first access control FAQ entry)


>                                  The relevant section from
> the /etc/snmp/snmpd.conf file looks like this:-
> 
> <<<<<<<<<<<<<
> 
> ####
> # First, map the community name (COMMUNITY) into a security name
> # (local and mynetwork, depending on where the request is coming
> # from):
> 
> #       sec.name  source          community
> com2sec paranoid  default         public
> #com2sec readonly  default         public

OK - so why not try using this other setting. Comment out the
"com2sec paranoid" line, and uncomment the "com2sec readonly" line.

That will then pick up:

> group MyROGroup v1         readonly
> group MyROGroup v2c        readonly
> access MyROGroup ""      any       noauth    exact  all    none   none

rather than:

> group MyROSystem v1        paranoid
> group MyROSystem v2c       paranoid
> access MyROSystem ""     any       noauth    exact  system none   none

as required.



> There does not seem to be a line that starts rocommunity....
> Adding in the rocommunity public line made no difference.

No - I wouldn't advise mixing the two styles.
Use one or the other, not both.



> Essentially I want to set up my access for read only, and to be able
> to read anything that is available.

Yup - switching to use

    com2sec readonly  default         public

should do that.


Dave



-------------------------------------------------------
This SF.Net email is sponsored by BEA Weblogic Workshop
FREE Java Enterprise J2EE developer tools!
Get your free copy of BEA WebLogic Workshop 8.1 today.
http://ads.osdn.com/?ad_idG21&alloc_id040&op=click
_______________________________________________
Net-snmp-users mailing list
[EMAIL PROTECTED]
Please see the following page to unsubscribe or change other options:
https://lists.sourceforge.net/lists/listinfo/net-snmp-users

Reply via email to