Now, are you receiving security traps?
On 11-10-12 4:47 PM, Marlon Bastida wrote:
Francois,
I'm using PF 2.0.1 documentation, but based on that u said I did:
- deleted some lines on the CLI switch
no snmp-server enable traps snmp authentication linkdown linkup
no snmp-server enable traps MAC-Notification
Will modify to just include engineID 123400000000000000000000 on the
1st line, and following lines I will comment because SNMP v1, if I
have to change with your help to a new SNMP version we can include again.
SNMPEngineID=ARRAY(0X9ac3dcc)
#SNMPPrivProtocoloRead=ARRAY(0x9acb670)
#SNMPPrivProtocoloWrite=ARRAY(0x9ac3ed4)
Have no idea why appeared to me these lines with ARRAY. I edited the
files directly by vi editor and sometimes by web interface.
Tks in advance,
Marlon
2011/10/11 Francois Gaudreault <[email protected]
<mailto:[email protected]>>
Before helping you, couple of things,
> -----
> snmp-server engineID local 123400000000000000000000
> snmp-server community public RO
> snmp-server community private RW
> snmp-server enable traps snmp authentication linkdown linkup
> snmp-server enable traps port-security
> snmp-server enable traps port-security traprate 1
> snmp-server enable traps MAC-Notification
> snmp-server host 192.168.50.120 public
>
This is not what we say in our configuration guide, so go back and
carefully read the page 16 ( Cisco 2950 with port-security).
MAC-Notif
and linkstatus traps SHOULD NOT be enabled if you use port-security.
>
> [192.168.50.111]
> type=Cisco::Catalyst_2950
> mode=production
> vlans=2,3,4,5,10
> normalVlan=10
> SNMPVersionTrap=1
> SNMPCommunityTrap=public
> SNMPCommunityRead=public
> SNMPCommunityWrite=private
> SNMPEngineID=ARRAY(0X9ac3dcc)
> SNMPPrivProtocoloRead=ARRAY(0x9acb670)
> SNMPPrivProtocoloWrite=ARRAY(0x9ac3ed4)
> uplink= (let blank because I don't
have a
> uplink, gateway)
> -----
What are those ARRAY thing in your switches.conf ????
--
Francois Gaudreault, ing. jr
[email protected] <mailto:[email protected]> ::
+1.514.447.4918 <tel:%2B1.514.447.4918> (x130) :: www.inverse.ca
<http://www.inverse.ca>
Inverse inc. :: Leaders behind SOGo (www.sogo.nu
<http://www.sogo.nu>) and PacketFence (www.packetfence.org
<http://www.packetfence.org>)
------------------------------------------------------------------------------
All the data continuously generated in your IT infrastructure
contains a
definitive record of customers, application performance, security
threats, fraudulent activity and more. Splunk takes this data and
makes
sense of it. Business sense. IT sense. Common sense.
http://p.sf.net/sfu/splunk-d2d-oct
_______________________________________________
Packetfence-users mailing list
[email protected]
<mailto:[email protected]>
https://lists.sourceforge.net/lists/listinfo/packetfence-users
------------------------------------------------------------------------------
All the data continuously generated in your IT infrastructure contains a
definitive record of customers, application performance, security
threats, fraudulent activity and more. Splunk takes this data and makes
sense of it. Business sense. IT sense. Common sense.
http://p.sf.net/sfu/splunk-d2d-oct
_______________________________________________
Packetfence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
--
Francois Gaudreault, ing. jr
[email protected] :: +1.514.447.4918 (x130) :: www.inverse.ca
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.org)
------------------------------------------------------------------------------
All the data continuously generated in your IT infrastructure contains a
definitive record of customers, application performance, security
threats, fraudulent activity and more. Splunk takes this data and makes
sense of it. Business sense. IT sense. Common sense.
http://p.sf.net/sfu/splunk-d2d-oct
_______________________________________________
Packetfence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
