Re: snmptrap v3 authentication

Den 25-04-2023 kl. 15:10 skrev Simon Chamlian: > > I tried the command: > > snmptrap -v 3 -u Simon -a MD5 -A SimonPass -l authNoPriv 172.27.37.227 > "" coldStart.0 > > (with security name : Simon and authentication password : SimonPass ). > > Th

Re: snmptrap v3 authentication

entication password!?! Simon On Tue, Apr 25, 2023 at 3:17 AM Craig Small via Net-snmp-coders < net-snmp-coders@lists.sourceforge.net> wrote: > On Sat, 15 Apr 2023 at 11:12, Simon Chamlian > wrote: > >> >> snmptrap -v 3 -u Simon -a MD5 -A SimonPass -l authN

Fwd: snmptrap v3 authentication

Hi, The snmptrap v3 authentication does not seem to be working. I am using Version: 5.9.1 >From my agent, I issue: snmptrap -v 3 -u Simon -a MD5 -A SimonPass -l authNoPriv 172.27.37.227 "" coldStart.0 I do receive the trap on my Trap Receiver even if I didn't specify a Username and

Re: Diffie-Hellman Key

So once it is compiled in, how do you add the Diffie-Hellman in createUser instruction in the snmpd.conf file? -Simon On Wed, Sep 7, 2022 at 11:21 AM Wes Hardaker wrote: > Craig Small via Net-snmp-coders > writes: > > > My understanding is the only way of adding the key is with the snmpusm >

Diffie-Hellman Key

Hi, Does NET-SNMP 5.9.x support Diffie-Hellman? If so, how do I configure it in snmpd.configuration? For example, if I have the following in snmpd.conf: createUser simon SHA "simon-pass" AES128 "simon-priv" rwuser simon How do I add a DH key? Thanks, S.

MIB search path

Hi, When using snmpinform, I get the messages: SNMPInform failed: MIB search path: /root/.snmp/mibs:/usr/share/snmp/mibs Where are these MIB search paths defined? When I issue: # net-snmp-config --default-mibdirs /home/root/.snmp/mibs:/usr/share/snmp/mibs So it should look for:

NET-SNMP version: 5.8 - v1/ v2 blocked, v3 works

Hi, Seems like v1/v2 is blocked while v3 works fine. *V3 works Fine* # snmpget -v 3 -u Simon -a MD5 -A simon123 -l authNoPriv localhost NEM-DCI-MIB::nemDCISnmpTrapPort.0 NEM-DCI-MIB::nemDCISnmpTrapPort.0 = INTEGER: 162 *V1/V2 does not work* # snmpget -v 2c -c public localhost

Compiling Net-SNMP with TLS and DTLS Support

Hi, Compiling Net-SNMP with TLS and DTLS Support Just ensure you have a recent version of OpenSSL installed as well as run configure with the following two options in addition to your normal options: # ./configure

Re: Net-SNMP 5.8 compatibility issue

The incompatibility started when I upgraded OpenSSL. Since I am compiling NET-SNMP within yocto, I cannot do 'make install'. On Mon, Aug 31, 2020 at 11:18 AM Wes Hardaker < harda...@users.sourceforge.net> wrote: > Simon Chamlian writes: > > > There seems to be a compatibi

Net-SNMP 5.8 compatibility issue

Hi, There seems to be a compatibility issue between net-snmp and the crypto library. The libcrypto has been updated to 1.1, but snmp still calls for 1.0.2 instead of using the link. ~# snmpd -v snmpd: error while loading shared libraries: libcrypto.so.1.0.2: cannot open shared object file: No

Re: v5.8 - Error opening specified endpoint ""

# # cat /etc/services | grep 161 snmp 161/tcp # Simple Net Mgmt Protocol snmp 161/udp # On Fri, Mar 6, 2020 at 4:30 PM David Moriconi (dmoricon) wrote: > This error can also happen when port 161 is already in use. Make sure it > is not the case. > > > > *From: *Simon Chamlian

Re: v5.8 - Error opening specified endpoint ""

pd_log.txt udp:0.0.0.0:161 > > On Thu, Mar 5, 2020 at 11:53 AM Simon Chamlian > wrote: > >> Hi, >> >> When I start snmpd agent, it exists with an error message: >> Error opening specified endpoint "" >> >> I start

v5.8 - Error opening specified endpoint ""

Hi, When I start snmpd agent, it exists with an error message: Error opening specified endpoint "" I start as root with: snmpd -c /home/user/my_snmpd.conf -Lf /tmp/snmpd_log.txt The config file my_snmpd.conf is very simple: createUser Simon MD5 "Simon-pass" rwuser

SNMP Reflection DDOS Attacks

Hi, According to the following synopsis https://www.akamai.com/us/en/multimedia/documents/state-of-the-internet/snmp-reflector-attacks-threat-advisory.pdf The remote SNMP daemon is responding with a large amount of data to a 'GETBULK' request with a larger than normal value for

Re: Authentication failed for user

tion succeeded.\n")); } On Thu, Apr 25, 2019 at 2:28 PM Simon Chamlian wrote: > Hi, > > I am issuing an inform, (*which works fine* as I get the inform) but > getting the following error: > > snmpinform -v 3 -r 1 -t 1 -u "User" -a MD5 -A &quo

Authentication failed for user

Hi, I am issuing an inform, (*which works fine* as I get the inform) but getting the following error: snmpinform -v 3 -r 1 -t 1 -u "User" -a MD5 -A "UserPass" -l authNoPriv 172.27.37.222 "" DCI-MIB::DCITrapCritical DCI-MIB::NEID s "NE_Identif" *Authentication failed for User* Any reason why I

Re: Net-SNMP 5.8 - Having both snmp v2 and v3 available.

I got it working. Since I was compiling under Yocto, the cache wasn't cleared. Thanks, S On Tue, Sep 11, 2018 at 11:17 AM, Wes Hardaker < harda...@users.sourceforge.net> wrote: > Simon Chamlian writes: > > > I am not seeing and compilation errors. It compiles fine but v2

Re: Net-SNMP 5.8 - Having both snmp v2 and v3 available.

ri, Aug 31, 2018 at 11:33 AM, Wes Hardaker < harda...@users.sourceforge.net> wrote: > Simon Chamlian writes: > > > With snmp 5.7.3 I used to have the agent handling both v2 and v3. > > > > With 5.8, only v3 seems to be available. > > No, they should both

Net-SNMP 5.8 - Having both snmp v2 and v3 available.

Greetings, With snmp 5.7.3 I used to have the agent handling both v2 and v3. With 5.8, only v3 seems to be available. Did the compilation flags changed ? Do I need a specific flag (something like --enable_v2) to enable both v2 and v3? Thanks, S

snmpwalk - " Error in packet. Reason: (genError) A general failure occured "

Hi, Issuing a snmpwalk on a table is getting the whole table and then finishes with : " Error in packet. Reason: (genError) A general failure occured " error. Is this a known bug? Thanks, S -- Check out the vibrant

Re: Net-snmp 5.7.3 Yocto - [No Such Object available on this agent at this OID]

Did anyone used net-snmp under systemd ? On Thu, Aug 23, 2018 at 3:24 PM, Simon Chamlian wrote: > Hi, > > I have been working several days on this issue without any success. > > On our old Linux embedded system (using LTIB - Linux target Integrated > Builder), the agent was

Net-snmp 5.7.3 Yocto - [No Such Object available on this agent at this OID]

Hi, I have been working several days on this issue without any success. On our old Linux embedded system (using LTIB - Linux target Integrated Builder), the agent was working fine. Now I am trying to port it on a new system using Yocto to build the image. Basically I have my own MIB and

Re: Adding c files to build agent

, Bart Van Assche wrote: > On 08/21/18 06:01, Simon Chamlian wrote: > > Any pointers on how I can use AgentX ? > > Please keep the list in Cc: when replying. > More information about AgentX is available at > http://net-snmp.sourceforge.net/wiki/index.php/TUT:Writing_a_Subage

Adding c files to build agent

Hi, I am trying to adapt the agent to our requirements. In order to do so, I need to add some code (c files) to the agent to handle our own MIB. The agent is running on an embedded system (Linux-systemd) using Yocto to build it. Where (in which makefile) do I add my own code? I need to do

porting Net-SNMP 5.8 to Yocto

Hi, While trying to port the newly released net-snmp to yocto, I am getting the following error: ERROR: This autoconf log indicates errors, it looked at host include and/or library paths while determining system capabilities. Rerun configure task after fixing this. DEBUG: Python function

Creating a user with NoAuthNoPriv

Hi, It is not possible to create a user with no authentication and no privacy in snmpd.conf? I tried (http://net-snmp.sourceforge.net/wiki/index.php/TUT:SNMPv3_Options): rouser noAuthUser createUser NoAuthUser but I get the following error: # snmpgetnext -v 3 -n "" -u noAuthUser -l

Re: Does Net-SNMP support AES192 or AES256?

uot;default-00" FAILED createUser user4c SHA "authpw-00" AES256C "default-00" Works In summary, it works when 'C' is added ("Cisco" algorithm); Unfortunately I couldn't try SHA224, SHA256, SHA384 and SHA512 since my browser supports only SHA96 Thank you Bill !

Re: Does Net-SNMP support AES192 or AES256?

mon, > > The USM AES192 and AES256 support is based upon an Internet Draft, which > never became a standard - therefore, you have to pass > "--enable-blumenthal-aes" to ./configure. (You don't have to enable TSM or > the TLS transports; that's a whole different kettle of fish.)

Re: Does Net-SNMP support AES192 or AES256?

y specified some older algorithms that were "latest and greatest" > at the time it was being drafted :( > > Thanks, > Keith > Thanks, > Keith > > > On Thu, Apr 5, 2018 at 1:54 PM, Simon Chamlian <simon.chaml...@mpbc.ca> > wrote: > > >

Fwd: Does Net-SNMP support AES192 or AES256?

Hi, Does Net-SNMP support AES192 or AES256? According to this link http://www.net-snmp.org/wiki/index.php/Strong_Authentication_or_Encryption The short answer is Yes, starting with release 5.8 AES193 and AES256 are an optional configure option. So I downloaded version 5.8.pre2 and tried:

snmpd log file

Hi, I am seeing some weird messages in the log file generated by snmpd. Example: Sending 194 bytes to UDP: [172.27.37.227]:60682->[172.27.42.214]:161 : 30 81 BF 02 01 03 30 0D 02 01 0A 02 02 05 C0 040.0. 0016: 01 01 02 01 03 04 2E 30 2C 04 0D 80 00 1F 88 80

Re: NET-SNMP version: 5.7.3 and IPv6

would cause “rocommunity6” to not work but > “agentaddress udp6:…” would work. > > Bill > ​ > > On Wed, Jan 24, 2018 at 11:42 AM, Simon Chamlian <simon.chaml...@mpbc.ca> > wrote: > >> Seems like --enable-ipv6 is not enough to make SNMPv2 work with IPv6 >>

Re: NET-SNMP version: 5.7.3 and IPv6

ot show rwcommunity6 and rocommunity6 . So what other flags do I need in addition to (--enable-ipv6) to re-compile to make rwcommunity6/rocommunity6 available? S. On Mon, Jan 15, 2018 at 2:37 PM, Simon Chamlian <simon.chaml...@mpbc.ca> wrote: > Hi, > > Just recompiled the

Re: NET-SNMP version: 5.7.3 and IPv6

.net> wrote: > On Wed, Jan 17, 2018 at 10:58:40AM -0500, Simon Chamlian wrote: > > but these tokens are not recognized: > > ./snmpd.conf: line 12: Warning: Unknown token: rocommunity6. > > ./snmpd.conf: line 13: Warning: Unknown token: rwcommunity6. > > Th

Re: NET-SNMP version: 5.7.3 and IPv6

ses? I wouldn't be horribly surprised if > scope zones were not supported properly. (Global v6 addresses have worked > for me in net-snmp for years.) > > Bill > > > On Mon, Jan 15, 2018 at 2:37 PM, Simon Chamlian <simon.chaml...@mpbc.ca> > wrote: > >>

Re: Adding description within trap PDU

Never mind, I found the answer. Yes it can by adding a '-s "some text". Thanks, S On Mon, Jan 15, 2018 at 2:16 PM, Simon Chamlian <simon.chaml...@mpbc.ca> wrote: > Hi, > > Is it possible to add a description within a trap (either v2 or v3)? > > for exam

Adding description within trap PDU

Hi, Is it possible to add a description within a trap (either v2 or v3)? for example: snmptrap -v 2c -c public 172.27.37.227 "" coldStart.0 snmptrap -v 3 -u Admin -a MD5 -A Admin-00 -l authNoPriv 172.27.37.227 "" coldStart.0 Is there an way to add a descriptive text? As far as I know, the

NET-SNMP version: 5.7.3 and IPv6

Hi, Just recompiled the agent by enabling IPv6 ( --enable-ipv6). The agent is working fine but don't seem to be able to use IPv6. Example: # snmpget -v 3 -u Admin -a MD5 -A Admin-00 -l authNoPriv 172.27.42.199 MPBC-1RU-MIB::mpbc1RUNEID.0 -Oqv "TestNew" works fine. In Ipv6: # snmpget -v 3

where the PDU came from?

Greetings, I know this has been discussed with no solution: https://sourceforge.net/p/net-snmp/mailman/message/14061653/ but I need to know where the PDU came from (the IP address of the manager station where the SNMP-GET PDU came) in the agent. Reason is I have a requirement to restrict