Check Information Restriction
This scenario shows how to configure a view to restrict information for incoming requests in SNMPv3. In addition, the SNMP ‘walk’ and ‘table’ commands are checked.
Test SNMPv3
Description
A restricted view is configured for a user in DUT0 and the ‘walk’ and ‘table’ commands are used to check incoming requests in SNMPv3.
Scenario
Step 1: Set the following configuration in DUT0 :
set interfaces ethernet eth0 address 10.0.0.1/24 set service snmp user USER2TEST set system login user admin authentication encrypted-password '$6$GSjsCj8gHLv$/VcqU6FLi6CT2Oxn0MJQ2C2tqnRDrYKNF8HIYWJp68nvXvPdFccDsT04.WtigUONbKYrgKg8d6rEs8PjljMkH0'
Step 2: Set the following configuration in DUT1 :
set interfaces ethernet eth0 address 10.0.0.2/24 set system login user admin authentication encrypted-password '$6$GSjsCj8gHLv$/VcqU6FLi6CT2Oxn0MJQ2C2tqnRDrYKNF8HIYWJp68nvXvPdFccDsT04.WtigUONbKYrgKg8d6rEs8PjljMkH0'
Note
Initially, local and DUT1 requests are allowed, since there are no restrictions by default.
Step 3: Run command service snmp walk local-agent v3 USER2TEST oid ifTable at DUT0 and check if output matches the following regular expressions:
::ifDescr\.1 = STRING: "?lo"?Show output
IF-MIB::ifIndex.1 = INTEGER: 1 IF-MIB::ifIndex.2 = INTEGER: 2 IF-MIB::ifIndex.3 = INTEGER: 3 IF-MIB::ifIndex.4 = INTEGER: 4 IF-MIB::ifIndex.30 = INTEGER: 30 IF-MIB::ifIndex.31 = INTEGER: 31 IF-MIB::ifIndex.32 = INTEGER: 32 IF-MIB::ifIndex.199 = INTEGER: 199 IF-MIB::ifIndex.202 = INTEGER: 202 IF-MIB::ifIndex.204 = INTEGER: 204 IF-MIB::ifDescr.1 = STRING: lo IF-MIB::ifDescr.2 = STRING: eth0 IF-MIB::ifDescr.3 = STRING: eth1 IF-MIB::ifDescr.4 = STRING: ip_vti0 IF-MIB::ifDescr.30 = STRING: gre0 IF-MIB::ifDescr.31 = STRING: gretap0 IF-MIB::ifDescr.32 = STRING: erspan0 IF-MIB::ifDescr.199 = STRING: sit0 IF-MIB::ifDescr.202 = STRING: tunl0 IF-MIB::ifDescr.204 = STRING: ip6tnl0 IF-MIB::ifType.1 = INTEGER: softwareLoopback(24) IF-MIB::ifType.2 = INTEGER: ethernetCsmacd(6) IF-MIB::ifType.3 = INTEGER: ethernetCsmacd(6) IF-MIB::ifType.4 = INTEGER: tunnel(131) IF-MIB::ifType.30 = INTEGER: tunnel(131) IF-MIB::ifType.31 = INTEGER: ethernetCsmacd(6) IF-MIB::ifType.32 = INTEGER: ethernetCsmacd(6) IF-MIB::ifType.199 = INTEGER: tunnel(131) IF-MIB::ifType.202 = INTEGER: tunnel(131) IF-MIB::ifType.204 = INTEGER: tunnel(131) IF-MIB::ifMtu.1 = INTEGER: 65536 IF-MIB::ifMtu.2 = INTEGER: 1500 IF-MIB::ifMtu.3 = INTEGER: 1500 IF-MIB::ifMtu.4 = INTEGER: 1480 IF-MIB::ifMtu.30 = INTEGER: 1476 IF-MIB::ifMtu.31 = INTEGER: 1462 IF-MIB::ifMtu.32 = INTEGER: 1450 IF-MIB::ifMtu.199 = INTEGER: 1480 IF-MIB::ifMtu.202 = INTEGER: 1480 IF-MIB::ifMtu.204 = INTEGER: 1452 IF-MIB::ifSpeed.1 = Gauge32: 10000000 IF-MIB::ifSpeed.2 = Gauge32: 0 IF-MIB::ifSpeed.3 = Gauge32: 0 IF-MIB::ifSpeed.4 = Gauge32: 0 IF-MIB::ifSpeed.30 = Gauge32: 0 IF-MIB::ifSpeed.31 = Gauge32: 0 IF-MIB::ifSpeed.32 = Gauge32: 0 IF-MIB::ifSpeed.199 = Gauge32: 0 IF-MIB::ifSpeed.202 = Gauge32: 0 IF-MIB::ifSpeed.204 = Gauge32: 0 IF-MIB::ifPhysAddress.1 = STRING: IF-MIB::ifPhysAddress.2 = STRING: de:ad:be:ef:6c:0 IF-MIB::ifPhysAddress.3 = STRING: de:ad:be:ef:6c:1 IF-MIB::ifPhysAddress.4 = STRING: IF-MIB::ifPhysAddress.30 = STRING: IF-MIB::ifPhysAddress.31 = STRING: IF-MIB::ifPhysAddress.32 = STRING: IF-MIB::ifPhysAddress.199 = STRING: IF-MIB::ifPhysAddress.202 = STRING: IF-MIB::ifPhysAddress.204 = STRING: IF-MIB::ifAdminStatus.1 = INTEGER: up(1) IF-MIB::ifAdminStatus.2 = INTEGER: up(1) IF-MIB::ifAdminStatus.3 = INTEGER: down(2) IF-MIB::ifAdminStatus.4 = INTEGER: down(2) IF-MIB::ifAdminStatus.30 = INTEGER: down(2) IF-MIB::ifAdminStatus.31 = INTEGER: down(2) IF-MIB::ifAdminStatus.32 = INTEGER: down(2) IF-MIB::ifAdminStatus.199 = INTEGER: down(2) IF-MIB::ifAdminStatus.202 = INTEGER: down(2) IF-MIB::ifAdminStatus.204 = INTEGER: down(2) IF-MIB::ifOperStatus.1 = INTEGER: up(1) IF-MIB::ifOperStatus.2 = INTEGER: up(1) IF-MIB::ifOperStatus.3 = INTEGER: down(2) IF-MIB::ifOperStatus.4 = INTEGER: down(2) IF-MIB::ifOperStatus.30 = INTEGER: down(2) IF-MIB::ifOperStatus.31 = INTEGER: down(2) IF-MIB::ifOperStatus.32 = INTEGER: down(2) IF-MIB::ifOperStatus.199 = INTEGER: down(2) IF-MIB::ifOperStatus.202 = INTEGER: down(2) IF-MIB::ifOperStatus.204 = INTEGER: down(2) IF-MIB::ifLastChange.1 = Timeticks: (0) 0:00:00.00 IF-MIB::ifLastChange.2 = Timeticks: (0) 0:00:00.00 IF-MIB::ifLastChange.3 = Timeticks: (0) 0:00:00.00 IF-MIB::ifLastChange.4 = Timeticks: (0) 0:00:00.00 IF-MIB::ifLastChange.30 = Timeticks: (0) 0:00:00.00 IF-MIB::ifLastChange.31 = Timeticks: (0) 0:00:00.00 IF-MIB::ifLastChange.32 = Timeticks: (0) 0:00:00.00 IF-MIB::ifLastChange.199 = Timeticks: (0) 0:00:00.00 IF-MIB::ifLastChange.202 = Timeticks: (0) 0:00:00.00 IF-MIB::ifLastChange.204 = Timeticks: (0) 0:00:00.00 IF-MIB::ifInOctets.1 = Counter32: 259411 IF-MIB::ifInOctets.2 = Counter32: 1208959640 IF-MIB::ifInOctets.3 = Counter32: 2368910873 IF-MIB::ifInOctets.4 = Counter32: 0 IF-MIB::ifInOctets.30 = Counter32: 0 IF-MIB::ifInOctets.31 = Counter32: 0 IF-MIB::ifInOctets.32 = Counter32: 0 IF-MIB::ifInOctets.199 = Counter32: 0 IF-MIB::ifInOctets.202 = Counter32: 0 IF-MIB::ifInOctets.204 = Counter32: 0 IF-MIB::ifInUcastPkts.1 = Counter32: 0 IF-MIB::ifInUcastPkts.2 = Counter32: 0 IF-MIB::ifInUcastPkts.3 = Counter32: 0 IF-MIB::ifInUcastPkts.4 = Counter32: 0 IF-MIB::ifInUcastPkts.30 = Counter32: 0 IF-MIB::ifInUcastPkts.31 = Counter32: 0 IF-MIB::ifInUcastPkts.32 = Counter32: 0 IF-MIB::ifInUcastPkts.199 = Counter32: 0 IF-MIB::ifInUcastPkts.202 = Counter32: 0 IF-MIB::ifInUcastPkts.204 = Counter32: 0 IF-MIB::ifInNUcastPkts.1 = Counter32: 0 IF-MIB::ifInNUcastPkts.2 = Counter32: 0 IF-MIB::ifInNUcastPkts.3 = Counter32: 0 IF-MIB::ifInNUcastPkts.4 = Counter32: 0 IF-MIB::ifInNUcastPkts.30 = Counter32: 0 IF-MIB::ifInNUcastPkts.31 = Counter32: 0 IF-MIB::ifInNUcastPkts.32 = Counter32: 0 IF-MIB::ifInNUcastPkts.199 = Counter32: 0 IF-MIB::ifInNUcastPkts.202 = Counter32: 0 IF-MIB::ifInNUcastPkts.204 = Counter32: 0 IF-MIB::ifInDiscards.1 = Counter32: 0 IF-MIB::ifInDiscards.2 = Counter32: 172 IF-MIB::ifInDiscards.3 = Counter32: 0 IF-MIB::ifInDiscards.4 = Counter32: 0 IF-MIB::ifInDiscards.30 = Counter32: 0 IF-MIB::ifInDiscards.31 = Counter32: 0 IF-MIB::ifInDiscards.32 = Counter32: 0 IF-MIB::ifInDiscards.199 = Counter32: 0 IF-MIB::ifInDiscards.202 = Counter32: 0 IF-MIB::ifInDiscards.204 = Counter32: 0 IF-MIB::ifInErrors.1 = Counter32: 0 IF-MIB::ifInErrors.2 = Counter32: 0 IF-MIB::ifInErrors.3 = Counter32: 0 IF-MIB::ifInErrors.4 = Counter32: 0 IF-MIB::ifInErrors.30 = Counter32: 0 IF-MIB::ifInErrors.31 = Counter32: 0 IF-MIB::ifInErrors.32 = Counter32: 0 IF-MIB::ifInErrors.199 = Counter32: 0 IF-MIB::ifInErrors.202 = Counter32: 0 IF-MIB::ifInErrors.204 = Counter32: 0 IF-MIB::ifInUnknownProtos.1 = Counter32: 0 IF-MIB::ifInUnknownProtos.2 = Counter32: 0 IF-MIB::ifInUnknownProtos.3 = Counter32: 0 IF-MIB::ifInUnknownProtos.4 = Counter32: 0 IF-MIB::ifInUnknownProtos.30 = Counter32: 0 IF-MIB::ifInUnknownProtos.31 = Counter32: 0 IF-MIB::ifInUnknownProtos.32 = Counter32: 0 IF-MIB::ifInUnknownProtos.199 = Counter32: 0 IF-MIB::ifInUnknownProtos.202 = Counter32: 0 IF-MIB::ifInUnknownProtos.204 = Counter32: 0 IF-MIB::ifOutOctets.1 = Counter32: 259411 IF-MIB::ifOutOctets.2 = Counter32: 3683772603 IF-MIB::ifOutOctets.3 = Counter32: 3368597513 IF-MIB::ifOutOctets.4 = Counter32: 0 IF-MIB::ifOutOctets.30 = Counter32: 0 IF-MIB::ifOutOctets.31 = Counter32: 0 IF-MIB::ifOutOctets.32 = Counter32: 0 IF-MIB::ifOutOctets.199 = Counter32: 0 IF-MIB::ifOutOctets.202 = Counter32: 0 IF-MIB::ifOutOctets.204 = Counter32: 0 IF-MIB::ifOutUcastPkts.1 = Counter32: 2843 IF-MIB::ifOutUcastPkts.2 = Counter32: 7414449 IF-MIB::ifOutUcastPkts.3 = Counter32: 13286958 IF-MIB::ifOutUcastPkts.4 = Counter32: 0 IF-MIB::ifOutUcastPkts.30 = Counter32: 0 IF-MIB::ifOutUcastPkts.31 = Counter32: 0 IF-MIB::ifOutUcastPkts.32 = Counter32: 0 IF-MIB::ifOutUcastPkts.199 = Counter32: 0 IF-MIB::ifOutUcastPkts.202 = Counter32: 0 IF-MIB::ifOutUcastPkts.204 = Counter32: 0 IF-MIB::ifOutNUcastPkts.1 = Counter32: 0 IF-MIB::ifOutNUcastPkts.2 = Counter32: 0 IF-MIB::ifOutNUcastPkts.3 = Counter32: 0 IF-MIB::ifOutNUcastPkts.4 = Counter32: 0 IF-MIB::ifOutNUcastPkts.30 = Counter32: 0 IF-MIB::ifOutNUcastPkts.31 = Counter32: 0 IF-MIB::ifOutNUcastPkts.32 = Counter32: 0 IF-MIB::ifOutNUcastPkts.199 = Counter32: 0 IF-MIB::ifOutNUcastPkts.202 = Counter32: 0 IF-MIB::ifOutNUcastPkts.204 = Counter32: 0 IF-MIB::ifOutDiscards.1 = Counter32: 0 IF-MIB::ifOutDiscards.2 = Counter32: 0 IF-MIB::ifOutDiscards.3 = Counter32: 0 IF-MIB::ifOutDiscards.4 = Counter32: 0 IF-MIB::ifOutDiscards.30 = Counter32: 0 IF-MIB::ifOutDiscards.31 = Counter32: 0 IF-MIB::ifOutDiscards.32 = Counter32: 0 IF-MIB::ifOutDiscards.199 = Counter32: 0 IF-MIB::ifOutDiscards.202 = Counter32: 0 IF-MIB::ifOutDiscards.204 = Counter32: 0 IF-MIB::ifOutErrors.1 = Counter32: 0 IF-MIB::ifOutErrors.2 = Counter32: 0 IF-MIB::ifOutErrors.3 = Counter32: 0 IF-MIB::ifOutErrors.4 = Counter32: 0 IF-MIB::ifOutErrors.30 = Counter32: 0 IF-MIB::ifOutErrors.31 = Counter32: 0 IF-MIB::ifOutErrors.32 = Counter32: 0 IF-MIB::ifOutErrors.199 = Counter32: 0 IF-MIB::ifOutErrors.202 = Counter32: 0 IF-MIB::ifOutErrors.204 = Counter32: 0 IF-MIB::ifOutQLen.1 = Gauge32: 0 IF-MIB::ifOutQLen.2 = Gauge32: 0 IF-MIB::ifOutQLen.3 = Gauge32: 0 IF-MIB::ifOutQLen.4 = Gauge32: 0 IF-MIB::ifOutQLen.30 = Gauge32: 0 IF-MIB::ifOutQLen.31 = Gauge32: 0 IF-MIB::ifOutQLen.32 = Gauge32: 0 IF-MIB::ifOutQLen.199 = Gauge32: 0 IF-MIB::ifOutQLen.202 = Gauge32: 0 IF-MIB::ifOutQLen.204 = Gauge32: 0 IF-MIB::ifSpecific.1 = OID: SNMPv2-SMI::zeroDotZero IF-MIB::ifSpecific.2 = OID: SNMPv2-SMI::zeroDotZero IF-MIB::ifSpecific.3 = OID: SNMPv2-SMI::zeroDotZero IF-MIB::ifSpecific.4 = OID: SNMPv2-SMI::zeroDotZero IF-MIB::ifSpecific.30 = OID: SNMPv2-SMI::zeroDotZero IF-MIB::ifSpecific.31 = OID: SNMPv2-SMI::zeroDotZero IF-MIB::ifSpecific.32 = OID: SNMPv2-SMI::zeroDotZero IF-MIB::ifSpecific.199 = OID: SNMPv2-SMI::zeroDotZero IF-MIB::ifSpecific.202 = OID: SNMPv2-SMI::zeroDotZero IF-MIB::ifSpecific.204 = OID: SNMPv2-SMI::zeroDotZero
Step 4: Run command service snmp walk remote-agent 10.0.0.1 v3 USER2TEST oid ifTable at DUT1 and check if output matches the following regular expressions:
::ifDescr\.1 = STRING: "?lo"?Show output
Created directory: /var/lib/snmp/cert_indexes IF-MIB::ifIndex.1 = INTEGER: 1 IF-MIB::ifIndex.2 = INTEGER: 2 IF-MIB::ifIndex.3 = INTEGER: 3 IF-MIB::ifIndex.4 = INTEGER: 4 IF-MIB::ifIndex.30 = INTEGER: 30 IF-MIB::ifIndex.31 = INTEGER: 31 IF-MIB::ifIndex.32 = INTEGER: 32 IF-MIB::ifIndex.199 = INTEGER: 199 IF-MIB::ifIndex.202 = INTEGER: 202 IF-MIB::ifIndex.204 = INTEGER: 204 IF-MIB::ifDescr.1 = STRING: lo IF-MIB::ifDescr.2 = STRING: eth0 IF-MIB::ifDescr.3 = STRING: eth1 IF-MIB::ifDescr.4 = STRING: ip_vti0 IF-MIB::ifDescr.30 = STRING: gre0 IF-MIB::ifDescr.31 = STRING: gretap0 IF-MIB::ifDescr.32 = STRING: erspan0 IF-MIB::ifDescr.199 = STRING: sit0 IF-MIB::ifDescr.202 = STRING: tunl0 IF-MIB::ifDescr.204 = STRING: ip6tnl0 IF-MIB::ifType.1 = INTEGER: softwareLoopback(24) IF-MIB::ifType.2 = INTEGER: ethernetCsmacd(6) IF-MIB::ifType.3 = INTEGER: ethernetCsmacd(6) IF-MIB::ifType.4 = INTEGER: tunnel(131) IF-MIB::ifType.30 = INTEGER: tunnel(131) IF-MIB::ifType.31 = INTEGER: ethernetCsmacd(6) IF-MIB::ifType.32 = INTEGER: ethernetCsmacd(6) IF-MIB::ifType.199 = INTEGER: tunnel(131) IF-MIB::ifType.202 = INTEGER: tunnel(131) IF-MIB::ifType.204 = INTEGER: tunnel(131) IF-MIB::ifMtu.1 = INTEGER: 65536 IF-MIB::ifMtu.2 = INTEGER: 1500 IF-MIB::ifMtu.3 = INTEGER: 1500 IF-MIB::ifMtu.4 = INTEGER: 1480 IF-MIB::ifMtu.30 = INTEGER: 1476 IF-MIB::ifMtu.31 = INTEGER: 1462 IF-MIB::ifMtu.32 = INTEGER: 1450 IF-MIB::ifMtu.199 = INTEGER: 1480 IF-MIB::ifMtu.202 = INTEGER: 1480 IF-MIB::ifMtu.204 = INTEGER: 1452 IF-MIB::ifSpeed.1 = Gauge32: 10000000 IF-MIB::ifSpeed.2 = Gauge32: 0 IF-MIB::ifSpeed.3 = Gauge32: 0 IF-MIB::ifSpeed.4 = Gauge32: 0 IF-MIB::ifSpeed.30 = Gauge32: 0 IF-MIB::ifSpeed.31 = Gauge32: 0 IF-MIB::ifSpeed.32 = Gauge32: 0 IF-MIB::ifSpeed.199 = Gauge32: 0 IF-MIB::ifSpeed.202 = Gauge32: 0 IF-MIB::ifSpeed.204 = Gauge32: 0 IF-MIB::ifPhysAddress.1 = STRING: IF-MIB::ifPhysAddress.2 = STRING: de:ad:be:ef:6c:0 IF-MIB::ifPhysAddress.3 = STRING: de:ad:be:ef:6c:1 IF-MIB::ifPhysAddress.4 = STRING: IF-MIB::ifPhysAddress.30 = STRING: IF-MIB::ifPhysAddress.31 = STRING: IF-MIB::ifPhysAddress.32 = STRING: IF-MIB::ifPhysAddress.199 = STRING: IF-MIB::ifPhysAddress.202 = STRING: IF-MIB::ifPhysAddress.204 = STRING: IF-MIB::ifAdminStatus.1 = INTEGER: up(1) IF-MIB::ifAdminStatus.2 = INTEGER: up(1) IF-MIB::ifAdminStatus.3 = INTEGER: down(2) IF-MIB::ifAdminStatus.4 = INTEGER: down(2) IF-MIB::ifAdminStatus.30 = INTEGER: down(2) IF-MIB::ifAdminStatus.31 = INTEGER: down(2) IF-MIB::ifAdminStatus.32 = INTEGER: down(2) IF-MIB::ifAdminStatus.199 = INTEGER: down(2) IF-MIB::ifAdminStatus.202 = INTEGER: down(2) IF-MIB::ifAdminStatus.204 = INTEGER: down(2) IF-MIB::ifOperStatus.1 = INTEGER: up(1) IF-MIB::ifOperStatus.2 = INTEGER: up(1) IF-MIB::ifOperStatus.3 = INTEGER: down(2) IF-MIB::ifOperStatus.4 = INTEGER: down(2) IF-MIB::ifOperStatus.30 = INTEGER: down(2) IF-MIB::ifOperStatus.31 = INTEGER: down(2) IF-MIB::ifOperStatus.32 = INTEGER: down(2) IF-MIB::ifOperStatus.199 = INTEGER: down(2) IF-MIB::ifOperStatus.202 = INTEGER: down(2) IF-MIB::ifOperStatus.204 = INTEGER: down(2) IF-MIB::ifLastChange.1 = Timeticks: (0) 0:00:00.00 IF-MIB::ifLastChange.2 = Timeticks: (0) 0:00:00.00 IF-MIB::ifLastChange.3 = Timeticks: (0) 0:00:00.00 IF-MIB::ifLastChange.4 = Timeticks: (0) 0:00:00.00 IF-MIB::ifLastChange.30 = Timeticks: (0) 0:00:00.00 IF-MIB::ifLastChange.31 = Timeticks: (0) 0:00:00.00 IF-MIB::ifLastChange.32 = Timeticks: (0) 0:00:00.00 IF-MIB::ifLastChange.199 = Timeticks: (0) 0:00:00.00 IF-MIB::ifLastChange.202 = Timeticks: (0) 0:00:00.00 IF-MIB::ifLastChange.204 = Timeticks: (0) 0:00:00.00 IF-MIB::ifInOctets.1 = Counter32: 259411 IF-MIB::ifInOctets.2 = Counter32: 1208959640 IF-MIB::ifInOctets.3 = Counter32: 2368910873 IF-MIB::ifInOctets.4 = Counter32: 0 IF-MIB::ifInOctets.30 = Counter32: 0 IF-MIB::ifInOctets.31 = Counter32: 0 IF-MIB::ifInOctets.32 = Counter32: 0 IF-MIB::ifInOctets.199 = Counter32: 0 IF-MIB::ifInOctets.202 = Counter32: 0 IF-MIB::ifInOctets.204 = Counter32: 0 IF-MIB::ifInUcastPkts.1 = Counter32: 0 IF-MIB::ifInUcastPkts.2 = Counter32: 0 IF-MIB::ifInUcastPkts.3 = Counter32: 0 IF-MIB::ifInUcastPkts.4 = Counter32: 0 IF-MIB::ifInUcastPkts.30 = Counter32: 0 IF-MIB::ifInUcastPkts.31 = Counter32: 0 IF-MIB::ifInUcastPkts.32 = Counter32: 0 IF-MIB::ifInUcastPkts.199 = Counter32: 0 IF-MIB::ifInUcastPkts.202 = Counter32: 0 IF-MIB::ifInUcastPkts.204 = Counter32: 0 IF-MIB::ifInNUcastPkts.1 = Counter32: 0 IF-MIB::ifInNUcastPkts.2 = Counter32: 0 IF-MIB::ifInNUcastPkts.3 = Counter32: 0 IF-MIB::ifInNUcastPkts.4 = Counter32: 0 IF-MIB::ifInNUcastPkts.30 = Counter32: 0 IF-MIB::ifInNUcastPkts.31 = Counter32: 0 IF-MIB::ifInNUcastPkts.32 = Counter32: 0 IF-MIB::ifInNUcastPkts.199 = Counter32: 0 IF-MIB::ifInNUcastPkts.202 = Counter32: 0 IF-MIB::ifInNUcastPkts.204 = Counter32: 0 IF-MIB::ifInDiscards.1 = Counter32: 0 IF-MIB::ifInDiscards.2 = Counter32: 172 IF-MIB::ifInDiscards.3 = Counter32: 0 IF-MIB::ifInDiscards.4 = Counter32: 0 IF-MIB::ifInDiscards.30 = Counter32: 0 IF-MIB::ifInDiscards.31 = Counter32: 0 IF-MIB::ifInDiscards.32 = Counter32: 0 IF-MIB::ifInDiscards.199 = Counter32: 0 IF-MIB::ifInDiscards.202 = Counter32: 0 IF-MIB::ifInDiscards.204 = Counter32: 0 IF-MIB::ifInErrors.1 = Counter32: 0 IF-MIB::ifInErrors.2 = Counter32: 0 IF-MIB::ifInErrors.3 = Counter32: 0 IF-MIB::ifInErrors.4 = Counter32: 0 IF-MIB::ifInErrors.30 = Counter32: 0 IF-MIB::ifInErrors.31 = Counter32: 0 IF-MIB::ifInErrors.32 = Counter32: 0 IF-MIB::ifInErrors.199 = Counter32: 0 IF-MIB::ifInErrors.202 = Counter32: 0 IF-MIB::ifInErrors.204 = Counter32: 0 IF-MIB::ifInUnknownProtos.1 = Counter32: 0 IF-MIB::ifInUnknownProtos.2 = Counter32: 0 IF-MIB::ifInUnknownProtos.3 = Counter32: 0 IF-MIB::ifInUnknownProtos.4 = Counter32: 0 IF-MIB::ifInUnknownProtos.30 = Counter32: 0 IF-MIB::ifInUnknownProtos.31 = Counter32: 0 IF-MIB::ifInUnknownProtos.32 = Counter32: 0 IF-MIB::ifInUnknownProtos.199 = Counter32: 0 IF-MIB::ifInUnknownProtos.202 = Counter32: 0 IF-MIB::ifInUnknownProtos.204 = Counter32: 0 IF-MIB::ifOutOctets.1 = Counter32: 259411 IF-MIB::ifOutOctets.2 = Counter32: 3683772603 IF-MIB::ifOutOctets.3 = Counter32: 3368597513 IF-MIB::ifOutOctets.4 = Counter32: 0 IF-MIB::ifOutOctets.30 = Counter32: 0 IF-MIB::ifOutOctets.31 = Counter32: 0 IF-MIB::ifOutOctets.32 = Counter32: 0 IF-MIB::ifOutOctets.199 = Counter32: 0 IF-MIB::ifOutOctets.202 = Counter32: 0 IF-MIB::ifOutOctets.204 = Counter32: 0 IF-MIB::ifOutUcastPkts.1 = Counter32: 2843 IF-MIB::ifOutUcastPkts.2 = Counter32: 7414449 IF-MIB::ifOutUcastPkts.3 = Counter32: 13286958 IF-MIB::ifOutUcastPkts.4 = Counter32: 0 IF-MIB::ifOutUcastPkts.30 = Counter32: 0 IF-MIB::ifOutUcastPkts.31 = Counter32: 0 IF-MIB::ifOutUcastPkts.32 = Counter32: 0 IF-MIB::ifOutUcastPkts.199 = Counter32: 0 IF-MIB::ifOutUcastPkts.202 = Counter32: 0 IF-MIB::ifOutUcastPkts.204 = Counter32: 0 IF-MIB::ifOutNUcastPkts.1 = Counter32: 0 IF-MIB::ifOutNUcastPkts.2 = Counter32: 0 IF-MIB::ifOutNUcastPkts.3 = Counter32: 0 IF-MIB::ifOutNUcastPkts.4 = Counter32: 0 IF-MIB::ifOutNUcastPkts.30 = Counter32: 0 IF-MIB::ifOutNUcastPkts.31 = Counter32: 0 IF-MIB::ifOutNUcastPkts.32 = Counter32: 0 IF-MIB::ifOutNUcastPkts.199 = Counter32: 0 IF-MIB::ifOutNUcastPkts.202 = Counter32: 0 IF-MIB::ifOutNUcastPkts.204 = Counter32: 0 IF-MIB::ifOutDiscards.1 = Counter32: 0 IF-MIB::ifOutDiscards.2 = Counter32: 0 IF-MIB::ifOutDiscards.3 = Counter32: 0 IF-MIB::ifOutDiscards.4 = Counter32: 0 IF-MIB::ifOutDiscards.30 = Counter32: 0 IF-MIB::ifOutDiscards.31 = Counter32: 0 IF-MIB::ifOutDiscards.32 = Counter32: 0 IF-MIB::ifOutDiscards.199 = Counter32: 0 IF-MIB::ifOutDiscards.202 = Counter32: 0 IF-MIB::ifOutDiscards.204 = Counter32: 0 IF-MIB::ifOutErrors.1 = Counter32: 0 IF-MIB::ifOutErrors.2 = Counter32: 0 IF-MIB::ifOutErrors.3 = Counter32: 0 IF-MIB::ifOutErrors.4 = Counter32: 0 IF-MIB::ifOutErrors.30 = Counter32: 0 IF-MIB::ifOutErrors.31 = Counter32: 0 IF-MIB::ifOutErrors.32 = Counter32: 0 IF-MIB::ifOutErrors.199 = Counter32: 0 IF-MIB::ifOutErrors.202 = Counter32: 0 IF-MIB::ifOutErrors.204 = Counter32: 0 IF-MIB::ifOutQLen.1 = Gauge32: 0 IF-MIB::ifOutQLen.2 = Gauge32: 0 IF-MIB::ifOutQLen.3 = Gauge32: 0 IF-MIB::ifOutQLen.4 = Gauge32: 0 IF-MIB::ifOutQLen.30 = Gauge32: 0 IF-MIB::ifOutQLen.31 = Gauge32: 0 IF-MIB::ifOutQLen.32 = Gauge32: 0 IF-MIB::ifOutQLen.199 = Gauge32: 0 IF-MIB::ifOutQLen.202 = Gauge32: 0 IF-MIB::ifOutQLen.204 = Gauge32: 0 IF-MIB::ifSpecific.1 = OID: SNMPv2-SMI::zeroDotZero IF-MIB::ifSpecific.2 = OID: SNMPv2-SMI::zeroDotZero IF-MIB::ifSpecific.3 = OID: SNMPv2-SMI::zeroDotZero IF-MIB::ifSpecific.4 = OID: SNMPv2-SMI::zeroDotZero IF-MIB::ifSpecific.30 = OID: SNMPv2-SMI::zeroDotZero IF-MIB::ifSpecific.31 = OID: SNMPv2-SMI::zeroDotZero IF-MIB::ifSpecific.32 = OID: SNMPv2-SMI::zeroDotZero IF-MIB::ifSpecific.199 = OID: SNMPv2-SMI::zeroDotZero IF-MIB::ifSpecific.202 = OID: SNMPv2-SMI::zeroDotZero IF-MIB::ifSpecific.204 = OID: SNMPv2-SMI::zeroDotZero
Step 5: Run command service snmp table local-agent v3 USER2TEST oid ifTable at DUT0 and check if output matches the following regular expressions:
SNMP table:.*::ifTableShow output
SNMP table: IF-MIB::ifTable ifIndex ifDescr ifType ifMtu ifSpeed ifPhysAddress ifAdminStatus ifOperStatus 1 lo softwareLoopback 65536 10000000 up up 2 eth0 ethernetCsmacd 1500 0 de:ad:be:ef:6c:0 up up 3 eth1 ethernetCsmacd 1500 0 de:ad:be:ef:6c:1 down down 4 ip_vti0 tunnel 1480 0 down down 30 gre0 tunnel 1476 0 down down 31 gretap0 ethernetCsmacd 1462 0 down down 32 erspan0 ethernetCsmacd 1450 0 down down 199 sit0 tunnel 1480 0 down down 202 tunl0 tunnel 1480 0 down down 204 ip6tnl0 tunnel 1452 0 down down SNMP table IF-MIB::ifTable, part 2 ifLastChange ifInOctets ifInUcastPkts ifInNUcastPkts ifInDiscards ifInErrors ifInUnknownProtos 0:0:00:00.00 259411 0 0 0 0 0 0:0:00:00.00 1208959640 0 0 172 0 0 0:0:00:00.00 2368910873 0 0 0 0 0 0:0:00:00.00 0 0 0 0 0 0 0:0:00:00.00 0 0 0 0 0 0 0:0:00:00.00 0 0 0 0 0 0 0:0:00:00.00 0 0 0 0 0 0 0:0:00:00.00 0 0 0 0 0 0 0:0:00:00.00 0 0 0 0 0 0 0:0:00:00.00 0 0 0 0 0 0 SNMP table IF-MIB::ifTable, part 3 ifOutOctets ifOutUcastPkts ifOutNUcastPkts ifOutDiscards ifOutErrors ifOutQLen 259411 2843 0 0 0 0 3683772603 7414449 0 0 0 0 3368597513 13286958 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 SNMP table IF-MIB::ifTable, part 4 ifSpecific SNMPv2-SMI::zeroDotZero SNMPv2-SMI::zeroDotZero SNMPv2-SMI::zeroDotZero SNMPv2-SMI::zeroDotZero SNMPv2-SMI::zeroDotZero SNMPv2-SMI::zeroDotZero SNMPv2-SMI::zeroDotZero SNMPv2-SMI::zeroDotZero SNMPv2-SMI::zeroDotZero SNMPv2-SMI::zeroDotZero
Step 6: Run command service snmp table remote-agent 10.0.0.1 v3 USER2TEST oid ifTable at DUT1 and check if output matches the following regular expressions:
SNMP table:.*::ifTableShow output
SNMP table: IF-MIB::ifTable ifIndex ifDescr ifType ifMtu ifSpeed ifPhysAddress ifAdminStatus ifOperStatus 1 lo softwareLoopback 65536 10000000 up up 2 eth0 ethernetCsmacd 1500 0 de:ad:be:ef:6c:0 up up 3 eth1 ethernetCsmacd 1500 0 de:ad:be:ef:6c:1 down down 4 ip_vti0 tunnel 1480 0 down down 30 gre0 tunnel 1476 0 down down 31 gretap0 ethernetCsmacd 1462 0 down down 32 erspan0 ethernetCsmacd 1450 0 down down 199 sit0 tunnel 1480 0 down down 202 tunl0 tunnel 1480 0 down down 204 ip6tnl0 tunnel 1452 0 down down SNMP table IF-MIB::ifTable, part 2 ifLastChange ifInOctets ifInUcastPkts ifInNUcastPkts ifInDiscards ifInErrors ifInUnknownProtos 0:0:00:00.00 259411 0 0 0 0 0 0:0:00:00.00 1208959640 0 0 172 0 0 0:0:00:00.00 2368910873 0 0 0 0 0 0:0:00:00.00 0 0 0 0 0 0 0:0:00:00.00 0 0 0 0 0 0 0:0:00:00.00 0 0 0 0 0 0 0:0:00:00.00 0 0 0 0 0 0 0:0:00:00.00 0 0 0 0 0 0 0:0:00:00.00 0 0 0 0 0 0 0:0:00:00.00 0 0 0 0 0 0 SNMP table IF-MIB::ifTable, part 3 ifOutOctets ifOutUcastPkts ifOutNUcastPkts ifOutDiscards ifOutErrors ifOutQLen 259411 2843 0 0 0 0 3683772603 7414449 0 0 0 0 3368597513 13286958 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 SNMP table IF-MIB::ifTable, part 4 ifSpecific SNMPv2-SMI::zeroDotZero SNMPv2-SMI::zeroDotZero SNMPv2-SMI::zeroDotZero SNMPv2-SMI::zeroDotZero SNMPv2-SMI::zeroDotZero SNMPv2-SMI::zeroDotZero SNMPv2-SMI::zeroDotZero SNMPv2-SMI::zeroDotZero SNMPv2-SMI::zeroDotZero SNMPv2-SMI::zeroDotZero
Note
After adding a view that excludes the ‘1.3.6.1.2.1.2‘ oid, retrieving information about interfaces shouldn’t be allowed.
Step 7: Modify the following configuration lines in DUT0 :
set service snmp user USER2TEST view NOIFCS set service snmp view NOIFCS oid 1.3.6.1.2.1.2 type excluded
Step 8: Run command service snmp walk local-agent v3 USER2TEST oid ifTable at DUT0 and check if output does not match the following regular expressions:
::ifDescr\.1 = STRING: "?lo"?Show output
IF-MIB::ifTable = No more variables left in this MIB View (It is past the end of the MIB tree)
Step 9: Run command service snmp walk remote-agent 10.0.0.1 v3 USER2TEST oid ifTable at DUT1 and check if output does not match the following regular expressions:
::ifDescr\.1 = STRING: "?lo"?Show output
IF-MIB::ifTable = No more variables left in this MIB View (It is past the end of the MIB tree)
Step 10: Run command service snmp table local-agent v3 USER2TEST oid ifTable at DUT0 and check if output does not match the following regular expressions:
SNMP table:.*::ifTableShow output
IF-MIB::ifTable: No entries
Step 11: Run command service snmp table remote-agent 10.0.0.1 v3 USER2TEST oid ifTable at DUT1 and check if output does not match the following regular expressions:
SNMP table:.*::ifTableShow output
IF-MIB::ifTable: No entries