User`s manual

ManualsBrandsAudioCodes ManualsAcousticsMEDIAPACK VERSION 6.2

231

232

233

234

235

236

237

238

239

240

MediaPack SIP User’s Manual 15. SNMP-Based Management

Version 4.6 235 June 2005

15.7.2 Trusted Managers

By default, the agent accepts ‘get’ and ‘set’ requests from any IP address, as long as the correct

community string is used in the request. Security can be enhanced via the use of Trusted

Managers. A Trusted Manager is an IP address from which the SNMP Agent accepts and

processes ‘get’ and ‘set’ requests. An EM can be used to configure up to 5 Trusted Managers.

Note: If Trusted Managers are defined, all community strings work from all Trusted

Managers. That is, there is no way to associate a community string with

particular trusted managers.

15.7.2.1 Configuration of Trusted Managers via ini File

To set the Trusted Mangers table from start-up, write the following in the ini file:

SNMPTRUSTEDMGR_X = D.D.D.D

where X is any integer between 0 and 4 (0 sets the first table entry, 1 sets the second, and so

on), and D is an integer between 0 and 255.

15.7.2.2 Configuration of Trusted Managers via SNMP

To configure Trusted Managers, the EM must use the srCommunityMIB, the snmpTargetMIB and

the TGT-ADDRESS-MASK-MIB.

¾ To add the first Trusted Manager, take these 3 steps:

(The following procedure assumes that there is at least one configured read-write community.

There are currently no Trusted Managers. The taglist for columns for all srCommunityTable rows

are currently empty).

1. Add a row to the snmpTargetAddrTable with these values: Name=mgr0, TagList=MGR,

Params=v2cparams.

2. Add a row to the tgtAddressMaskTable table with these values: Name=mgr0,

tgtAddressMask=255.255.255.255:0. The agent doesn’t allow creation of a row in this table

unless a corresponding row exists in the snmpTargetAddrTable.

3. Set the value of the TransportLabel field on each non-TrapGroup row in the

srCommunityTable to MGR.

¾ To add a subsequent Trusted Manager, take these 2 steps:

(The following procedure assumes that there is at least one configured read-write community.

There are currently one or more Trusted Managers. The taglist for columns for all rows in the

srCommunityTable are currently set to MGR. This procedure must be performed from one of the

existing Trusted Managers).

1. Add a row to the snmpTargetAddrTable with these values: Name=mgrN, TagList=MGR,

Params=v2cparams, where N is an unused number between 0 and 4.

2. Add a row to the tgtAddressMaskTable table with these values: Name=mgrN,

tgtAddressMask=255.255.255.255:0.

An alternative to the above procedure is to set the tgtAddressMask column while you are

creating other rows in the table.

¾ To delete a Trusted Manager (not the final one), take this step:

(The following procedure assumes that there is at least one configured read-write community.

There are currently two or more Trusted Managers. The taglist for columns for all rows in the