RE: [nv-l] Community in traps ?

To:	Philippe Menard <PME@fr.ibm.com>, nv-l@lists.tivoli.com
Subject:	RE: [nv-l] Community in traps ?
From:	"IMHOFF,MICHAEL (HP-Denmark,ex1)" <michael_imhoff@hp.com>
Date:	Thu, 28 Feb 2002 16:46:55 +0100

Not sure about NetView but SNMP manager often ignores community strings in
traps.

Another source of your authentication failure traps could be other
applications using SNMP, but configured with the wrong community strings.


BR. Michael.

-----Original Message-----
From: Philippe Menard [mailto:PME@fr.ibm.com]
Sent: 28. februar 2002 11:07
To: nv-l@lists.tivoli.com
Subject: [nv-l] Community in traps ?


All,

Just in case : AIX 4.3.3 ML 9 + NV 6.0

I'm trying to understand why the trapd.logs of a NetView server
contain 1000s authenticationFailure traps per day. These traps
are sent by both MLMs and network devices although the read
and write communities *are* OK.

I suspect they are caused by the community used in traps.

Has anyone a clear understanding of how the MLMs and NetView
handle communities in traps ?

Q1 : does the MLM check the community in a trap it receives
     from a network device ?
Q2 : does the MLM assume the "public" community ?
Q3 : if not, where is the expected community defined in the MLM ?
     snmpd.conf ? I could find no field in the APM policy windows.
Q4 : does the MLM replace the trap community when forwarding
     a trap to the NetView server ?
Q5 : where is this new community defined in the MLM ?
     snmpd.conf ? which statement(s) ?
Q6 : does the NetView server check the community in a trap
     it receives from an MLM ? (it could be considered that
     the MLM-NV TCP connection provides enough security [?] )
Q7 : does the NetView server check the community in a trap
     it receives from a network device ?
Q8 : does the NetView server assume the "public" community ?
     any difference between the Q6 and Q7 cases ?
Q9 : where in the NetView server is/are the expected trap
     communities defined ? snmpd.conf ? which statements ?

Quite some questions I'm afraid ! Thanks in advance.

Best regards,
Philippe.

- - -

Philippe MÉNARD
Networking Delivery Support Center
Mail : pme@fr.ibm.com
Phone : +33 (0)4 92 11 54 21
Fax : +33 (0)4 93 24 49 07




---------------------------------------------------------------------
To unsubscribe, e-mail: nv-l-unsubscribe@lists.tivoli.com
For additional commands, e-mail: nv-l-help@lists.tivoli.com

*NOTE*
This is not an Offical Tivoli Support forum. If you need immediate
assistance from Tivoli please call the IBM Tivoli Software Group
help line at 1-800-TIVOLI8(848-6548)

<Prev in Thread]	Current Thread	[Next in Thread>
[nv-l] Community in traps ?, Philippe Menard Re: [nv-l] Community in traps ?, Bernard Disselborg Re: [nv-l] Community in traps ?, Vince_Rosso Re: [nv-l] Community in traps ?, Geoffrey Cheng/Markham/IBM RE: [nv-l] Community in traps ?, IMHOFF,MICHAEL (HP-Denmark,ex1) <= Re: [nv-l] Community in traps ?, Todd H. Re: [nv-l] Community in traps ?, Dermott Re: [nv-l] Community in traps ?, Jeff Fitzwater

Previous by Date:	Re: [nv-l] NetView 7.1 and AIX 5.x, James Shanks
Next by Date:	[Fwd: [nv-l] Community in traps ?], Jeff Fitzwater
Previous by Thread:	Re: [nv-l] Community in traps ?, Geoffrey Cheng/Markham/IBM
Next by Thread:	Re: [nv-l] Community in traps ?, Todd H.
Indexes:	[Date] [Thread] [Top] [All Lists]