PANEL_manSnmpView
You can manage the SonicWALL security appliance using SNMP or SonicWALL Global Management System (GMS). This section describes how to configure the SonicWALL for management using SNMP.
.SNMP (Simple Network Management Protocol) is a network protocol used over User Datagram Protocol (UDP) that allows network administrators to monitor the status of the SonicWALL security appliance and receive notification of critical events as they occur on the network. The SonicWALL security appliance supports SNMP v1/v2c/v3 and all relevant Management Information Base II (MIB) groups except egp and at.
SNMPv3 expands on earlier versions of SNMP and provides secure access to network devices by means of a combination of authenticating and encrypting packets.
Packet security is provided through:
Message Integrity: ensures a packet has not been tampered with in transit
Authentication: verifies a message comes from a valid source
DES Encryption: encodes packet contents to prevent its being viewed by an unauthorized source.
SNMPv3 provides for both security models and security levels. A security model is an authentication strategy set up between a user and the group in which the user resides. The security level is the permitted level of security within a given security model. The security model and associated security level determine how an SNMP packet will be handled. SNMPv3 provides extra levels of authentication and privacy, as well as additional authorization and access control.
The following table shows how security levels, authentication, and encryption are handled by the different versions of SNMP.
The SonicWALL security appliance replies to SNMP Get commands for MIBII via any interface and supports a custom SonicWALL MIB for generating trap messages. The custom SonicWALL MIB is available for download from the SonicWALL Web site and can be loaded into third-party SNMP management software such as HP Openview, Tivoli, or SNMPC.
SNMP settings can be viewed and configured by the administrator. Settings cannot be viewed or modified by the user. SNMPv3 can be modified at the User or Group level. Access Views can be read, write, or both, and can be assigned to users or groups. A single View can have multiple Object IDs (OIDs) associated with it.
SNMPv3 settings for the SNMPv3 Engine ID are configurable Under the General Settings menu. The Engine ID is used to authorize a received SNMP packet. Only matching packet EngineIDs will be processed.
Step 1 To enable SNMP on the SonicWALL security appliance, log into the Management interface and click System, then SNMP.
Step 2 Select the Enable SNMP checkbox, and then click Configure. The Configure SNMP window is displayed.Two tabs will be available: the General tab and the SNMPv3 tab. [update]
Step 3 Type the host name of the SonicWALL security appliance in the System Name field.
Step 4 Type the network administrator’s name in the System Contact field.
Step 5 Type an e-mail address, telephone number, or pager number in the System Location field.
Note If the SNMPv3 configuration option is used, the General Settings menu will also display an Asset Number field on the menu.
Step 6 Type a name for a group or community of administrators who can view SNMP data in the Get Community Name field.
Step 7 Type a name for a group or community of administrators who can view SNMP traps in the Trap Community Name field.
Step 8 Type the IP address or host name of the SNMP management system receiving SNMP traps in the Host 1 through Host 4 fields. You must configure at least one IP address or host name, but up to four addresses or host names can be used.
Step 9 Click OK.
Configuring SNMPv3 Engine IDs
If SNMPv3 is used, there will be an additional option available: Enable SNMPv3.
SNMPv3 settings for the SNMPv3 Engine ID are configurable Under the General Settings menu. The Engine ID is used to authorize a received SNMP packet.
Step 1 In the Management interface,click System, then SNMP. Select the Enable SNMP checkbox, and then click Configure.
Step 2 Two tabs will be available: the General tab and the SNMPv3 tab. Configure the General Settings as described above, then click on the SNMPv3 tab to bring it up. Enter the Engine ID number and click OK. This number will be matched against received SNMP packets to authorize their processing.
Configuring Object IDs for SNMPv3 Views.
SNMPv3 Views show access settings for Users or Groups. They are not User-modifiable. The SNMPv3 View defines the Object IDs and Object ID Groups, and is sometimes known as the SNMPv3 Access Object.
Configuring Log/Log Settings for SNMP
Trap messages are generated only for the alert message categories normally sent by the SonicWALL security appliance. For example, attacks, system errors, or blocked Web sites generate trap messages. If none of the categories are selected on the Log > Settings page, then no trap messages are generated.
Configuring SNMP as a Service and Adding Rules
By default, SNMP is disabled on the SonicWALL security appliance. To enable SNMP you must first enable SNMP on the System > Administration page, and then enable it for individual interfaces. To do this, go to the Network > Interfaces page and click on the Configure button for the interface you want to enable SNMP on.
For instructions on adding services and rules to the SonicWALL security appliance, see Part five Firewall.
If your SNMP management system supports discovery, the SonicWALL security appliance agent automatically discover the SonicWALL security appliance on the network. Otherwise, you must add the SonicWALL security appliance to the list of SNMP-managed devices on the SNMP management system.