Hi guys,
I'm changing the whole SNMP setting on my site, and i'm asking if there is a need to keep the "Targetaddress" and "params" settings unchanged
These are the actuals config :
snmp-server community "WORK" operator
snmp-server host 10.1.1.1 community "WORK"
snmp-server listen data
snmp-server contact "MySwitch" location "Office"
snmpv3 enable
snmpv3 group managerpriv user "manager" sec-model ver3
snmpv3 targetaddress "traphost.WORK.10.1.1.1" params "traphost.WORK.10.1.1.1" 10.1.1.1 taglist "TrapHost"
snmpv3 targetaddress "traphost.manager.10.1.1.1" params "traphost.manager.10.11.1.22" 10.1.1.1 taglist "TrapHost"
snmpv3 params "traphost.WORK.10.1.1.1" user "WORK" sec-model ver2c message-processing ver2c
snmpv3 params "traphost.manager.10.1.1.1" user "manager" sec-model ver3 message-processing ver3 priv
And here what i want to replace and deployed :
snmp-server host 10.1.1.1 community "WORK" trap-level critical
no snmp-server enable ###( This settings to completely disable SNMPV1/V2c)
snmp-server enable traps mac-notify
snmp-server enable traps startup-config-change
snmp-server enable traps running-config-change
no snmp-server enable traps macsec failures
snmpv3 enable
snmpv3 only
snmpv3 user "manager"
My question is , is it enough? did i need to something more? like snmpv3 params or nmpv3 targetaddress or sec-model ver3 ?
Thanks for your help,
Regards,
Maxime
------------------------------
Maxime
------------------------------