HPE EVA Storage

Lock down SNMP on Storageworks 8/40 (brocade) switch?

 
Trever Furnish
Regular Advisor

Lock down SNMP on Storageworks 8/40 (brocade) switch?

I'm having an unexpectedly difficult time finding out how to allow SNMP queries of my new Brocade switches without allowing write access (sets). Can someone point me in the right direction?

What I want to end up with is this:

1. The only systems that should be able to query the switch are 10.1.1.1 and 10.1.2.1. They should query using a community named "foo". Neither of these should be able to write to the swtich -- read-only.

2. The switch should send traps to SIM or some other trapd -- let's call it 10.1.3.1.

3. Nothing else should be able to talk snmp to the switch.

On Cisco switches configuring this is brain-dead simple. On the Brocade I was expecting something similar, but instead I'm mired in the "Fabric OS MIB Reference". Help! :-)
Hockey PUX?
1 REPLY 1
Trever Furnish
Regular Advisor

Re: Lock down SNMP on Storageworks 8/40 (brocade) switch?

Anyone? C'mon, you know you want these points. :-)

On a cisco, snmp is disabled by default and creating a read-only community accessible only by a couple of addresses would be just:

access-list 10 permit ip 10.1.1.1
access-list 10 permit ip 10.1.2.1
snmp-community foo ro 10
Hockey PUX?