Chinaunix首页 | 论坛 | 博客

benxiongbenxiong.blog.chinaunix.net

首页 |  博文目录 |  关于我

benxiong

  • 博客访问: 1726636
  • 博文数量: 163
  • 博客积分: 10591
  • 博客等级: 上将
  • 技术积分: 1980
  • 用 户 组: 普通用户
  • 注册时间: 2006-08-08 18:17
文章分类

全部博文(163)

文章存档

2018年(1)

2012年(1)

2011年(47)

2010年(58)

2009年(21)

2008年(35)

我的朋友
最近访客
推荐博文
相关博文
Aix6.1开启snmp

分类: 系统运维

2011-12-15 12:21:34

AIX6.1 配置snmp方法如下:

1. #/usr/sbin/snmpv3_ssw -n

2. #vi /etc/snmpdv3.conf   (修改红色部分为如下内容)

  1. # @(#)88 1.8 src/tcpip/etc/snmpdv3.conf, snmp, tcpip61D, d2007_49A2 10/3/07 15:19:01
  3. # IBM_PROLOG_BEGIN_TAG
  5. # This is an automatically generated prolog.
  7. #
  9. # tcpip61D src/tcpip/etc/snmpdv3.conf 1.8
  11. #
  13. # Licensed Materials - Property of IBM
  15. #
  17. # Restricted Materials of IBM
  19. #
  21. # COPYRIGHT International Business Machines Corp. 2002,2007
  23. # All Rights Reserved
  25. #
  27. # US Government Users Restricted Rights - Use, duplication or
  29. # disclosure restricted by GSA ADP Schedule Contract with IBM Corp.
  31. #
  33. # IBM_PROLOG_END_TAG
  35. #----------------------------------------------------------------------------------------------------------------------------------------------------------
  37. # General syntax rules about the snmpdv3.conf file:
  39. # An entry must be contained on one line (i.e., the newline character will
  41. # be treated as the end of an entry)
  43. # All of the entry definitions require that all fields on the entry are
  45. # specified, either with a specific value or a dash (-) to denote the
  47. # default value.
  49. # If an error is detected processing an entry and no appropriate default
  51. # value can be assumed, the entry will be discarded.
  53. # Statements in the file are not order-dependent. However if more than one
  55. # DEFAULT_SECURITY statement is found, the last one in the file is the one
  57. # that is used.
  59. # Comments may be entered in the snmpdv3.conf file, with the following
  61. # restrictions:
  63. # Comments must begin with the pound sign (#) or asterisk (*).
  65. # Comments must begin in column 1; this allows the pound sign and asterisk
  67. # to be used in names of users, views, etc.
  69. #----------------------------------------------------------------------------------------------------------------------------------------------------------
  73. #----------------------------------------------------------------------------------------------------------------------------------------------------------
  75. # USM_USER entries
  77. # Defines a user for the User-based Security Model (USM).
  79. # Format is:
  81. # userName engineID authProto authKey privProto privKey keyType storageType
  83. #
  85. #----------------------------------------------------------------------------------------------------------------------------------------------------------
  89. #----------------------------------------------------------------------------------------------------------------------------------------------------------
  91. # VACM_GROUP entries
  93. # Defines a security group (made up of users or communities)
  95. # for the View-based Access Control Model (VACM).
  97. # Format is:
  99. # groupName securityModel securityName storageType
  101. #----------------------------------------------------------------------------------------------------------------------------------------------------------
  105. #----------------------------------------------------------------------------------------------------------------------------------------------------------
  107. # VACM_VIEW entries
  109. # Defines a particular set of MIB data, called a view, for the
  111. # View-based Access Control Model.
  113. # Format is:
  115. # viewName viewSubtree viewMask viewType storageType
  117. #----------------------------------------------------------------------------------------------------------------------------------------------------------
  121. #----------------------------------------------------------------------------------------------------------------------------------------------------------
  123. # VACM_ACCESS entries
  125. # Identifies the access permitted to different security groups
  127. # for the View-based Access Control Model.
  129. # Format is:
  131. # groupName contextPrefix contextMatch securityLevel securityModel readView writeView notifyView storageType
  133. #----------------------------------------------------------------------------------------------------------------------------------------------------------
  137. #----------------------------------------------------------------------------------------------------------------------------------------------------------
  139. # NOTIFY entries
  141. # Identifies management targets to receive notifications.
  143. # Format is:
  145. # notifyName tag type storageType
  147. #----------------------------------------------------------------------------------------------------------------------------------------------------------
  151. #----------------------------------------------------------------------------------------------------------------------------------------------------------
  153. # TARGET_ADDRESS
  155. # Defines a management application's address and parameters
  157. # to be used in sending notifications.
  159. # Format is:
  161. # targetAddrName tDomain tAddress tagList targetParams timeout retryCount storageType
  163. #----------------------------------------------------------------------------------------------------------------------------------------------------------
  167. #----------------------------------------------------------------------------------------------------------------------------------------------------------
  169. # TARGET_PARAMETERS
  171. # Defines the message processing and security parameters
  173. # to be used in sending notifications to a particular management target.
  175. # Format is:
  177. # paramsName mpModel securityModel securityName securityLevel storageType
  179. #----------------------------------------------------------------------------------------------------------------------------------------------------------
  183. #----------------------------------------------------------------------------------------------------------------------------------------------------------
  185. # COMMUNITY
  187. # Defines a community for community-based security.
  189. # Format is:
  191. # communityName securityName securityLevel netAddr netMask storageType
  193. #----------------------------------------------------------------------------------------------------------------------------------------------------------
  197. #----------------------------------------------------------------------------------------------------------------------------------------------------------
  199. # DEFAULT_SECURITY
  201. # Identifies the default security posture to be configured for the SNMP agent;
  203. # additional security definitions defined by the use of the preceding eight entry
  205. # definition types augment any default security configurations defined
  207. # as a result of the DEFAULT_SECURITY statement.
  209. # Format is:
  211. # securityPosture password privacy
  213. #----------------------------------------------------------------------------------------------------------------------------------------------------------
  217. #----------------------------------------------------------------------------------------------------------------------------------------------------------
  219. # logging file= enabled|disabled
  221. # logging size= level=
  223. #
  225. # where specifies the complete path and filename of the
  227. # log file, enabled turns logging on, disabled turns logging off,
  229. # specifies the maximum size in bytes of the specified logfile, and
  231. # specifies the logging level of 0, 1, 2, 3, or 4.
  233. # The size default is 100000, and the level default is 0.
  235. # There can be no white spaces around the "=" in the file, size and level fields.
  237. # There are no restrictions on the order in which the fields are entered in the
  239. # logging entries. A logging entry can contain single or multiple fields.
  241. #----------------------------------------------------------------------------------------------------------------------------------------------------------
  245. #----------------------------------------------------------------------------------------------------------------------------------------------------------
  247. # smux
  249. #
  251. # where is the unique object identifer in dotted
  253. # decimal notation of the SMUX peer client. specifies the
  255. # password that snmpd requires from the SMUX peer client to authenticate
  257. # the SMUX association.
    is either the hostname, or an IPv4 address
  259. # in dotted notation of the host, or an IPv6 address on which the SMUX peer
  261. # client is executing.
  263. # specifies the network mask for IPv4 address, or a prefix length for
  265. # IPv6 address. If no password is specified, there is no authentication for the
  267. # SMUX association. The default address and netmask are 127.0.0.1 and 255.255.255.255.
  269. # If neither the address nor netmask are specified, the SMUX association
  271. # is limited to the local host. Fields to the right of
  273. # are optional, with the limitation that no fields
  275. # to the left of a specified field are omitted.
  277. #----------------------------------------------------------------------------------------------------------------------------------------------------------
  281. #----------------------------------------------------------------------------------------------------------------------------------------------------------
  285. VACM_GROUP group1 SNMPv1 public -
  289. VACM_VIEW defaultView internet - included -
  291. VACM_VIEW defaultView 1.3.6.1.4.1.2.2.1.1.1.0 - included -
  293. VACM_VIEW defaultView 1.3.6.1.4.1.2.6.191.1.6 - included -
  297. # exclude snmpv3 related MIBs from the default view
  299. VACM_VIEW defaultView snmpModules - excluded -
  301. VACM_VIEW defaultView 1.3.6.1.6.3.1.1.4 - included -
  303. VACM_VIEW defaultView 1.3.6.1.6.3.1.1.5 - included -
  307. # exclude aixmibd managed MIBs from the default view
  309. VACM_VIEW defaultView 1.3.6.1.4.1.2.6.191 - included -
  313. VACM_ACCESS group1 - - noAuthNoPriv SNMPv1 defaultView - defaultView -
  317. NOTIFY notify1 traptag trap -
  321. TARGET_ADDRESS Target1 UDP 127.0.0.1 traptag trapparms1 - - -
  325. TARGET_PARAMETERS trapparms1 SNMPv1 SNMPv1 public noAuthNoPriv -
  329. COMMUNITY public public noAuthNoPriv 0.0.0.0 0.0.0.0 -
  333. DEFAULT_SECURITY no-access - -
  337. logging file=/usr/tmp/snmpdv3.log enabled
  339. logging size=100000 level=0
  343. smux 1.3.6.1.4.1.2.3.1.2.1.2 gated_password # gated
  345. VACM_GROUP director_group SNMPv2c public -
  347. VACM_ACCESS director_group - - noAuthNoPriv SNMPv2c defaultView - defaultView -

3. 停止snmpd及相关进程

# stopsrc -s aixmibd; stopsrc -s hostmibd; stopsrc -s snmpmibd; stopsrc -s snmpd

 

4. 启动snmpd及相关进程

#startsrc -s aixmibd -a "-c public"; startsrc -s hostmibd -a "-c public"
#startsrc -s snmpmibd -a "-c public"; startsrc -s snmpd

5. 配置开机启动

snmpd及相关进程开机启动是通过/et/rc.tcpip.

snmpd /etc/rc.tcpip
start /usr/sbin/snmpd "$src_running"
mib /etc/rc.tcpip  (在如下内容后面增加团体字)
# Start up the hostmibd daemon
start /usr/sbin/hostmibd "$src_running" "-c public"
# Start up the snmpmibd daemon
start /usr/sbin/snmpmibd "$src_running" "-c public"
# Start up the aixmibd daemon
start /usr/sbin/aixmibd "$src_running" "-c public"

阅读(9772) | 评论(0) | 转发(2) |
0

上一篇:Oracle基础 之 约束条件状态

下一篇:syslog-ng如何将接收的日志分不同主机存储

给主人留下些什么吧!~~
关于我们 | 关于IT168 | 联系方式 | 广告合作 | 法律声明 | 免费注册

Copyright 2001-2010 ChinaUnix.net All Rights Reserved 北京皓辰网域网络信息技术有限公司. 版权所有

感谢所有关心和支持过ChinaUnix的朋友们

16024965号-6