Querying the SNS firewall in SNMP

The following is an example of a query command that makes it possible to test the function of the SNMPv3 configuration on an SNS firewall that uses the configuration parameters mentioned earlier:

snmpwalk -v 3 -u <user_snmp > -l authPriv -a SHA -x AES <ip_admin_SNS>

The SNS firewall must send back OIDs and their values.

WARNING
Passwords should preferably be put in the configuration file instead of the command line, then deleted.

The snmpwalk utility is available on many platforms, and makes it possible to query the SNMP service on an SNS firewall. Details of the parameters used in this example:

-v 3 Corresponds to the version of the SNMP protocol used.
-u <user_smp>

Corresponds to the User name parameter entered on the SNS firewall.

-l authPriv Indicates that the SNMP query is encrypted and authenticated
-a SHA

Specifies the type of hash function used for authentication. The password used must be placed in the configuration file. The variable to add is def- AuthPassphrase.
The password must be at least 8 characters long and comply with the rules regarding robustness set out in the Recommendations relating to multifactor authentication and passwords (in French).

-x AES

Indicates the algorithm used for encryption. The password used must be placed in the configuration file. The variable to add is defPrivPassphrase.