Make sure you're getting his Cisco box and not the SNMP of the border device.
Ian
On 2013-02-06, at 3:51 PM, Brian Hechinger <wonko at 4amlunch.net> wrote:
On 2/6/2013 5:19 PM, Cory Smelosky wrote:
Done. Along with the access list having been added. Run a test and tell me the result, i'll tell you the community in a private message.
Meh, yours wants to be a pain in the ass. I can snmpwalk it, but it throws errors for the snmpset. I think my GNS3 7200 is the same version of IOS as yours. I'll play around and let you know what I come up with.
-brian
---
Filter service subscribers can train this email as spam or not-spam here: http://my.email-as.net/spamham/cgi-bin/learn.pl?messageid=2FEA858A70B811E2A…
On 2/6/2013 5:19 PM, Cory Smelosky wrote:
Done. Along with the access list having been added. Run a test and tell me the result, i'll tell you the community in a private message.
Meh, yours wants to be a pain in the ass. I can snmpwalk it, but it throws errors for the snmpset. I think my GNS3 7200 is the same version of IOS as yours. I'll play around and let you know what I come up with.
-brian
On 6 Feb 2013, at 16:43, Brian Hechinger <wonko at 4amlunch.net> wrote:
On 2/6/2013 4:41 PM, Dave McGuire wrote:
On 02/06/2013 04:40 PM, Cory Smelosky wrote:
I will need to get a little crazy to enable SNMP to the outside I think...
That's what access lists are for. Mine is a production network that
makes money, and I'm comfortable with it.
-Dave
His cisco isn't his edge device, so I think he needs to forward ports into it or something.
Cory, just redirect port 161/udp to your cisco and we should be golden.
Done. Along with the access list having been added. Run a test and tell me the result, i'll tell you the community in a private message.
-brian
On 2/6/2013 4:41 PM, Dave McGuire wrote:
On 02/06/2013 04:40 PM, Cory Smelosky wrote:
I will need to get a little crazy to enable SNMP to the outside I think...
That's what access lists are for. Mine is a production network that
makes money, and I'm comfortable with it.
-Dave
His cisco isn't his edge device, so I think he needs to forward ports into it or something.
Cory, just redirect port 161/udp to your cisco and we should be golden.
-brian
On 02/06/2013 04:40 PM, Cory Smelosky wrote:
I will need to get a little crazy to enable SNMP to the outside I think...
That's what access lists are for. Mine is a production network that
makes money, and I'm comfortable with it.
-Dave
--
Dave McGuire, AK4HZ
New Kensington, PA
On 6 Feb 2013, at 16:39, Dave McGuire <mcguire at neurotica.com> wrote:
On 02/06/2013 04:31 PM, Brian Hechinger wrote:
Ok, put the following on your router:
*access-list 1 permit 216.15.64.181*
*snmp-server community <community name> rw 1
Choose an unused access-list of course. :)
This will allow only me to access your read/write snmp community.*
Give me the community string you've used. I'll add it to the db and
everytime a new config is generated it'll autoload that on your router.
Keep in mind that I'm not doing a 'wr mem'/'copy run start' yet as I
haven't quite figured that one out yet so if you reload your router
you'll lose the latest version uploaded.
Done on my end. Community string sent in unmarked private mail.
I will need to get a little crazy to enable SNMP to the outside I think...
-Dave
--
Dave McGuire, AK4HZ
New Kensington, PA
On 02/06/2013 04:31 PM, Brian Hechinger wrote:
Ok, put the following on your router:
*access-list 1 permit 216.15.64.181*
*snmp-server community <community name> rw 1
Choose an unused access-list of course. :)
This will allow only me to access your read/write snmp community.*
Give me the community string you've used. I'll add it to the db and
everytime a new config is generated it'll autoload that on your router.
Keep in mind that I'm not doing a 'wr mem'/'copy run start' yet as I
haven't quite figured that one out yet so if you reload your router
you'll lose the latest version uploaded.
Done on my end. Community string sent in unmarked private mail.
-Dave
--
Dave McGuire, AK4HZ
New Kensington, PA
Ok, put the following on your router:
access-list 1 permit 216.15.64.181
snmp-server community <community name> rw 1
Choose an unused access-list of course. :)
This will allow only me to access your read/write snmp community.
Give me the community string you've used. I'll add it to the db and everytime a new config is generated it'll autoload that on your router.
Keep in mind that I'm not doing a 'wr mem'/'copy run start' yet as I haven't quite figured that one out yet so if you reload your router you'll lose the latest version uploaded.
-brian
Ok, more progress being made. Now when a row gets updated a trigger function is set off which auto-generated the new configs.
Once happened last night, but I didn't have it passing info through so I had no idea what caused it. I can guess that it was Cory's IP changing because the only cron-ed task right now is to check and update dynamic IPs.
That caused me to re-write the db trigger that handles catching the updates to pass info through the payload function of LISTEN/NOTIFY.
It now also auto-matically loads the config on my router so as soon as something is updated mine router is good to go.
Anyone else who wants this to happen please let me know and please make sure bart.4amlunch.net has access to a RW snmp community on your router and I'll have it load the new configs on the fly for you.
-brian
I forgot to attribute the source for this great little collection: http://kgbreport.com/dcl.html
sampsa
On 6 Feb 2013, at 14:18, Sampsa Laine <sampsa at mac.com> wrote:
I shamelessly downloaded the whole archive of the famous DCL Dialogue (basically DCL hints and tips) and uploaded it to RHESUS::[.MEDIALIB.DCLDIALOG]
The individual text files are there, and if you want to grab them all quickly just copy ALLDCL.ZIP.
sampsa
PS: This stuff is not on the retrotron mirror yet.
