Netgear XCM8806 Chassis Hardware Installation Guide - Page 63
Creating an ACL Policy File, Viewing SNMP Information, Example, Description, Syntax Description
View all Netgear XCM8806 Chassis manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 63 highlights
NETGEAR 8800 Chassis Switch CLI Manual You can restrict SNMP access by using an ACL and implementing an ACL policy. You create an ACL policy file that permits or denies a specific list of IP addresses and subnet masks for SNMP. You must create the ACL policy file before you can use this command. If the ACL policy file does not exist on the switch, the switch returns an error message indicating that the file does not exist. Use the none option to remove a previously configured ACL. In the ACL policy file for SNMP, the source-address field is the only supported match condition. Any other match conditions are ignored. Creating an ACL Policy File To create an ACL policy file, use the edit policy command. For more information about creating and implementing ACL policy files, see the chapters entitled "Policy Manager" and "ACLs" in the NETGEAR 8800 User Manual. If you attempt to implement a policy that does not exist, an error message similar to the following appears: Error: Policy /config/MyAccessProfile.pol does not exist on file system If this occurs, make sure the policy you want to implement exists. To confirm the existence of the policies, use the ls command. If the policy does not exist, create the ACL policy file. Viewing SNMP Information To display the current management configuration, including SNMP access related information, whether SNMP access is enabled or disabled, and whether any ACL policies are configured for SNMP, use the following command: show management Example This example assumes that you already created an ACL to apply to SNMP. The following command applies the ACL MyAccessProfile_2 to SNMP: configure snmp access-profile MyAccessProfile_2 configure snmp add community configure snmp add community [readonly | readwrite] Description Adds an SNMP read or read/write community string. Syntax Description readonly readwrite Specifies read-only access to the system. Specifies read and write access to the system. Chapter 3. Commands for Managing the Switch | 63