hi I have so many snmp access deny logs in my devices and I'd like to turn off it.

  • 0
  • 1
  • Question
  • Updated 3 years ago
  • Answered
I already have SNMPACL but the other known snmp solution continueously try to SNMP access my devices. How can I turn off the deny logs like
" <Warn:SNMP.Master.DropReqAccessDeny> "
please help me 
Photo of Sangyeol Park

Sangyeol Park

  • 82 Points 75 badge 2x thumb

Posted 3 years ago

  • 0
  • 1
Photo of Paul Thornton

Paul Thornton

  • 1,424 Points 1k badge 2x thumb
These can be annoying, I agree - but be warned that if you filter them from the log, you have no way of knowing if someone is trying to brute-force attack your switch.

Assuming you have a fairly standard log setup, to filter these from the logs, use:
configure log filter DefaultFilter add exclude events SNMP.Master.DropReqAccessDeny

If you also see a lot of rejected SSH connections from port scanners etc. you can filter denied SSH connections to the switch with:
configure log filter DefaultFilter add exclude events exsshd.RejctConnAccessDeny

But as I said before, know that by doing this you reduce your ability to see if the switch is being port scanned / attempted attacks etc.
Photo of Sangyeol Park

Sangyeol Park

  • 82 Points 75 badge 2x thumb

thanks ^^