Can I add acl (block mac address or allow mac address) on snmp
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
‎09-13-2018 12:55 PM
I want to block mac address or I want to allow blocked mac address on SNMP agent
Can I do this via snmp ?
Can I do this via snmp ?
2 REPLIES 2
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
‎09-16-2018 09:56 AM
HI Sezgin,
I assume you have an EXOS switch with you. As Tomasz said, if you wish to block/allow certain users from accessing the switch via SNMP, then
https://gtacknowledge.extremenetworks.com/articles/How_To/How-to-restrict-SNMP-access
If you wish to deploy ACLs using SNMP, you can explore using dynamic ACLs as they are a part of the configuration file as opposed to a static ACL and can be pushed to a switch. But I have not tested this as yet and as Tomazs said, we may need to check if we can use L2 and L4 information together. More details will be present in the EXOS user guide for using dynamic ACLs.
I assume you have an EXOS switch with you. As Tomasz said, if you wish to block/allow certain users from accessing the switch via SNMP, then
https://gtacknowledge.extremenetworks.com/articles/How_To/How-to-restrict-SNMP-access
If you wish to deploy ACLs using SNMP, you can explore using dynamic ACLs as they are a part of the configuration file as opposed to a static ACL and can be pushed to a switch. But I have not tested this as yet and as Tomazs said, we may need to check if we can use L2 and L4 information together. More details will be present in the EXOS user guide for using dynamic ACLs.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
‎09-13-2018 07:39 PM
Hi,
Do you want to use SNMP to deploy ACLs or do you want to deploy ACL to block SNMP?
SNMP uses UDP port 161 so this might be used, but it depends on your hardware if you can create ACL that combines L2 and L4 matching rules. I doubt it would work, gotta think on a workaround.
Regards,
Tomasz
Do you want to use SNMP to deploy ACLs or do you want to deploy ACL to block SNMP?
SNMP uses UDP port 161 so this might be used, but it depends on your hardware if you can create ACL that combines L2 and L4 matching rules. I doubt it would work, gotta think on a workaround.
Regards,
Tomasz
