10/14/2017 SNMPv3 2 | Wendell's CCNA Skills Blog

Your exam prep resource site, from the #1 CCENT/CCNA author. Search some

200-105 (NEW) PARTS 200-105 (NEW) CHAPTERS GENERAL HANDS-ON QUESTIONS

SNMPv3 2
Social media

Share this article

By Wendell Print this article Se

September 21, 2016 09:05

In real life, you will probably configure SNMP correctly, use a similar configuration on all routers and switches, and then
forget the details of how to configure all the other possible options. For the CCNA R&S exams, it helps to make yourself SUBSCRIB
think through the configuration options a few times across the variety of possible settings. This latest lab gives you
another change, listing straightforward SNMPv3 requirements with a chance to configure those settings.

SEARCH
Requirements
This lab uses a small network with two routers. Your job is to create a configuration that would work on both routers to enable SNMPv3, per the search here
following requirements:

Use username Youdda CATEGORIES

Use group name Certskills
Select Category
Use text string mysecretpassword for any passwords or keys
Support reading (Get) the MIB but not writing (Set) to the MIB
TAG CLOUD
Use the default MIB view (V1Default) if any MIB views need to be configured
Use an IPv4 ACL named ServerOnly that allows SNMP messages from the one SNMP manager only (172.20.2.9) 100-105 200-105 200-125
Support Informs, but not Traps, sent to the SNMP manager at address 172.20.2.9
Administrative Distance Care
Use SNMPv3 authentication with SHA
CCNA Designated Port de
Use SNMPv3 privacy with 128-bit AES
directed broadcast DLCI E
As for the topology:
Assume all interfaces shown in the figure are up and working, that is, there is connectivity between each router and the SNMP server. Etherchannel FHRP Fram

global DLCI GRE HSRP

ICND2 IP Addressing IP R

IPv6 local DLCI MLPPP

OSPFv3 PAP PPP PPP

Root Switch RSTP serial

SPAN Spanning Tree stati

traceroute VLAN VLSM

Figure 1: Topology Used for SNMPv3 Labs

Initial Configuration
Examples 1 and 2 show the initial configurations on routers R1 and R2, respectively.

Example 1: Router R1 Initial Configuration

1 hostname R1
2 !
3 interface GigabitEthernet0/1
4 no shutdown
5 ip address 172.20.1.1 255.255.255.0
6 !
7 interface gigabitethernet0/2
8 no shutdown
9 ip address 172.20.12.1 255.255.255.0
10 !
11 router ospf 1
12 network 172.20.1.1 0.0.0.0 area 0
13 network 172.20.12.1 0.0.0.0 area 0

Example 2: Router R2 Initial Configuration

1 hostname R2
2 !
3 interface GigabitEthernet0/1
4 no shutdown

https://blog.certskills.com/ccna/cl671/ 1/3
10/14/2017 SNMPv3 2 | Wendell's CCNA Skills Blog
5 ip address 172.20.2.2 255.255.255.0
6 !
7 interface gigabitethernet0/2
8 no shutdown
9 ip address 172.20.12.2 255.255.255.0
10 !
11 router ospf 1
12 network 172.20.2.2 0.0.0.0 area 0
13 network 172.20.12.2 0.0.0.0 area 0

Answer on Paper, or Maybe Test in Lab

As always, you should at least answer on paper or by typing in a text editor.

If you do implement this config lab on real gear or some other tool, it is difficult to verify without having an SNMP manager with which to test. The
challenge is that the router will accept combinations of commands that fail when trying to communicate with the SNMP manager. For those of you
who want to dig a little deeper, and you have at least one router or switch in your home lab, then consider downloading any free SNMP manager.
Then make sure your manager can successfully do an SNMP Get to pull information from your router or switch after adding the kind of configuration
you build in this lab.

Note that for the purposes of learning SNMPv3, I found that the ManageEngine MIB Browser was a good tool. It gives you enough direct control so
that you can see what is happening. However, it may be a more difficult tool to use for someone starting out, in that it requires you to navigate the
MIB structure.

Do this Lab with Ciscos VIRL

You can do these labs on paper and still get a lot out of the lab. As an extra help, we have added files for the Virtual Internet Routing Lab (VIRL)
software as well. The .VIRL file found here is a file that when used with VIRL will load a lab topology similar to this labs topology, with the initial
configuration shown in the lab. This section lists any differences between the lab exercise and the .VIRL files topology and configuration.

Download this labs VIRL file!

The virl topology matches this lab topology exactly. The host info does as well.

Handy Host Commands:

To see PC IP address: ifconfig eth1

Ping example: ping -c 4 10.1.1.1

Trace example: tracepath 10.1.1.1

To connect to another node within the topology: telnet 10.1.1.1

Answers: SNMPv3 2 Answers: MLPPP 1

By Wendell Social media

September 21, 2016 09:05 Share this article

TAGS: SNMP Print this article Send e-mail

NO COMMENTS Write a comment

No Comments Yet!
Let me tell You a sad story ! There are no comments
yet, but You can be first one to comment this article.

Write a comment

WRITE A COMMENT View comments

Comment; Identify w/ Social Media or Email

Enter your comment here...

https://blog.certskills.com/ccna/cl671/ 2/3
10/14/2017 SNMPv3 2 | Wendell's CCNA Skills Blog

2015 Copyright CertSkills, Inc.. All Rights reserved.

https://blog.certskills.com/ccna/cl671/ 3/3