Configure what triggers SNMP traps

The trap parameters define where and how SNMP traps are sent from NGFW Engines and the SMC Appliance.

The same SNMP Agent element can be used for NGFW Engines and the SMC Appliance. Some settings only apply to NGFW Engines. Settings that are not supported for the SMC Appliance are ignored when the SNMP Agent is used for the SMC Appliance.

In addition to the general events, the tester on each NGFW Engine can send SNMP traps when a test fails.

Note: If the Destinations field is left empty, no traps are sent, and the other trap parameters are ignored. If the Destinations field has a value, the rest of the trap parameters must also have a value.

For more details about the product and how to configure features, click Help or press F1.

Steps

  1. Select Configuration.
  2. Browse to Other Elements > Engine Properties > SNMP Agents.
  3. Open the SNMP Agent properties in one of the following ways:
    • Right-click an existing SNMP Agent element, then select Properties.
    • To create an SNMP Agent element, right-click SNMP Agents, then select New SNMP Agent.
  4. In the Traps section, specify the sender of the SNMP trap.
    • SNMPv1 — (NGFW Engines only) In the Community field, enter a community string.
    • SNMPv2c — In the Community field, enter a community string.
    • SNMPv3 — From the User Name drop-down list, select a user name.
  5. Click Add, then enter the IP address and UDP port where the traps are sent.
  6. (NGFW Engines only) In the Active Traps section, select the events for which you want to set a trap.
  7. Click OK.

SNMP Agent Properties dialog box

Use this dialog box to define the properties of an SNMP Agent.

Note: Some options are not supported when you use the SNMP Agent with the SMC Appliance. The SMC Appliance ignores the unsupported options.
Option Definition
Name The name of the element.
Version Specifies the SNMP version.
  • v1 — SNMPv1 (RFC1157)
    Note: The SMC Appliance does not support SNMP v1.
  • v2c — SNMPv2c (RFCs 1901 and 3416)
  • v3 — SNMPv3 (RFC 3414)
Comment

(Optional)

 A comment for your own reference.
Category

(Optional)

 Includes the element in predefined categories. Click Select to select a category.
Option Definition
When Version is v1 or v2c
Monitoring section
Communities Shows the selected communities.
Add Adds a community or a user name. Opens a Properties dialog box.
Remove Removes the selected community or user name.
Listening Port

(NGFW Engines only)

Specifies the UDP Listening Port number that the SNMP agent listens to.

The default port is 161. The SMC Appliance always uses the default port.
Contact Specifies the contact information for the person responsible for the engines. This string is returned to queries from the SNMPv2-MIB object.
Traps section

(NGFW Engines only)
Community Enter the community string.
Destinations Specifies the IP addresses and UDP ports of the destinations to which the SNMP traps are sent. The default port is 162. Click to edit the cells.
Add Adds a row to the table.
Remove Removes the selected destination.
Active Traps

Specifies the events for which you want to set a trap.

The possible events are:

  • Boot (for example, startup of the agent process by minit)
  • Shutdown
  • Going Online
  • Going Offline
  • Policy Applied
  • User Login (via console or with SSH)
  • Hardware Alerts (for appliances that support hardware monitoring)
Active Shows whether traps are active for the event.
Event Shows the available events.
Option Definition
When Version is v3
User Names section
Name Shows the user name.
Authentication Protocol Shows the authentication protocol defined for the SNMP user.
Privacy Protocol Shows the privacy protocol defined for the SNMP user.
Add Opens the SNMP User Properties dialog box.
Edit Opens the SNMP User Properties dialog box for the selected user name.
Remove Removes the selected user name.
Monitoring section
User Names Shows the selected user names.
Add Adds a community or a user name. Opens a Properties dialog box.
Remove Removes the selected community or user name.
Listening Port

(NGFW Engines only)

Specifies the UDP Listening Port number that the SNMP agent listens to.

The default port is 161. The SMC Appliance always uses the default port.
Contact Specifies the contact information for the person responsible for the engines. This string is returned to queries from the SNMPv2-MIB object.
Traps section

(NGFW Engines only)
User Name Select the user name from the drop-down list.
Destinations Specifies the IP addresses and UDP ports of the destinations to which the SNMP traps are sent. The default port is 162. Click to edit the cells.
Add Adds a row to the table.
Remove Removes the selected destination.
Active Traps Specifies the events for which you want to set a trap.

The possible events are:

  • Boot (for example, startup of the agent process by minit)
  • Shutdown
  • Going Online
  • Going Offline
  • Policy Applied
  • User Login (via console or with SSH)
  • Hardware Alerts (for appliances that support hardware monitoring)
Active Shows whether traps are active for the event.
Event Shows the available events.