No relevant resource is found in the selected language.
Enterprise
Worldwide
Search
Support Documentation
Huawei Firewall Security Policy Essentials
Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
How to Configure Security Policies to Allow SNMP

How to Configure Security Policies to Allow SNMP

SNMP is a commonly used network management protocol. Functioning as the SNMP manager, the NMS sends management requests to the SNMP agent on a managed device. When detecting an exception, the managed device sends a trap to the SNMP manager. That is, both the NMS and the managed device initiate connections, as shown in Figure 7-5.

Figure 7-5 Typical SNMP networking and service access relationship

Therefore, you need to configure two security policies so that the NMS can proactively manage the device and the device can proactively send traps to the NMS.

Table 7-8 Security policy example — SNMP

No.

Name

Source Security Zone

Destination Security Zone

Source Address/Region

Destination Address/Region

Service

Action

101

Allow NMS manage firewall

Trust

Local

10.1.1.10/24

10.1.1.1/24

snmp (UDP: 161)

permit

102

Allow firewall send trap to NMS

Local

Trust

10.1.1.1/24

10.1.1.10/24

snmptrap (UDP: 162)

permit

103

Allow NMS manage switch

Trust

Untrust

10.1.1.10/24

10.1.2.10/24

snmp (UDP: 161)

permit

104

Allow switch send trap to NMS

Untrust

Trust

10.1.2.10/24

10.1.1.10/24

snmptrap (UDP: 162)

permit
Translation
简体中文
Download
Updated: 2023-04-06

Document ID: EDOC1100172313

Views: 123947

Downloads: 558

Average rating:
This Document Applies to these Products

Related Version

Related Documents

Digital Signature File

Digital Signature Authentication Mode
Share
Previous Next

Copyright © 2023 Huawei Technologies Co., Ltd. All rights reserved.

You are going to visit :