v3
Syntax
v3 {
notify name {
tag tag-name;
type trap;
}
notify-filter profile-name {
oid object-identifier (include | exclude);
}
snmp-community community-index {
community-name community-name;
security-name security-name;
tag tag-name;
}
target-address target-address-name {
address address;
address-mask address-mask;
logical-system (SNMP) logical-system;
port port-number;
retry-count number;
routing-instance instance;
tag-list tag-list;
target-parameters target-parameters-name;
timeout seconds;
}
target-parameters target-parameters-name {
notify-filter profile-name;
parameters {
message-processing-model (v1 | v2c | V3);
security-level (authentication | none | privacy);
security-model (usm | v1 | v2c);
security-name security-name;
}
}
usm {
local-engine {
user username {
authentication-md5 {
authentication-password authentication-password;
}
authentication-sha {
authentication-password authentication-password;
}
authentication-none;
privacy-aes128 {
privacy-password privacy-password;
}
privacy-3des {
privacy-password privacy-password;
}
privacy-none;
}
}
remote-engine engine-id {
user username {
authentication-md5 {
authentication-password authentication-password;
}
authentication-sha {
authentication-password authentication-password;
}
authentication-none;
privacy-aes128 {
privacy-password privacy-password;
}
privacy-3des {
privacy-password privacy-password;
}
privacy-none {
privacy-password privacy-password;
}
}
}
}
vacm {
access {
group group-name {
(default-context-prefix | context-prefix context-prefix){
security-model (any | usm | v1 | v2c) {
security-level (authentication | none | privacy) {
notify-view view-name;
read-view view-name;
write-view view-name;
}
}
}
}
}
security-to-group {
security-model (usm | v1 | v2c) {
security-name security-name {
group group-name;
}
}
}
}
}
Hierarchy Level
[edit snmp]
Options
username is the name that identifies the SNMPv3
user.
target-parameters-name is the name associated
with the message processing and security parameters that are used in sending
notifications to a particular management target.
When you configure SNMP trap notifications for subscriber secure policy on MX Series routers, you must configure the parameters as follows:
-
Message-processing model:
v3 -
Security level:
privacy -
Security model:
usm
target-address-name is the string that identifies
the target address.
tag-name defines the target addresses to which
this notification is sent. This notification is sent to all the target-addresses
that have this tag in their tag list. The
tag-name is not included in the
notification.
trap is the type of notification.
name is the name assigned to the
notification.
profile-name is the name assigned to the notify
filter.
oid is the object identifier. All MIB objects
represented by this statement have the specified OID as a prefix. You can specify it
either by a sequence of dotted integers or by a subtree name.
-
include—Include the subtree of MIB objects represented by the specified OID. -
exclude—Exclude the subtree of MIB objects represented by the specified OID.
authentication-password is the password used to
generate the key used for authentication.
SNMPv3 has specific requirements when you create plain-text passwords on a router or switch:
-
The password must be at least eight characters long.
-
The password can include alphabetic, numeric, and special characters, but it cannot include control characters.
Required Privilege Level
snmp—To view this statement in the configuration.
snmp-control—To add this statement to the configuration.
Release Information
Statement introduced before Junos OS Release 7.4.