Forgot a copy to the list.
-----Original Message-----
From: BAUDOUX BERNARD
Sent: jeudi 19 septembre 2002 09:05
To: 'john.j.mackney AT accenture DOT com'
Subject: RE: [nv-l] authenticationFailure trap received from enterprise
cisco
John,
As you guessed, 1.3.6.1.4.1.9.1.48 is the OID for Cisco 7505 routers. You can
get a complete list of those OIDs from the ciscoProducts MIB
(iso.org.dod.internet.private.enterprises.cisco.ciscoProducts).
The fact you can query your router does not mean this one doesn't send any
authentication failure traps, maybe you're not the only one to use SNMP on your
network.
Cisco devices use a variable ($1) in which the address trying to access the
device without the right community (or without being allowed to by an
access-list on the device) appears.
Add this variable in your trapd definition and see who is offending your device.
Hope this helps,
Regards,
Bernard Baudoux,
Fortis Banque.
-----Original Message-----
From: john.j.mackney AT accenture DOT com <mailto:john.j.mackney AT accenture
DOT com> [SMTP:john.j.mackney AT accenture DOT com]
<mailto:[SMTP:john.j.mackney AT accenture DOT com]>
Sent: mercredi 18 septembre 2002 17:11
To: nv-l AT lists.tivoli DOT com <mailto:nv-l AT lists.tivoli DOT com>
Subject: [nv-l] authenticationFailure trap received from enterprise cisco
I have NetView 7.1.2 on Solaris 8 (+All recommended SUN patches)
Since I turned NetView on this week I keep getting loads of traps like the
following:
A authenticationFailure trap received from enterprise cisco with 1
argument: authAddr= "my_netview_server"
SPECIFIC : 0 (hex: 0)
GENERIC : 4
CATEGORY : Status Events
ENTERPRISE : cisco 1.3.6.1.4.1.9.1.48
SOURCE : Agent (A)
HOSTNAME : "cisco 7505's IP address"
SEVERITY : Indeterminate
LOGGEDTIME : 09/18/02 06:25:01 AM
If I click Browse MIB and follow down the tree I can get to
.1.3.6.1.4.1.9.1...
or
.iso.org.dod.internet.private.enterprise.enterprises.cisco.ciscoProducts...
But I cannot find the final .48 in the tree.
I do not think the error is related to community names as when I click
"Start Query" anywhere in the MIB tree, I get in the messages window if the
MIB browser:
Note using community "our_read_Community_Name" for node "cisco 7505's IP
address"
and it returns a value
Anyone know what's happening. I get similar traps from other cisco devices
(but obviously with either OID values - which also do not resolve the last
value).
Is this because the OS of the cisco devices do not match the MIBs I have
installed.
Please - any info anyone - out network managers are complaining about the
volume of traps.
This message is for the designated recipient only and may contain
privileged, proprietary, or otherwise private information. If you have
received it in error, please notify the sender immediately and delete the
original. Any other use of the email by you is prohibited.
---------------------------------------------------------------------
To unsubscribe, e-mail: nv-l-unsubscribe AT lists.tivoli DOT com
<mailto:nv-l-unsubscribe AT lists.tivoli DOT com>
For additional commands, e-mail: nv-l-help AT lists.tivoli DOT com
<mailto:nv-l-help AT lists.tivoli DOT com>
*NOTE*
This is not an Offical Tivoli Support forum. If you need immediate
assistance from Tivoli please call the IBM Tivoli Software Group
help line at 1-800-TIVOLI8(848-6548)
This email and any attached files are confidential and may be legally
privileged.
If you are not the intended recipient, any disclosure, reproduction,
copying, distribution, or other dissemination or use of this communication
is strictly prohibited.
If you have received this transmission in error please notify the sender
immediately and then delete this email.
Email transmission cannot be guaranteed to be secure or error free as
information could be intercepted, corrupted, lost, destroyed, arrive late or
incomplete, or contain viruses.
The sender therefore is in no way liable for any errors or omissions in the
content of this message, which may arise as a result of email transmission.
If verification is required, please request a hard copy.
|
