Fortinet Document Library

Version:

Version:

Version:

Version:

Version:


Table of Contents

Handbook

Configuring SNMP trap servers

Simple Network Management Protocol (SNMP) allows you to collect and exchange hardware and software information about devices on your network. You can configure an SNMP trap server so that FortiADC's alert system is able to send SNMP traps about important events and metrics. For details about events and metrics that FortiADC can monitor, see Creating alert configurations.

Before you begin:

  • You must have Read-Write permission for System settings.
  • In the FortiADC interface settings, you must enable SNMP access on the network interface through which the SNMP manager connects.
  • On the SNMP manager, you must verify that the SNMP manager is a member of the community to which the FortiADC system belongs, and you must compile the necessary Fortinet-proprietary management information blocks (MIBs) and Fortinet-supported standard MIBs. For information on Fortinet MIBs, seeConfiguring SNMP trap servers and Appendix A: Fortinet MIBs.
To configure an SNMP manager:
  1. Go to System > Alert > Alert Resource and select the SNMP Trap Server tab.
  2. Click Create New.
  3. Complete the configuration as described in SNMP trap server configuration.
  4. Click Save.

SNMP trap server configuration

Settings Guidelines
Name Enter the name of the trap server. No spaces. You will use this name to select the trap server in an Alert Actions profile. See Configuring alert actions.
Hosts Enter the IP address of the SNMP manager(s) that will receive traps.
Version Enter the version of SNMP that you want to utilize for the trap server.
Local Port Enter the source port number for trap packets sent to the SNMP manager(s) for the trap server. The default port is 162.
Remote Port Enter the destination port number for trap packets sent to the SNMP manager(s) for the trap server. The default port is 162.
Note: The following options apply to SNMP v3 only.
Security Level

Choose one of the following three security levels:

  • No Auth and No Privacy—Enables no additional authentication or encryption compared to SNMP v1 and v2
  • Auth But No Privacy—Enables authentication only. The SNMP manager needs to supply the password specified in this community configuration. Also specify Auth Algorithm and the associated Auth Password below.
  • Auth and Privacy—Enables both authentication and encryption. Also specify Auth Algorithm, Auth Password, Private Algorithm, and Private Password below.

Note: This option is available only for v3 SNMP managers.

Auth Algorithm

Specify the authentication algorithm. Ensure that the SNMP manager and FortiADC use the same algorithm. Note: Available only when the selected Security Level is Auth But No Privacy or Auth and Privacy.

Auth Password

Specify the password for the authentication algorithm. Ensure that the SNMP manager and FortiADC use the same password. Note: Available only when the selected Security Level is Auth But No Privacy or Auth and Privacy.

Private Algorithm

Specify the encryption algorithm. Ensure that the SNMP manager and FortiADC use the same algorithm. Note: Available only when the selected Security Level is Auth and Privacy.

Private Password

Specify the password for the encryption algorithm. Ensure that the SNMP manager and FortiADC use the same password. Note: Available only when the selected Security Level is Auth and Privacy.

Configuring SNMP trap servers

Simple Network Management Protocol (SNMP) allows you to collect and exchange hardware and software information about devices on your network. You can configure an SNMP trap server so that FortiADC's alert system is able to send SNMP traps about important events and metrics. For details about events and metrics that FortiADC can monitor, see Creating alert configurations.

Before you begin:

  • You must have Read-Write permission for System settings.
  • In the FortiADC interface settings, you must enable SNMP access on the network interface through which the SNMP manager connects.
  • On the SNMP manager, you must verify that the SNMP manager is a member of the community to which the FortiADC system belongs, and you must compile the necessary Fortinet-proprietary management information blocks (MIBs) and Fortinet-supported standard MIBs. For information on Fortinet MIBs, seeConfiguring SNMP trap servers and Appendix A: Fortinet MIBs.
To configure an SNMP manager:
  1. Go to System > Alert > Alert Resource and select the SNMP Trap Server tab.
  2. Click Create New.
  3. Complete the configuration as described in SNMP trap server configuration.
  4. Click Save.

SNMP trap server configuration

Settings Guidelines
Name Enter the name of the trap server. No spaces. You will use this name to select the trap server in an Alert Actions profile. See Configuring alert actions.
Hosts Enter the IP address of the SNMP manager(s) that will receive traps.
Version Enter the version of SNMP that you want to utilize for the trap server.
Local Port Enter the source port number for trap packets sent to the SNMP manager(s) for the trap server. The default port is 162.
Remote Port Enter the destination port number for trap packets sent to the SNMP manager(s) for the trap server. The default port is 162.
Note: The following options apply to SNMP v3 only.
Security Level

Choose one of the following three security levels:

  • No Auth and No Privacy—Enables no additional authentication or encryption compared to SNMP v1 and v2
  • Auth But No Privacy—Enables authentication only. The SNMP manager needs to supply the password specified in this community configuration. Also specify Auth Algorithm and the associated Auth Password below.
  • Auth and Privacy—Enables both authentication and encryption. Also specify Auth Algorithm, Auth Password, Private Algorithm, and Private Password below.

Note: This option is available only for v3 SNMP managers.

Auth Algorithm

Specify the authentication algorithm. Ensure that the SNMP manager and FortiADC use the same algorithm. Note: Available only when the selected Security Level is Auth But No Privacy or Auth and Privacy.

Auth Password

Specify the password for the authentication algorithm. Ensure that the SNMP manager and FortiADC use the same password. Note: Available only when the selected Security Level is Auth But No Privacy or Auth and Privacy.

Private Algorithm

Specify the encryption algorithm. Ensure that the SNMP manager and FortiADC use the same algorithm. Note: Available only when the selected Security Level is Auth and Privacy.

Private Password

Specify the password for the encryption algorithm. Ensure that the SNMP manager and FortiADC use the same password. Note: Available only when the selected Security Level is Auth and Privacy.