SNMP
SNMP is a method to monitor your FortiDeceptor system on your local computer. You need an SNMP agent on your computer to read the SNMP information. Using SNMP, your FortiDeceptor system monitors for system events including CPU usage, memory usage, log disk space, interface changes, and malware detection. Go to System > SNMP to configure your FortiDeceptor system’s SNMP settings.
SNMP has two parts: the SNMP agent or the device that is sending traps, and the SNMP manager that monitors those traps. The SNMP communities on the monitored FortiDeceptor are hard coded and configured in the SNMP menu.
The FortiDeceptor SNMP implementation is read-only — SNMP v1, v2c, v3 compliant SNMP manager applications, such as those on your local computer, have read-only access to FortiDeceptor system information and can receive FortiDeceptor system traps.
You can also download FortiDeceptor and Fortinet core MIB files.
Configure the SNMP agent
The SNMP agent sends SNMP traps that originate on FortiDeceptor to an external monitoring SNMP manager defined in one of the FortiDeceptor SNMP communities. Typically, an SNMP manager is an application on a local computer that can read the SNMP traps and then generate reports or graphs.
The SNMP manager can monitor FortiDeceptor to determine if it is operating properly or if critical events are occurring. The description, location, and contact information for this FortiDeceptor system is part of the information an SNMP manager collects. This information is useful if the SNMP manager is monitoring many devices, and it enables a faster response when FortiDeceptor requires attention.
To configure SNMP agents:
- Go to System > SNMP.
- Configure the following settings:
SNMP Agent
When enabled, the FortiDeceptor SNMP agent sends FortiDeceptor SNMP traps.
Description
Description of this FortiDeceptor to identify this unit.
Location
Location of this FortiDeceptor if it requires attention.
Contact
Contact information of the person in charge of this FortiDeceptor.
SNMP v1/v2c
Create, edit, or delete SNMP v1 and v2c communities. You can enable or disable communities in the edit page. Columns include: Community Name, Queries, Traps, Enable.
SNMP v3
Create, edit, or delete SNMP v3 entries. You can enable or disable queries in the edit page. Columns include: Username, Security Level, Notification Host, Queries.
To create an SNMP v1/v2c community:
- Go to System > SNMP.
- In the SNMP v1/v2c section, click Create New.
- Configure the following settings:
- Click OK.
To create an SNMP v3 user:
- Go to System > SNMP.
- In the SNMP v3 section, click Create New.
- Configure the following settings:
Username
Name of the SNMPv3 user.
Security Level
Security level of the user:
- None
- Authentication only
- Encryption and authentication
Authentication
Authentication is required when Security Level is either Authentication only or Encryption and authentication.
Method
Authentication method:
- MD5 (Message Digest 5 algorithm)
- SHA1 (Secure Hash algorithm)
Authentication password of at least eight characters.
Encryption
Encryption is required if Security Level is Encryption and authentication.
Method
Encryption method:
- DES
- AES
Key
Encryption key of at least eight characters.
Notification Hosts (Traps)
IP/Netmask
IP address and netmask. Click Add to add more hosts.
Query
Port
Port number and if it is enabled.
SNMP V3 Events
SNMP events associated with that user:
- CPU usage is high
- Memory is low
- Log disk space is low
- Incident is detected
- Click OK.
To download MIB files:
- At the bottom of the SNMP page, select the MIB file you want to download to your management computer.