Fortinet white logo
Fortinet white logo

Administration Guide

SNMP

SNMP

SNMP is a method to monitor your FortiDeceptor system on your local computer. You need an SNMP agent on your computer to read the SNMP information. Using SNMP, your FortiDeceptor system monitors for system events including CPU usage, memory usage, log disk space, interface changes, and malware detection.

SNMP has two parts:

  • The SNMP agent or the device that is sending traps.
  • The SNMP manager that monitors those traps.

The SNMP communities on the monitored FortiDeceptor are configured in the SNMP page.

The FortiDeceptor SNMP implementation is read-only. SNMP v1, v2c, v3 compliant SNMP manager applications, such as those on your local computer, have read-only access to FortiDeceptor system information and can receive FortiDeceptor system traps.

You can also download FortiDeceptor and Fortinet core MIB files.

Configure the SNMP agent

The SNMP agent sends SNMP traps that originate on FortiDeceptor to an external monitoring SNMP manager defined in one of the FortiDeceptor SNMP communities. Typically, an SNMP manager is an application on a local computer that can read the SNMP traps and then generate reports or graphs.

The SNMP manager can monitor FortiDeceptor to determine if it is operating properly or if critical events are occurring. The description, location, and contact information for this FortiDeceptor system is part of the information an SNMP manager collects. This information is useful if the SNMP manager is monitoring many devices, and it enables a faster response when FortiDeceptor requires attention.

To configure SNMP agents:
  1. Go to System > SNMP.
  2. Configure the following settings:

    SNMP Agent

    When enabled, the FortiDeceptor SNMP agent sends FortiDeceptor SNMP traps.

    Description

    Description of this FortiDeceptor to identify this unit.

    Location

    Location of this FortiDeceptor if it requires attention.

    Contact

    Contact information of the person in charge of this FortiDeceptor.

    SNMP v1/v2c

    Create, edit, or delete SNMP v1 and v2c communities. You can enable or disable communities in the edit page. Columns include: Community Name, Queries, Traps, Enable.

    SNMP v3

    Create, edit, or delete SNMP v3 entries. You can enable or disable queries in the edit page. Columns include: Username, Security Level, Notification Host, and Queries.

To create an SNMP v1/v2c community:
  1. Go to System > SNMP.
  2. In the SNMP v1/v2c section, click Create New.
  3. Configure the following settings:

    Enable

    Enable the SNMP community.

    Community Name

    The name that identifies the SNMP community.

    Hosts

    The list of hosts that can use the settings in this SNMP community to monitor FortiDeceptor.

    IP/Netmask

    IP address and netmask of the SNMP hosts.

    Click Add to add additional hosts.

    Queries v1, Queries v2c

    Port number and if it is enabled.

    Enable queries for each SNMP version that FortiDeceptor uses.

    Traps v1, Traps v2c

    Local port number, remote port number, and if it is enabled.

    Enable traps for each SNMP version that FortiDeceptor uses.

    SNMP Events

    Events that cause FortiDeceptor to send SNMP traps to the community:

    • CPU usage is high
    • Memory is low
    • Log disk space is low
    • Incident is detected
  4. Click OK.
To create an SNMP v3 user:
  1. Go to System > SNMP.
  2. In the SNMP v3 section, click Create New.
  3. Configure the following settings:

    Username

    Name of the SNMPv3 user.

    Security Level

    Security level of the user:

    • None
    • Authentication only
    • Encryption and authentication

    Authentication

    Authentication is required when Security Level is either Authentication only or Encryption and authentication.

    Method

    Authentication method:

    • MD5 (Message Digest 5 algorithm)
    • SHA1 (Secure Hash algorithm)

    Password

    Authentication password of at least eight characters.

    Encryption

    Encryption is required if Security Level is Encryption and authentication.

    Method

    Encryption method:

    • DES
    • AES

    Key

    Encryption key of at least eight characters.

    Notification Hosts (Traps)

    IP/Netmask

    IP address and netmask. Click Add to add more hosts.

    Query

    Port

    Port number and if it is enabled.

    SNMP V3 Events

    SNMP events associated with that user:

    • CPU usage is high
    • Memory is low
    • Log disk space is low
    • Incident is detected
  4. Click OK.
To download MIB files:
  1. Go to System > SNMP.
  2. Scroll down to FortiDeceptor SNMP MIB and click one of the following links:
    • Download FortiDeceptor MIB File

    • Download Fortinet Core MIB File

SNMP

SNMP

SNMP is a method to monitor your FortiDeceptor system on your local computer. You need an SNMP agent on your computer to read the SNMP information. Using SNMP, your FortiDeceptor system monitors for system events including CPU usage, memory usage, log disk space, interface changes, and malware detection.

SNMP has two parts:

  • The SNMP agent or the device that is sending traps.
  • The SNMP manager that monitors those traps.

The SNMP communities on the monitored FortiDeceptor are configured in the SNMP page.

The FortiDeceptor SNMP implementation is read-only. SNMP v1, v2c, v3 compliant SNMP manager applications, such as those on your local computer, have read-only access to FortiDeceptor system information and can receive FortiDeceptor system traps.

You can also download FortiDeceptor and Fortinet core MIB files.

Configure the SNMP agent

The SNMP agent sends SNMP traps that originate on FortiDeceptor to an external monitoring SNMP manager defined in one of the FortiDeceptor SNMP communities. Typically, an SNMP manager is an application on a local computer that can read the SNMP traps and then generate reports or graphs.

The SNMP manager can monitor FortiDeceptor to determine if it is operating properly or if critical events are occurring. The description, location, and contact information for this FortiDeceptor system is part of the information an SNMP manager collects. This information is useful if the SNMP manager is monitoring many devices, and it enables a faster response when FortiDeceptor requires attention.

To configure SNMP agents:
  1. Go to System > SNMP.
  2. Configure the following settings:

    SNMP Agent

    When enabled, the FortiDeceptor SNMP agent sends FortiDeceptor SNMP traps.

    Description

    Description of this FortiDeceptor to identify this unit.

    Location

    Location of this FortiDeceptor if it requires attention.

    Contact

    Contact information of the person in charge of this FortiDeceptor.

    SNMP v1/v2c

    Create, edit, or delete SNMP v1 and v2c communities. You can enable or disable communities in the edit page. Columns include: Community Name, Queries, Traps, Enable.

    SNMP v3

    Create, edit, or delete SNMP v3 entries. You can enable or disable queries in the edit page. Columns include: Username, Security Level, Notification Host, and Queries.

To create an SNMP v1/v2c community:
  1. Go to System > SNMP.
  2. In the SNMP v1/v2c section, click Create New.
  3. Configure the following settings:

    Enable

    Enable the SNMP community.

    Community Name

    The name that identifies the SNMP community.

    Hosts

    The list of hosts that can use the settings in this SNMP community to monitor FortiDeceptor.

    IP/Netmask

    IP address and netmask of the SNMP hosts.

    Click Add to add additional hosts.

    Queries v1, Queries v2c

    Port number and if it is enabled.

    Enable queries for each SNMP version that FortiDeceptor uses.

    Traps v1, Traps v2c

    Local port number, remote port number, and if it is enabled.

    Enable traps for each SNMP version that FortiDeceptor uses.

    SNMP Events

    Events that cause FortiDeceptor to send SNMP traps to the community:

    • CPU usage is high
    • Memory is low
    • Log disk space is low
    • Incident is detected
  4. Click OK.
To create an SNMP v3 user:
  1. Go to System > SNMP.
  2. In the SNMP v3 section, click Create New.
  3. Configure the following settings:

    Username

    Name of the SNMPv3 user.

    Security Level

    Security level of the user:

    • None
    • Authentication only
    • Encryption and authentication

    Authentication

    Authentication is required when Security Level is either Authentication only or Encryption and authentication.

    Method

    Authentication method:

    • MD5 (Message Digest 5 algorithm)
    • SHA1 (Secure Hash algorithm)

    Password

    Authentication password of at least eight characters.

    Encryption

    Encryption is required if Security Level is Encryption and authentication.

    Method

    Encryption method:

    • DES
    • AES

    Key

    Encryption key of at least eight characters.

    Notification Hosts (Traps)

    IP/Netmask

    IP address and netmask. Click Add to add more hosts.

    Query

    Port

    Port number and if it is enabled.

    SNMP V3 Events

    SNMP events associated with that user:

    • CPU usage is high
    • Memory is low
    • Log disk space is low
    • Incident is detected
  4. Click OK.
To download MIB files:
  1. Go to System > SNMP.
  2. Scroll down to FortiDeceptor SNMP MIB and click one of the following links:
    • Download FortiDeceptor MIB File

    • Download Fortinet Core MIB File