SNMP
SNMP is a method to monitor your FortiDeceptor system on your local computer. You need an SNMP agent on your computer to read the SNMP information. Using SNMP, your FortiDeceptor system monitors for system events including CPU usage, memory usage, log disk space, interface changes, and malware detection.
SNMP has two parts:
- The SNMP agent or the device that is sending traps.
- The SNMP manager that monitors those traps.
The SNMP communities on the monitored FortiDeceptor are configured in the SNMP page.
The FortiDeceptor SNMP implementation is read-only. SNMP v1, v2c, v3 compliant SNMP manager applications, such as those on your local computer, have read-only access to FortiDeceptor system information and can receive FortiDeceptor system traps.
You can also download FortiDeceptor and Fortinet core MIB files.
Configure the SNMP agent
The SNMP agent sends SNMP traps that originate on FortiDeceptor to an external monitoring SNMP manager defined in one of the FortiDeceptor SNMP communities. Typically, an SNMP manager is an application on a local computer that can read the SNMP traps and then generate reports or graphs.
The SNMP manager can monitor FortiDeceptor to determine if it is operating properly or if critical events are occurring. The description, location, and contact information for this FortiDeceptor system is part of the information an SNMP manager collects. This information is useful if the SNMP manager is monitoring many devices, and it enables a faster response when FortiDeceptor requires attention.
To configure SNMP agents:
- Go to System > SNMP.
- Configure the following settings:
SNMP Agent
When enabled, the FortiDeceptor SNMP agent sends FortiDeceptor SNMP traps.
Description
Description of this FortiDeceptor to identify this unit.
Location
Location of this FortiDeceptor if it requires attention.
Contact
Contact information of the person in charge of this FortiDeceptor.
SNMP v1/v2c
Create, edit, or delete SNMP v1 and v2c communities. You can enable or disable communities in the edit page. Columns include: Community Name, Queries, Traps, Enable.
SNMP v3
Create, edit, or delete SNMP v3 entries. You can enable or disable queries in the edit page. Columns include: Username, Security Level, Notification Host, and Queries.
To create an SNMP v1/v2c community:
- Go to System > SNMP.
- In the SNMP v1/v2c section, click Create New.
- Configure the following settings:
Enable
Enable the SNMP community.
Community Name
The name that identifies the SNMP community.
Hosts
The list of hosts that can use the settings in this SNMP community to monitor FortiDeceptor.
IP/Netmask
IP address and netmask of the SNMP hosts.
Click Add to add additional hosts.
Queries v1, Queries v2c
Port number and if it is enabled.
Enable queries for each SNMP version that FortiDeceptor uses.
Traps v1, Traps v2c
Local port number, remote port number, and if it is enabled.
Enable traps for each SNMP version that FortiDeceptor uses.
SNMP Events
Events that cause FortiDeceptor to send SNMP traps to the community:
- CPU usage is high
- Memory is low
- Log disk space is low
- Incident is detected
- Click OK.
To create an SNMP v3 user:
- Go to System > SNMP.
- In the SNMP v3 section, click Create New.
- Configure the following settings:
Username
Name of the SNMPv3 user.
Security Level
Security level of the user:
- None
- Authentication only
- Encryption and authentication
Authentication
Authentication is required when Security Level is either Authentication only or Encryption and authentication.
Method
Authentication method:
- MD5 (Message Digest 5 algorithm)
- SHA1 (Secure Hash algorithm)
Password
Authentication password of at least eight characters.
Encryption
Encryption is required if Security Level is Encryption and authentication.
Method
Encryption method:
- DES
- AES
Key
Encryption key of at least eight characters.
Notification Hosts (Traps)
IP/Netmask
IP address and netmask. Click Add to add more hosts.
Query
Port
Port number and if it is enabled.
SNMP V3 Events
SNMP events associated with that user:
- CPU usage is high
- Memory is low
- Log disk space is low
- Incident is detected
- Click OK.
To download MIB files:
- Go to System > SNMP.
- Scroll down to FortiDeceptor SNMP MIB and click one of the following links:
Download FortiDeceptor MIB File
Download Fortinet Core MIB File
To filter the columns in the table:
-
Click the plus sign in the Search field. The Filterable Columns menu opens.
-
Select a column in the list to Resize to Contents, Group By This column or create a custom filter.
-
Click Apply.
905416
To show or hide columns in the table:
-
Hover the header row until the Configure Table icon appears.
-
Click Configure Table. The Best Fit Columns menu opens.
-
Select the columns to appear in the table and click Apply.
-
To restore the default table, click Reset Table.