Document
Library

Configuring Traps for MAC Notification

Overview
Procedure
- Configuration Examples
  - Cisco 3560 (IOS 12.2)
  - Cisco cat4500e
  - Extreme
  - H3C / HPE
  - HP
  - Juniper
  - Alcatel
  - Ruckus Brocade
  - Dell
Validate
Troubleshooting
- Debugging

Home FortiNAC-F 7.2.0 Configuring Traps for MAC Notification

7.2.0

H3C / HPE

H3C / HPE

(H3C 1950 example)

Configure SNMP and enable MAC Notification traps pointed to the IP address of the eth0 on FortiNAC Control Server or Control Server (xxx.xxx.xxx.xxx).

Note: If target host is defined without specifying traps, all traps are enabled.

Example (SNMP V3)

system-view

snmp-agent sys-info version v3

snmp-agent sys-info contact <sys-contact>

snmp-agent sys-info location <sys-location>

snmp-agent group v3 SNMPV3_Group privacy write-view ViewDefault notify-view ViewDefault

snmp-agent target-host trap address udp-domain xxx.xxx.xxx.xxx params securityname V3

snmp-agent usm-user v3 snmpv3usr SNMPV3_Group cipher authentication-mode sha SecretKey***** Comment only

snmp-agent trap enable mac-address

Note:
- The securityname value is required by the switch in order to enter the command. However, it is not used by FortiNAC when processing traps.
- If the mac-address option is not available, the following command enables all traps:
  
  snmp-agent trap enable

Example (V1/V2)

system-view

snmp-agent sys-info version v1 v2c

snmp-agent community read public

snmp-agent community write private

snmp-agent sys-info contact <sys-contact>

snmp-agent sys-info location <sys-location>

snmp-agent target-host trap address udp-domain xxx.xxx.xxx.xxx params securityname public v1

snmp-agent trap enable mac-address

Note: if the mac-address option is not available, the following command enables all traps:

snmp-agent trap enable

Enable MAC address table notifications globally.

mac-address information enable
Configure SNMP MAC Notification traps and disable link traps on all access ports (do not include uplinks).

disable snmp trap updown

mac-address information enable added

mac-address information enable deleted

Previous

Next

H3C / HPE

(H3C 1950 example)

Configure SNMP and enable MAC Notification traps pointed to the IP address of the eth0 on FortiNAC Control Server or Control Server (xxx.xxx.xxx.xxx).

Note: If target host is defined without specifying traps, all traps are enabled.

Example (SNMP V3)

system-view

snmp-agent sys-info version v3

snmp-agent sys-info contact <sys-contact>

snmp-agent sys-info location <sys-location>

snmp-agent group v3 SNMPV3_Group privacy write-view ViewDefault notify-view ViewDefault

snmp-agent target-host trap address udp-domain xxx.xxx.xxx.xxx params securityname V3

snmp-agent usm-user v3 snmpv3usr SNMPV3_Group cipher authentication-mode sha SecretKey***** Comment only

snmp-agent trap enable mac-address

Note:
- The securityname value is required by the switch in order to enter the command. However, it is not used by FortiNAC when processing traps.
- If the mac-address option is not available, the following command enables all traps:
  
  snmp-agent trap enable

Example (V1/V2)

system-view

snmp-agent sys-info version v1 v2c

snmp-agent community read public

snmp-agent community write private

snmp-agent sys-info contact <sys-contact>

snmp-agent sys-info location <sys-location>

snmp-agent target-host trap address udp-domain xxx.xxx.xxx.xxx params securityname public v1

snmp-agent trap enable mac-address

Note: if the mac-address option is not available, the following command enables all traps:

snmp-agent trap enable

Enable MAC address table notifications globally.

mac-address information enable
Configure SNMP MAC Notification traps and disable link traps on all access ports (do not include uplinks).

disable snmp trap updown

mac-address information enable added

mac-address information enable deleted

Previous

Next