SNMP Link Traps (FortiOS 6.2.0 and below)
Note: If Syslog is already configured, do not configure SNMP traps and proceed to Configure FortiNAC.
In the FortiSwitch CLI, configure Link State traps to be sent to FortiNAC’s primary IP address when clients connect or disconnect. Traps are configured per switch. For FortiSwitch CLI access instructions, see Appendix.
Reference:
Type the following commands
config system interface
edit "internal"
set mode dhcp
set allowaccess ping https http ssh snmp telnet
set type physical
set snmp-index 12
set defaultgw enable
next
end
config system snmp sysinfo
set status enable
end
config system snmp community
edit <number>
config hosts
edit <number>
set ip <FortiNAC eth0 IP address> <mask>
next
end
set name "<community string>"
set trap-v2c-status disable
next
end
SNMPv1 Example
The below is used in all the following configuration examples:
internal = Management interface name
10.12.240.7/24 = Primary NAC Server eth0 IP address
Community name = fortinet
config system interface
edit "internal"
set mode dhcp
set allowaccess ping https ssh snmp
set type physical
set snmp-index 12
set defaultgw enable
next
end
config system snmp sysinfo
set status enable
end
config system snmp community
edit 1
config hosts
edit 1
set ip 10.12.240.7 255.255.255.0
next
end
set name "fortinet"
set trap-v2c-status disable
next
end
Proceed to Configure FortiNAC (Link Mode).