Got it
Huawei Enterprise Support Community
Community Forums Access Network
SNMP Traps from the OLT n...

SNMP Traps from the OLT not received on eSight

Created: Jun 28, 2021 09:51:18Latest reply: Jul 1, 2021 00:38:01 427 4 0 0 0
  HiCoins as reward: 0 (problem unresolved)
View the author 1#

After checking on the eSight platform, the SNMP template configuration applied to the OLT could not be displayed, is it normal ?.

 

They could however show the SNMP template for the switches managed by eSight, and they used AES-256 as the privacy protocol. They likely use the same configuration for the OLT. But in the OLT configuration, AES-128 was configured. So it maybe explains why the traps are not received.

 

Please see below the SNMP configuration of the OLT.

 

[snmp]
  <snmp>
snmp-agent local-engineid 800007DB03xxx95F25377
snmp-agent target-host trap-hostname "ESIGHT20" address 10.xxx 20 udp-port 162 trap-paramsname "[trap_params_list]"
snmp-agent target-host trap-paramsname "[trap_params_list]" v3 securityname "[user]" privacy
#
snmp-agent sys-info location "45 avenue JF Kennedy Biarritz, France"
snmp-agent sys-info version v3
snmp-agent group v3 "[group]" privacy read-view "[ViewName]" write-view "[ViewName]"
#
snmp-agent mib-view "[ViewName]" include "iso"
snmp-agent usm-user v3 "[user]" "[group]" authentication-mode sha "[sha_value]" privacy-mode aes128 "[privacy_value]"
#

 

Note: The values between [brackets] are substituted values.

 

There is no filtering equipment (i.e. firewall, …) which may block the SNMP traps between the NE and the eSight server.

 

I have issued many huawei(diagnose)%%snmp-agent simulate test-trap commands, but nothing was received on eSight side.

 

As the product documentation says, the hostname parameter “ESIGHT20” may also be the root cause, if its configuration is not consistent with what is configured server-side. Does the “hostname” here refer to the Linux server hostname, or is it another parameter within eSight?

 

Here are the equipment:

-          eSight 20.1

-          EA5800 OLT


Like (0) Dislike (0) Favorite(0) Share Report
Previous: Huawei ONTs DNS and Channel.
Next: Possibility of installing generic firmware on ONT
Featured Answers

Recommended answer

(0) (0)
Chenxintao
Admin Created Jul 1, 2021 00:38:01

Hello, friend!


1.. According to the information you provided: The EulerOS firewall is enabled on the eSight server. As a result, eSight cannot receive alarms.


Solution:

Turn off and disable the EulerOS firewall

Turn off the firewall: systemctl stop firewalld

Disable firewall: systemctl disable firewalld


2. The SNMPv3 configuration on the switch is incorrect, As a result, eSight cannot receive alarms.


Solution:

This problem is solved after the notify-view is added to SNMPv3.

Incorrect configuration:  

SNMP

Correct configuration:

SNMP


Thanks!


View more
  • x
  • convention:
All Answers
(0) (0)
2#
Abdussamed
Abdussamed Created Jun 28, 2021 10:02:53

Thanks for contacting the Huawei community!

We are checking your question and will provide an answer to you shortly...
View more
  • x
  • convention:
(0) (0)
3#
Abdussamed
Abdussamed Created Jun 28, 2021 10:10:18

This place seems missing

[SNMP] snmp-agent usm-user v3 snmpv3user
[SNMP] snmp-agent usm-user v3 snmpv3user group snmpv3usergroup
[SNMP] snmp-agent usm-user v3 snmpv3user authentication-mode sha //eSight to SNMP device authentication password.
[SNMP] snmp-agent usm-user v3 snmpv3user privacy-mode aes128 //eSight to SNMP device authentication password.
[SNMP] snmp-agent trap source intx/x/x
[SNMP] snmp-agent trap enable

Hope it can help you.
View more
  • x
  • convention:
(0) (0)
4#
Abdussamed
Abdussamed Created Jun 28, 2021 10:11:36

do you check link Plase
https://forum.huawei.com/enterprise/en/esight-yazılımı-huawei-switch-snmpv3-eşleştirme/thread/729579-100575
View more
  • x
  • convention:
(0) (0)
5#
Chenxintao
Chenxintao Admin Created Jul 1, 2021 00:38:01

Hello, friend!


1.. According to the information you provided: The EulerOS firewall is enabled on the eSight server. As a result, eSight cannot receive alarms.


Solution:

Turn off and disable the EulerOS firewall

Turn off the firewall: systemctl stop firewalld

Disable firewall: systemctl disable firewalld


2. The SNMPv3 configuration on the switch is incorrect, As a result, eSight cannot receive alarms.


Solution:

This problem is solved after the notify-view is added to SNMPv3.

Incorrect configuration:  

SNMP

Correct configuration:

SNMP


Thanks!


View more
  • x
  • convention:
Back to list

Comment

Advanced
B Color Image Link Quote Code Smilies
You need to log in to comment to the post Login | Register
Comment

Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " User Agreement."

My Followers

Login and enjoy all the member benefits

Login
Huawei Website Support About Huawei Privacy User Agreement Terms of Use Cookies Cookie Settings
Huawei Enterprise Huawei Carrier Forum Training & Certification

Contact Us: e_online@huawei.com Copyright © 2022 Huawei Technologies Co., Ltd. All rights reserved.

APP

Block
Are you sure to block this user?
Users on your blacklist cannot comment on your post,cannot mention you, cannot send you private messages.
Reminder
Please bind your phone number to obtain invitation bonus.