[2015/06/23 08:04:50] #net-snmp <troy__> hi
[2015/06/23 08:05:41] #net-snmp <troy__> hi guys, i have a question regarding snmp v3 - Request timeout that i encounter...
[2015/06/23 08:06:12] #net-snmp <troy__> say, i have these settings... Security Level: authPriv
[2015/06/23 08:06:13] #net-snmp <troy__> Auth Hash : SHA
[2015/06/23 08:06:13] #net-snmp <troy__> Privacy Algo : AES
[2015/06/23 08:06:13] #net-snmp <troy__> RW User : testtest
[2015/06/23 08:06:13] #net-snmp <troy__> RW Password: testtest
[2015/06/23 08:06:41] #net-snmp <troy__> Then doing a query like: snmpwalk -v3 - u testtest -A testtest -X testtest -l authPriv -a SHA -x DES ipaddress ifName
[2015/06/23 08:06:59] #net-snmp <troy__> would result in a:
[2015/06/23 08:06:59] #net-snmp <troy__> Timeout: No Response from ipaddress
[2015/06/23 08:07:09] #net-snmp <troy__> Is this a known issue? Is there anything I need to do so it would return a correct error code/message other than timeout?
[2015/06/23 08:08:24] #net-snmp <troy__> Note that Privacy Algorithm is set to AES but in the snmpwalk command it was specified as DES.
[2015/06/23 08:09:28] #net-snmp <rstory-work> the algorithms have to match. the agent will drop any mistmatches with no reply/error code.
[2015/06/23 08:09:55] #net-snmp <rstory-work> just like a v2 command with a bad community string will be dropped.
[2015/06/23 08:10:12] #net-snmp <rstory-work> the behavior is specified in the protocol..
[2015/06/23 08:11:48] #net-snmp <troy__> so this is the correct behavior of Net-SNMP?.. is there a document that states as such? (i need to have a concrete explaination to convince my manager.) :(
[2015/06/23 08:21:50] #net-snmp <rstory-work> RFC 3412, section 7.2. Prepare Data Elements from an Incoming SNMP Message, step 6 b.
[2015/06/23 08:22:37] #net-snmp <rstory-work> the agent can't decrypt the message without the proper algorithm, so it drops the message.
[2015/06/23 08:23:34] #net-snmp <troy__> thank you very much rstory-work!!!.. i really appreciate it!
[2015/06/23 08:23:38] #net-snmp <rstory-work> this isn't net-snmp specific, it's defined the SNMP protocol.
[2015/06/23 11:04:25] #net-snmp <cvander> In RedHat 6.6 I have a MIB that is generating and error 'Bad operator (_):' I've added 'mibAllowUnderline 1' to snmpd.conf but continue to get the error. Should i be configuring this elsewhere?
[2015/06/23 12:59:18] #net-snmp <fenestro> in snmpd.conf you would need '[snmp] mibAllowUnderline 1'
[2015/06/23 12:59:29] #net-snmp <fenestro> ...but, you only need to use this MIB in snmpd?
<-- IllvilJa has left #net-snmp
[2015/06/23 16:00:51] #net-snmp <kierank> any idea why an SNMP SET could return tooBig?
[2015/06/23 16:25:05] #net-snmp <kierank> it's a single set
[2015/06/23 16:57:01] #net-snmp <rstory-work> kierank: is the value you are trying to set a very long value? like a string? does the object you are trying to set have size restrictions in the mib?
[2015/06/23 22:15:17] #net-snmp <kierank> rstory-work: thanks, was something else in the end