4-9
Cisco AS5800 Operations, Administration, Maintenance, and Provisioning Guide
DOC-7810814=
Chapter 4 Administration
Enabling Management Protocols: NTP, SNMP, and Syslog
Caution If you are not using SNMP, make sure to turn it off. Never use a configuration that uses
“public” or “private” as community strings—these strings are well known in the industry
and are common defaults on hardware. These strings are open invitations to attacks,
regardless if you use filters.
Step 2 Monitor SNMP input and output statistics. For example, display a real-time view of who is polling the
NAS for statistics and how often.
Excessive polling will:
• Consume much of the CPU resources
• Cause packets to be dropped
• Crash the NAS
5800-NAS# show snmp
Chassis: 11811596
Location: 5800-NAS-corporate
0 SNMP packets input
0 Bad SNMP version errors
0 Unknown community name
0 Illegal operation for community name supplied
0 Encoding errors
0 Number of requested variables
0 Number of altered variables
0 Get-request PDUs
0 Get-next PDUs
0 Set-request PDUs
0 SNMP packets output
0 Too big errors (Maximum packet size 1500)
0 No such name errors
0 Bad values errors
0 General errors
0 Response PDUs
0 Trap PDUs
SNMP logging: enabled
Logging to 172.22.66.18.162, 0/10, 0 sent, 0 dropped.
5800-NAS#
Disabling the Logging of Access Interfaces
Limit the amount of output logged from the group-async interface and ISDN D channels. Carefully
choose the data sources for system management purposes. AAA accounting and the modem-call record
terse feature provides the best data set for analyzing ISDN remote node device activity.
Link status up-down events and SNMP trap signals:
• Occur regularly on access interfaces. Dialer interfaces going up and down is normal behavior and
does not indicate a problem.
• Should not be logged or sent to a management server.
Comments to this Manuals