Logo Questions Linux Laravel Mysql Ubuntu Git Menu
 

Getting usmStatsUnknownEngineIDs on SNMPv3 Discovery

Tags:

c#

sharp-snmp

I am trying to get SNMPv3 to work using sharpsnmplib but i am stuck on the discovery step.

 Discovery discovery = Messenger.GetNextDiscovery(SnmpType.GetRequestPdu);

 ReportMessage report = discovery.GetResponse(60000, new IPEndPoint(IPAddress.Parse(IPAddr), 161));

I was under the impression that the above code will send an empty request that would get the engineID and context from the device. But when looking at the result, it returns 1.3.6.1.6.3.15.1.1.4.0 which is usmStatsUnknownEngineIDs.

Error on Discovery

Am i missing something?

like image 234
noisyass2 Avatar asked Feb 17 '17 08:02

noisyass2


People also ask

Is Engine ID mandatory for SNMPv3?

SNMPv3 requires an application to know the identifier (snmpEngineID) of the remote SNMP protocol engine in order to retrieve or manipulate objects maintained on the remote SNMP entity. The EngineID is also one of the inputs used for key derivation of the authentication and privacy keys.

What is remote engine ID in SNMPv3?

The Engine ID is used by SNMPv3 entities to uniquely identify them. An SNMP agent is considered an authoritative SNMP engine. This means that the agent responds to incoming messages (Get, GetNext, GetBulk, Set) and sends trap messages to a manager. The agent's local information is encapsulated in fields in the message.

What is report in SNMP?

A REPORT operation is an indication of some core SNMP communication error or bootstrapping response. It is most typically handled internally to the SNMP stack and most end-users and even application developers don't need to know about it.

What is SNMPv3 in network security?

The SNMP Version 3 feature provides secure access to devices by authenticating and encrypting data packets over the network. Simple Network Management Protocol version 3 (SNMPv3) is an interoperable, standards-based protocol that is defined in RFCs 3413 to 3415.


1 Answers

You have done nothing wrong, but simply some SNMP agents require the initial requests to contain a valid engine ID and they only respond to those valid requests.

That's the security configuration part, not caused by #SNMP.

like image 97
Lex Li Avatar answered Oct 15 '22 04:10

Lex Li