V3 Trap Handling in Manager
Jochen Katz
katz____agentpp.com
Mon Oct 15 20:29:23 CEST 2001
Hi,
> This is a general question on V3 Traps using SNMP++.
>
> In the SNMP Manager application does one have to verify if the trap is
from
> an agent with valid engine id, security name etc....? Is there a
standard
> procedure for it?
>
> Or is it taken care of in the SNMP++?
snmp++ can only do part of this job. If you disable the automatic SNMP
engineID discovery of snmpv3 (call usmUnsetDiscoveryMode()) no messages
with unknown engineIDs are accepted.
Security names are checked, but if the sender doesn't use authentication
and encryption, you can't trust the message. So you will have to check
at least the security level.
As possibly only a specific user is allowed to send a specific trap, you
may want to check the security name too.
Kind regards,
Jochen
More information about the AGENTPP
mailing list