0N/A# ----------------------------------------------------------------------
0N/A# Template for SNMP Access Control List File
0N/A#
0N/A# o Copy this template to snmp.acl
0N/A# o Set access control for SNMP support
0N/A# o Change the permission of snmp.acl to be read-only
0N/A# by the owner.
0N/A#
0N/A# See below for the location of snmp.acl file.
0N/A# ----------------------------------------------------------------------
0N/A
0N/A############################################################
0N/A# SNMP Access Control List File
0N/A############################################################
0N/A#
0N/A# Default location of this file is $JRE/lib/management/snmp.acl.
0N/A# You can specify an alternate location by specifying a property in
0N/A# the management config file $JRE/lib/management/management.properties
0N/A# or by specifying a system property (See that file for details).
0N/A#
0N/A
0N/A
0N/A##############################################################
0N/A# File permissions of the snmp.acl file
0N/A##############################################################
0N/A#
0N/A# Since there are cleartext community strings stored in this file,
0N/A# this ACL file must be readable by ONLY the owner,
0N/A# otherwise the program will exit with an error.
0N/A#
0N/A##############################################################
0N/A# Format of the acl group
0N/A##############################################################
0N/A#
0N/A# communities: a list of SNMP community strings to which the
0N/A# access control applies separated by commas.
0N/A#
0N/A# access: either "read-only" or "read-write".
0N/A#
0N/A# managers: a list of hosts to be granted the access rights.
0N/A# Each can be expressed as any one of the following:
0N/A# - hostname: hubble
0N/A# - ip v4 and v6 addresses: 123.456.789.12 , fe80::a00:20ff:fe9b:ea82
0N/A# - ip v4 and v6 netmask prefix notation: 123.456.789.0/24,
0N/A# fe80::a00:20ff:fe9b:ea82/64
0N/A# see RFC 2373 (http://www.ietf.org/rfc/rfc2373.txt)
0N/A#
0N/A# An example of two community groups for multiple hosts:
0N/A# acl = {
0N/A# {
0N/A# communities = public, private
0N/A# access = read-only
0N/A# managers = hubble, snowbell, nanak
0N/A# }
0N/A# {
0N/A# communities = jerry
0N/A# access = read-write
0N/A# managers = hubble, telescope
0N/A# }
0N/A# }
0N/A#
0N/A##############################################################
0N/A# Format of the trap group
0N/A##############################################################
0N/A#
0N/A# trap-community: a single SNMP community string that will be included
0N/A# in the traps sent to the hosts.
0N/A#
0N/A# hosts: a list of hosts to which the SNMP agent will send traps.
0N/A#
0N/A# An example of two trap community definitions for multiple hosts:
0N/A# trap = {
0N/A# {
0N/A# trap-community = public
0N/A# hosts = hubble, snowbell
0N/A# }
0N/A# {
0N/A# trap-community = private
0N/A# hosts = telescope
0N/A# }
0N/A# }
0N/A#
0N/A############################################################
0N/A#
0N/A# Update the community strings (public and private) below
0N/A# before copying this template file
0N/A#
0N/A# Common SNMP ACL Example
0N/A# ------------------------
0N/A#
0N/A# o Only localhost can connect, and access rights
0N/A# are limited to read-only
0N/A# o Traps are sent to localhost only
0N/A#
0N/A#
0N/A# acl = {
0N/A# {
0N/A# communities = public, private
0N/A# access = read-only
0N/A# managers = localhost
0N/A# }
0N/A# }
0N/A#
0N/A#
0N/A# trap = {
0N/A# {
0N/A# trap-community = public
0N/A# hosts = localhost
0N/A# }
0N/A# }