Skip to content
Network as Code

SNMP Server

SNMP (Simple Network Management Protocol) server configuration enables comprehensive network monitoring and management by providing standardized access to device operational data, configuration parameters, and event notifications through Management Information Bases (MIBs). It supports multiple SNMP versions including SNMPv1, SNMPv2c, and SNMPv3 with advanced security features such as authentication, encryption, and access control through communities, users, groups, and views. SNMP server functionality includes extensive trap generation for proactive monitoring of network events, performance metrics collection, fault management, and integration with network management systems for centralized monitoring, alerting, and automated network operations.

Diagram

Diagram

Classes

configuration (iosxe.devices)

NameTypeConstraintMandatoryDefault Value
snmp_serverClass[snmp_server]No

snmp_server (iosxe.devices.configuration)

NameTypeConstraintMandatoryDefault Value
groupsList[groups]No
usersList[users]No
chassis_idStringNo
contactStringNo
ifindex_persistBooleantrue, falseNo
locationStringNo
packet_sizeIntegermin: 484, max: 17892No
queue_lengthIntegermin: 1, max: 5000No
enable_logging_getopBooleantrue, falseNo
enable_logging_setopBooleantrue, falseNo
enable_informsBooleantrue, falseNo
enable_trapsBooleantrue, falseNo
hostsList[hosts]No
system_shutdownBooleantrue, falseNo
source_interface_informs_typeChoiceLoopback, Vlan, GigabitEthernet, TenGigabitEthernet, FortyGigabitEthernet, HundredGigabitEthernet, PortChannel, PortChannelSubinterfaceNo
source_interface_informs_idStringNo
source_interface_traps_typeChoiceLoopback, Vlan, GigabitEthernet, TenGigabitEthernet, FortyGigabitEthernet, HundredGigabitEthernet, PortChannel, PortChannelSubinterfaceNo
source_interface_traps_idStringNo
trapsClass[traps]No
snmp_communitiesList[snmp_communities]No
contextsListStringNo
viewsList[views]No

groups (iosxe.devices.configuration.snmp_server)

NameTypeConstraintMandatoryDefault Value
nameStringYes
v3_security_levelsList[v3_security_levels]No

users (iosxe.devices.configuration.snmp_server)

NameTypeConstraintMandatoryDefault Value
nameStringYes
groupStringYes
v3_authenticationClass[v3_authentication]Yes

hosts (iosxe.devices.configuration.snmp_server)

NameTypeConstraintMandatoryDefault Value
ipIPYes
communityStringNo
userStringNo
versionChoice1, 2c, 3No
encryptionChoice0, 6, 7No

traps (iosxe.devices.configuration.snmp_server)

NameTypeConstraintMandatoryDefault Value
snmp_authenticationBooleantrue, falseNo
snmp_coldstartBooleantrue, falseNo
snmp_linkdownBooleantrue, falseNo
snmp_linkupBooleantrue, falseNo
snmp_warmstartBooleantrue, falseNo
flowmonBooleantrue, falseNo
entity_perf_throughput_notifBooleantrue, falseNo
call_home_message_send_failBooleantrue, falseNo
call_home_server_failBooleantrue, falseNo
ttyBooleantrue, falseNo
ospfv3_config_state_changeBooleantrue, falseNo
ospfv3_config_errorsBooleantrue, falseNo
ospf_config_retransmitBooleantrue, falseNo
ospf_config_lsaBooleantrue, falseNo
ospf_nssa_trans_changeBooleantrue, falseNo
ospf_shamlink_interfaceBooleantrue, falseNo
ospf_shamlink_neighborBooleantrue, falseNo
ospf_errors_enableBooleantrue, falseNo
ospf_retransmit_enableBooleantrue, falseNo
lsa_enableBooleantrue, falseNo
eigrpBooleantrue, falseNo
auth_framework_sec_violationBooleantrue, falseNo
repBooleantrue, falseNo
vtpBooleantrue, falseNo
vlancreateBooleantrue, falseNo
vlandeleteBooleantrue, falseNo
port_securityBooleantrue, falseNo
licenseBooleantrue, falseNo
smart_licenseBooleantrue, falseNo
cpu_thresholdBooleantrue, falseNo
memory_bufferpeakBooleantrue, falseNo
stackwiseBooleantrue, falseNo
udld_link_fail_rptBooleantrue, falseNo
udld_status_changeBooleantrue, falseNo
fru_ctrlBooleantrue, falseNo
flash_insertionBooleantrue, falseNo
flash_removalBooleantrue, falseNo
flash_lowspaceBooleantrue, falseNo
energywiseBooleantrue, falseNo
power_ethernet_groupBooleantrue, falseNo
power_ethernet_policeBooleantrue, falseNo
entityBooleantrue, falseNo
pw_vcBooleantrue, falseNo
envmonBooleantrue, falseNo
cef_resource_failureBooleantrue, falseNo
cef_peer_state_changeBooleantrue, falseNo
cef_peer_fib_state_changeBooleantrue, falseNo
cef_inconsistencyBooleantrue, falseNo
isisBooleantrue, falseNo
ipslaBooleantrue, falseNo
entity_diag_boot_up_failBooleantrue, falseNo
entity_diag_hm_test_recoverBooleantrue, falseNo
entity_diag_hm_thresh_reachedBooleantrue, falseNo
entity_diag_scheduled_test_failBooleantrue, falseNo
bfdBooleantrue, falseNo
ike_policy_addBooleantrue, falseNo
ike_policy_deleteBooleantrue, falseNo
ike_tunnel_startBooleantrue, falseNo
ike_tunnel_stopBooleantrue, falseNo
ipsec_cryptomap_addBooleantrue, falseNo
ipsec_cryptomap_attachBooleantrue, falseNo
ipsec_cryptomap_deleteBooleantrue, falseNo
ipsec_cryptomap_detachBooleantrue, falseNo
ipsec_tunnel_startBooleantrue, falseNo
ipsec_tunnel_stopBooleantrue, falseNo
ipsec_too_many_sasBooleantrue, falseNo
config_copyBooleantrue, falseNo
configBooleantrue, falseNo
config_ctidBooleantrue, falseNo
dhcpBooleantrue, falseNo
event_managerBooleantrue, falseNo
hsrpBooleantrue, falseNo
ip_multicastBooleantrue, falseNo
msdpBooleantrue, falseNo
ospf_config_state_changeBooleantrue, falseNo
ospf_config_errorsBooleantrue, falseNo
pim_invalid_pim_messageBooleantrue, falseNo
pim_neighbor_changeBooleantrue, falseNo
pim_rp_mapping_changeBooleantrue, falseNo
bridge_newrootBooleantrue, falseNo
bridge_topologychangeBooleantrue, falseNo
stpx_inconsistencyBooleantrue, falseNo
stpx_root_inconsistencyBooleantrue, falseNo
stpx_loop_inconsistencyBooleantrue, falseNo
syslogBooleantrue, falseNo
bgp_cbgp2Booleantrue, falseNo
nhrp_nhsBooleantrue, falseNo
nhrp_nhcBooleantrue, falseNo
nhrp_nhpBooleantrue, falseNo
nhrp_quota_exceededBooleantrue, falseNo
mpls_traffic_engBooleantrue, falseNo
mpls_vpnBooleantrue, falseNo
mpls_rfc_ldpBooleantrue, falseNo
mpls_ldpBooleantrue, falseNo
fast_reroute_protectedBooleantrue, falseNo
local_authBooleantrue, falseNo
vlan_membershipBooleantrue, falseNo
errdisableBooleantrue, falseNo
rfBooleantrue, falseNo
transceiver_allBooleantrue, falseNo
bulkstat_collectionBooleantrue, falseNo
bulkstat_transferBooleantrue, falseNo
mac_notification_changeBooleantrue, falseNo
mac_notification_moveBooleantrue, falseNo
mac_notification_thresholdBooleantrue, falseNo
vrfmib_vrf_upBooleantrue, falseNo
vrfmib_vrf_downBooleantrue, falseNo
vrfmib_vnet_trunk_upBooleantrue, falseNo
vrfmib_vnet_trunk_downBooleantrue, falseNo
aaa_serverBooleantrue, falseNo
adsllineBooleantrue, falseNo
alarm_typeStringNo
casaBooleantrue, falseNo
cnpdBooleantrue, falseNo
dialBooleantrue, falseNo
dlswBooleantrue, falseNo
ds1Booleantrue, falseNo
dsp_card_statusBooleantrue, falseNo
dsp_oper_stateBooleantrue, falseNo
ether_oamBooleantrue, falseNo
ethernet_cfm_alarmBooleantrue, falseNo
ethernet_cfm_cc_configBooleantrue, falseNo
ethernet_cfm_cc_cross_connectBooleantrue, falseNo
ethernet_cfm_cc_loopBooleantrue, falseNo
ethernet_cfm_cc_mep_downBooleantrue, falseNo
ethernet_cfm_cc_mep_upBooleantrue, falseNo
ethernet_cfm_crosscheck_mep_missingBooleantrue, falseNo
ethernet_cfm_crosscheck_mep_unknownBooleantrue, falseNo
ethernet_cfm_crosscheck_service_upBooleantrue, falseNo
ethernet_evc_createBooleantrue, falseNo
ethernet_evc_deleteBooleantrue, falseNo
ethernet_evc_statusBooleantrue, falseNo
firewall_serverstatusBooleantrue, falseNo
frame_relay_config_bundle_mismatchBooleantrue, falseNo
frame_relay_config_onlyBooleantrue, falseNo
frame_relay_config_subif_configsBooleantrue, falseNo
frame_relay_multilink_bundle_mismatchBooleantrue, falseNo
frame_relay_subif_countIntegermin: 1, max: 1000No
frame_relay_subif_intervalIntegermin: 1, max: 3600No
ip_local_poolBooleantrue, falseNo
isdn_call_informationBooleantrue, falseNo
isdn_chan_not_availBooleantrue, falseNo
isdn_ietfBooleantrue, falseNo
isdn_layer2Booleantrue, falseNo
l2tun_pseudowire_statusBooleantrue, falseNo
l2tun_sessionBooleantrue, falseNo
l2tun_tunnelBooleantrue, falseNo
lispBooleantrue, falseNo
mplsBooleantrue, falseNo
mpls_rfcBooleantrue, falseNo
mvpnBooleantrue, falseNo
pfrBooleantrue, falseNo
pimstdmib_interface_electionBooleantrue, falseNo
pimstdmib_invalid_join_pruneBooleantrue, falseNo
pimstdmib_invalid_registerBooleantrue, falseNo
pimstdmib_neighbor_lossBooleantrue, falseNo
pimstdmib_rp_mapping_changeBooleantrue, falseNo
pkiBooleantrue, falseNo
pppoeBooleantrue, falseNo
resource_policyBooleantrue, falseNo
rsvpBooleantrue, falseNo
sonetBooleantrue, falseNo
srpBooleantrue, falseNo
vdsl2lineBooleantrue, falseNo
voiceBooleantrue, falseNo
vrrpBooleantrue, falseNo
entity_qfp_mem_res_threshBooleantrue, falseNo
entity_qfp_throughput_notifBooleantrue, falseNo
entity_sensorBooleantrue, falseNo
entity_stateBooleantrue, falseNo

snmp_communities (iosxe.devices.configuration.snmp_server)

NameTypeConstraintMandatoryDefault Value
nameStringYes
viewStringNo
permissionChoicero, rwNo
ipv6_aclStringNo
ipv4_aclStringNo

views (iosxe.devices.configuration.snmp_server)

NameTypeConstraintMandatoryDefault Value
nameStringYes
mibStringYes
scopeChoiceincluded, excludedNo

v3_security_levels (iosxe.devices.configuration.snmp_server.groups)

NameTypeConstraintMandatoryDefault Value
security_levelStringYes
context_nodeStringNo
match_nodeChoiceexact, prefixNo
read_nodeStringNo
write_nodeStringNo
notify_nodeStringNo
access_ipv6_aclStringNo
access_standard_aclIntegermin: 1, max: 99No
access_acl_nameStringNo

v3_authentication (iosxe.devices.configuration.snmp_server.users)

NameTypeConstraintMandatoryDefault Value
algorithmChoicemd5, shaYes
passwordStringYes
accessClass[access]No
privacyClass[privacy]No

access (iosxe.devices.configuration.snmp_server.users.v3_authentication)

NameTypeConstraintMandatoryDefault Value
ipv6_aclStringNo
standard_aclIntegermin: 1, max: 99No
acl_nameStringNo

privacy (iosxe.devices.configuration.snmp_server.users.v3_authentication)

NameTypeConstraintMandatoryDefault Value
aesClass[aes]No
desClass[des]No
des3Class[des3]No

aes (iosxe.devices.configuration.snmp_server.users.v3_authentication.privacy)

NameTypeConstraintMandatoryDefault Value
enabledBooleantrue, falseNo
algorithmChoice128, 192, 256No
passwordStringNo
accessClass[access]No

des (iosxe.devices.configuration.snmp_server.users.v3_authentication.privacy)

NameTypeConstraintMandatoryDefault Value
enabledBooleantrue, falseNo
passwordStringNo
accessClass[access]No

des3 (iosxe.devices.configuration.snmp_server.users.v3_authentication.privacy)

NameTypeConstraintMandatoryDefault Value
enabledBooleantrue, falseNo
passwordStringNo
accessClass[access]No

Examples

iosxe:
  devices:
    - name: Device1
      configuration:
        snmp_server:
          groups:
          - name: Group1
            v3_security_levels:
            - security_level: priv
              context_node: CON1
              match_node: exact
              read_node: VIEW1
              write_node: VIEW2
              notify_node: VIEW3
              access_ipv6_acl: V6ACL1
              access_acl_name: ACL1
              access_standard_acl: 50
          - name: Group2
            v3_security_levels:
            - security_level: priv
              context_node: CON2
              match_node: exact
              read_node: VIEW4
              write_node: VIEW5
              notify_node: VIEW6
              access_ipv6_acl: V6ACL2
              access_acl_name: ACL2
              access_standard_acl: 43
          users:
          - name: SNMP_USER1
            group: ADMIN_GROUP
            v3_authentication:
              algorithm: sha
              password: SecretAuthPassword123
              privacy:
                aes:
                  enabled: true
                  algorithm: 256
                  password: SecretAesPassword456
          hosts:
          - ip: 192.168.1.1
            user: user
          snmp_communities:
          - name: community
            view: VIEW1
            permission: ro
          contexts: [CON1, CON2]
          views:
          - name: VIEW1
            mib: interfaces
            scope: included
          chassis_id: SampleChassisID
          contact: admin@example.com
          ifindex_persist: true
          location: Data Center 1
          packet_size: 1500
          queue_length: 100
          enable_logging_getop: true
          enable_logging_setop: true
          enable_informs: false #true causes DB problems
          enable_traps: true
          system_shutdown: false
          traps:
            snmp_authentication: true
            snmp_coldstart: false
            snmp_linkdown: true
            snmp_linkup: true
            snmp_warmstart: false
            flowmon: false
            entity_perf_throughput_notif: true
            call_home_message_send_fail: false
            call_home_server_fail: false
            tty: true
            ospfv3_config_state_change: false
            ospfv3_config_errors: false
            ospf_config_retransmit: true
            ospf_config_lsa: true
            ospf_nssa_trans_change: false
            ospf_shamlink_interface: false
            ospf_shamlink_neighbor: false
            ospf_errors_enable: true
            ospf_retransmit_enable: true
            lsa_enable: true
            eigrp: false
            auth_framework_sec_violation: false
            rep: false
            vtp: true
            vlancreate: true
            vlandelete: false
            port_security: true
            license: false
            smart_license: true
            cpu_threshold: true
            memory_bufferpeak: false
            stackwise: false
            udld_link_fail_rpt: false
            udld_status_change: false
            fru_ctrl: false
            flash_insertion: true
            flash_removal: false
            flash_lowspace: true
            energywise: false
            entity: false
            pw_vc: false
            envmon: false
            cef_resource_failure: false
            cef_peer_state_change: true
            cef_peer_fib_state_change: false
            cef_inconsistency: true
            isis: false
            ipsla: true
            entity_diag_boot_up_fail: false
            entity_diag_hm_test_recover: true
            entity_diag_hm_thresh_reached: false
            entity_diag_scheduled_test_fail: true
            bfd: false
            ike_policy_add: false
            ike_policy_delete: false
            ike_tunnel_start: false
            ike_tunnel_stop: false
            ipsec_cryptomap_add: false
            ipsec_cryptomap_attach: false
            ipsec_cryptomap_delete: false
            ipsec_cryptomap_detach: false
            ipsec_tunnel_start: false
            ipsec_tunnel_stop: false
            ipsec_too_many_sas: false
            config_copy: false
            config: true
            config_ctid: false
            dhcp: true
            event_manager: false
            hsrp: true
            ip_multicast: false
            msdp: true
            ospf_config_state_change: false
            ospf_config_errors: true
            pim_invalid_pim_message: false
            pim_neighbor_change: true
            pim_rp_mapping_change: false
            bridge_newroot: false
            bridge_topologychange: false
            stpx_inconsistency: false
            stpx_root_inconsistency: false
            stpx_loop_inconsistency: false
            syslog: false
            bgp_cbgp2: true
            nhrp_nhs: false
            nhrp_nhc: false
            nhrp_nhp: false
            nhrp_quota_exceeded: false
            mpls_traffic_eng: false
            mpls_vpn: false
            mpls_rfc_ldp: false
            mpls_ldp: false
            fast_reroute_protected: false
            local_auth: false
            vlan_membership: false
            errdisable: false
            rf: false
            transceiver_all: true
            bulkstat_collection: false
            bulkstat_transfer: true
            mac_notification_change: false
            mac_notification_move: false
            mac_notification_threshold: false
            vrfmib_vrf_up: true
            vrfmib_vrf_down: false
            vrfmib_vnet_trunk_up: true
            vrfmib_vnet_trunk_down: false