我在模型中使用authPriv定义了snmp v3用户user1。
它有auth密码和私人密码。
我使用以下行在我的模型上成功snmpwalk:
snmpwalk -v3 -u user1 -l authPriv -a SHA -A 12345678 -x DES -X 123456789 localhost:7999 1.3.6.1.4.1.89898
问题是我在没有auto和priv的情况下也成功snmpwalk:
snmpwalk -v3 -u user1 -l noAuthNoPriv localhost:7999 1.3.6.1.4.1.89898
我无法理解为什么没有密码的snmpwalk会有效。
我希望能够使用authPriv和noAuthNoPriv来定义用户,当有人在没有snmpwalk用户的正确密码的情况下尝试authPriv时,他应该失败。
当我使用
时snmpwalk -v3 -u user1 -l authPriv ...
密码错误,拒绝访问。
这是我的vacmAccessTable:
<vacmAccessTable>
<!-- The group 'all-rights' has full access to everything -->
<vacmAccessEntry>
<vacmGroupName>all-rights</vacmGroupName>
<vacmAccessContextPrefix></vacmAccessContextPrefix>
<vacmAccessSecurityModel>3</vacmAccessSecurityModel>
<vacmAccessSecurityLevel>noAuthNoPriv</vacmAccessSecurityLevel>
<vacmAccessContextMatch>exact</vacmAccessContextMatch>
<vacmAccessReadViewName>internet</vacmAccessReadViewName>
<vacmAccessWriteViewName>internet</vacmAccessWriteViewName>
<vacmAccessNotifyViewName>internet</vacmAccessNotifyViewName>
</vacmAccessEntry>
<vacmAccessEntry>
<vacmGroupName>all-rights</vacmGroupName>
<vacmAccessContextPrefix></vacmAccessContextPrefix>
<vacmAccessSecurityModel>3</vacmAccessSecurityModel>
<vacmAccessSecurityLevel>authNoPriv</vacmAccessSecurityLevel>
<vacmAccessContextMatch>exact</vacmAccessContextMatch>
<vacmAccessReadViewName>internet</vacmAccessReadViewName>
<vacmAccessWriteViewName>internet</vacmAccessWriteViewName>
<vacmAccessNotifyViewName>internet</vacmAccessNotifyViewName>
</vacmAccessEntry>
<vacmAccessEntry>
<vacmGroupName>all-rights</vacmGroupName>
<vacmAccessContextPrefix></vacmAccessContextPrefix>
<vacmAccessSecurityModel>3</vacmAccessSecurityModel>
<vacmAccessSecurityLevel>authPriv</vacmAccessSecurityLevel>
<vacmAccessContextMatch>exact</vacmAccessContextMatch>
<vacmAccessReadViewName>internet</vacmAccessReadViewName>
<vacmAccessWriteViewName>internet</vacmAccessWriteViewName>
<vacmAccessNotifyViewName>internet</vacmAccessNotifyViewName>
</vacmAccessEntry>