TACLANE SNMP Question

Started by config t, November 12, 2024, 03:45:19 PM

Previous topic - Next topic

config t

Currently exploring whether I can pull information from a TACLANE with SNMP. Closest bit of info I can find is a 6-year old solarwinds forum post.

Knowing all TACLANE are a little different.. do they have the capability to host SNMP creds?

*edit*

For context, I am looking to pull this info into NAC using supplied SNMP creds on the device.
:matrix:

Please don't mistake my experience for intelligence.

Otanx

Yes you can. On the KG configure your SNMP server as a GEM server. It only does SNMPv3. I don't remember for sure but I think it was using AES128/SHA for protocols. Also the MIBS can be found on one of the CDs either the KG firmware one or the GEM install one.

-Otanx

deanwebb

Quote from: Otanx on November 12, 2024, 07:26:23 PMYes you can. On the KG configure your SNMP server as a GEM server. It only does SNMPv3. I don't remember for sure but I think it was using AES128/SHA for protocols. Also the MIBS can be found on one of the CDs either the KG firmware one or the GEM install one.

-Otanx


I feel a swell of pride as I understand every. single. term. used in this response. :smug:
Take a baseball bat and trash all the routers, shout out "IT'S A NETWORK PROBLEM NOW, SUCKERS!" and then peel out of the parking lot in your Ferrari.
"The world could perish if people only worked on things that were easy to handle." -- Vladimir Savchenko
Вопросы есть? Вопросов нет! | BCEB: Belkin Certified Expert Baffler | "Plan B is Plan A with an element of panic." -- John Clarke
Accounting is architecture, remember that!
Air gaps are high-latency Internet connections.

config t

Quote from: Otanx on November 12, 2024, 07:26:23 PMYes you can. On the KG configure your SNMP server as a GEM server. It only does SNMPv3. I don't remember for sure but I think it was using AES128/SHA for protocols. Also the MIBS can be found on one of the CDs either the KG firmware one or the GEM install one.

-Otanx


Can confirm in documentation it is AES128/SHA. No luck yet, but I've only been able to try polling the CT interface so far. Tomorrow I will ask my buddy to give it a shot from NAC on the PT side and see what happens. Unfortunately it's not my gear, so I have to be mindful about my demands  :XD:

Can you expand on the MIBS? All I've tried so far is a generic sysinfo poll but I do have an option to define OIDs under a different type of policy condition.

Quote from: deanwebb on November 13, 2024, 11:26:09 AMI feel a swell of pride as I understand every. single. term. used in this response. :smug:

It's true we have basically learned a second language  :smug:
:matrix:

Please don't mistake my experience for intelligence.

Otanx

Should work from the PT side. Some of the information you can pull is sensitive like key expiration.

For the mibs they give you info on all the custom info you can pull and the formats it gets returned in. The key expiration stuff I remember being weird. Something like it was returned in mmyyyy but in hex.

Next week I will be back home and can get better info rather than going on memory.

-Otanx

config t

My POC is willing to test on the PT network so I am hopeful we will see results this week or the next. Today was a crazy day of putting out fires so no progress.
:matrix:

Please don't mistake my experience for intelligence.