Description | This article describes how to enable SNMP index extension in RFC tables. |
Scope | Starting from FortiOS 7.2.8 and FortiOS 7.4.4. |
Solution |
FortiOS allows clients to enable or disable the index extension, which appends VDOM or interface index in RFC tables. This new feature is introduced in 7.4.4 GA and 7.2.8 GA release.
CLI syntax:
config system snmp sysinfo set append-index {enable | disable} end
For single-vdom configuration, the behavior is the same as before upgrading to 7.2.8 and 7.4.4 For multi-vdom configuration, the duplicated IP addresses in different VDOMs will only be present once.
If FortiGate is upgraded from any release earlier than 7.2 (also 6.x or 7.0.x), the default value 'disabled' is used. If FortiGate is upgraded from 7.2.x to 7.2.8 or 7.4.4, this option is 'enabled'.
Examples:
Below is an example of a 'set append-index enable' FortiGate with 2 VDOMs: root and vdom1. On both VDOMs, there are 2 interfaces with the same IP address:
edit "port15" next
snmpwalk -v 2c -c fortinet 10.5.20.135 iso.3.6.1.2.1.4.20.1.1
On the end of the OID, the index for the VDOM will be added. This value can be adjusted as well:
config system vdom-property
SNMP indexes can be changed. For example:
config system vdom-property end
In this case, the output from snmpwalk would change to:
snmpwalk -v 2c -c fortinet 10.5.20.135 iso.3.6.1.2.1.4.20.1.1
If the option 'set append-index' is set to 'disable' and only one IP is present from the duplicated IP address, the SNMP index will not be present anymore:
snmpwalk -v 2c -c fortinet 10.5.20.135 iso.3.6.1.2.1.4.20.1 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.