# ----------------------------------------------------------------------
|
# Template for SNMP Access Control List File
|
#
|
# o Copy this template to snmp.acl
|
# o Set access control for SNMP support
|
# o Change the permission of snmp.acl to be read-only
|
# by the owner.
|
#
|
# See below for the location of snmp.acl file.
|
# ----------------------------------------------------------------------
|
|
############################################################
|
# SNMP Access Control List File
|
############################################################
|
#
|
# Default location of this file is $JRE/lib/management/snmp.acl.
|
# You can specify an alternate location by specifying a property in
|
# the management config file $JRE/lib/management/management.properties
|
# or by specifying a system property (See that file for details).
|
#
|
|
|
##############################################################
|
# File permissions of the snmp.acl file
|
##############################################################
|
#
|
# Since there are cleartext community strings stored in this file,
|
# this ACL file must be readable by ONLY the owner,
|
# otherwise the program will exit with an error.
|
#
|
##############################################################
|
# Format of the acl group
|
##############################################################
|
#
|
# communities: a list of SNMP community strings to which the
|
# access control applies separated by commas.
|
#
|
# access: either "read-only" or "read-write".
|
#
|
# managers: a list of hosts to be granted the access rights.
|
# Each can be expressed as any one of the following:
|
# - hostname: hubble
|
# - ip v4 and v6 addresses: 123.456.789.12 , fe80::a00:20ff:fe9b:ea82
|
# - ip v4 and v6 netmask prefix notation: 123.456.789.0/24,
|
# fe80::a00:20ff:fe9b:ea82/64
|
# see RFC 2373 (http://www.ietf.org/rfc/rfc2373.txt)
|
#
|
# An example of two community groups for multiple hosts:
|
# acl = {
|
# {
|
# communities = public, private
|
# access = read-only
|
# managers = hubble, snowbell, nanak
|
# }
|
# {
|
# communities = jerry
|
# access = read-write
|
# managers = hubble, telescope
|
# }
|
# }
|
#
|
##############################################################
|
# Format of the trap group
|
##############################################################
|
#
|
# trap-community: a single SNMP community string that will be included
|
# in the traps sent to the hosts.
|
#
|
# hosts: a list of hosts to which the SNMP agent will send traps.
|
#
|
# An example of two trap community definitions for multiple hosts:
|
# trap = {
|
# {
|
# trap-community = public
|
# hosts = hubble, snowbell
|
# }
|
# {
|
# trap-community = private
|
# hosts = telescope
|
# }
|
# }
|
#
|
############################################################
|
#
|
# Update the community strings (public and private) below
|
# before copying this template file
|
#
|
# Common SNMP ACL Example
|
# ------------------------
|
#
|
# o Only localhost can connect, and access rights
|
# are limited to read-only
|
# o Traps are sent to localhost only
|
#
|
#
|
# acl = {
|
# {
|
# communities = public, private
|
# access = read-only
|
# managers = localhost
|
# }
|
# }
|
#
|
#
|
# trap = {
|
# {
|
# trap-community = public
|
# hosts = localhost
|
# }
|
# }
|
