Cisco系製品の管理系設定
Cisco IOS-XE / Cisco ASA / Cisco NX-OS での管理系設定をメモしておきます。
検証環境¶
| 対象 | バージョン |
|---|---|
| IOL-XE | 17.16.1a |
| ASAv | 9.23(1) |
| NX-OSv9000 | 10.5(3) |
管理系の設定まとめ¶
IOL-XE
logging host 10.0.0.1
logging trap informational
!
snmp-server community public RO
snmp-server enable traps
snmp-server host 10.0.0.1 version 2c public
!
ntp source Ethernet0/0
ntp server 162.159.200.1
ntp server 162.159.200.123 prefer
ASAv
logging enable
logging trap informational
logging host management 10.0.0.1
!
snmp-server host management 10.0.0.1 community public version 2c
snmp-server enable traps syslog
!
ntp server 162.159.200.1 source management
ntp server 162.159.200.123 source management prefer
NX-OSv9000
snmp-server enable traps
snmp-server host 10.0.0.1 traps version 2c public
snmp-server host 10.0.0.1 source-interface mgmt0
snmp-server community public group network-operator
!
ntp server 162.159.200.1 use-vrf management
ntp server 162.159.200.123 prefer use-vrf management
!
logging server 10.0.0.1 use-vrf management facility local0
Syslogの設定¶
IOL-XE
logging host 10.0.0.1
logging trap informational
ASAv
logging enable
logging trap informational
logging host management 10.0.0.1
NX-OSv9000
logging server 10.0.0.1 use-vrf management facility local0
SNMP Pollingの設定¶
IOL-XE
snmp-server community public RO
ASAv
snmp-server host management 10.0.0.1 community public version 2c
NX-OSv9000
snmp-server community public group network-operator
SNMP Trapの設定¶
IOL-XE
snmp-server enable traps
snmp-server host 10.0.0.1 version 2c public
ASAv
snmp-server enable traps syslog
NX-OSv9000
snmp-server enable traps
snmp-server host 10.0.0.1 traps version 2c public
snmp-server host 10.0.0.1 source-interface mgmt0
NTPの設定¶
IOL-XE
ntp source Ethernet0/0
ntp server 162.159.200.1
ntp server 162.159.200.123 prefer
ASAv
ntp server 162.159.200.1 source management
ntp server 162.159.200.123 source management prefer
NX-OSv9000
ntp server 162.159.200.1 use-vrf management
ntp server 162.159.200.123 prefer use-vrf management