• Home
  • Line#
  • Scopes#
  • Navigate#
  • Raw
  • Download
1# ----------------------------------------------------------------------
2#           Template for SNMP Access Control List File
3#
4# o Copy this template to snmp.acl
5# o Set access control for SNMP support
6# o Change the permission of snmp.acl to be read-only
7#   by the owner.
8#
9# See below for the location of snmp.acl file.
10# ----------------------------------------------------------------------
11
12############################################################
13#            SNMP Access Control List File
14############################################################
15#
16# Default location of this file is $JRE/lib/management/snmp.acl.
17# You can specify an alternate location by specifying a property in
18# the management config file $JRE/lib/management/management.properties
19# or by specifying a system property (See that file for details).
20#
21
22
23##############################################################
24#        File permissions of the snmp.acl file
25##############################################################
26#
27#      Since there are cleartext community strings stored in this file,
28#      this ACL file must be readable by ONLY the owner,
29#      otherwise the program will exit with an error.
30#
31##############################################################
32#		Format of the acl group
33##############################################################
34#
35# communities: a list of SNMP community strings to which the
36#              access control applies separated by commas.
37#
38# access: either "read-only" or "read-write".
39#
40# managers: a list of hosts to be granted the access rights.
41#    Each can be expressed as any one of the following:
42#    - hostname: hubble
43#    - ip v4 and v6 addresses: 123.456.789.12 , fe80::a00:20ff:fe9b:ea82
44#    - ip v4 and v6 netmask prefix notation: 123.456.789.0/24,
45#         fe80::a00:20ff:fe9b:ea82/64
46#      see RFC 2373 (http://www.ietf.org/rfc/rfc2373.txt)
47#
48# An example of two community groups for multiple hosts:
49#    acl = {
50#     {
51#       communities = public, private
52#       access = read-only
53#       managers = hubble, snowbell, nanak
54#     }
55#     {
56#       communities = jerry
57#       access = read-write
58#       managers = hubble, telescope
59#     }
60#    }
61#
62##############################################################
63#                   Format of the trap group
64##############################################################
65#
66# trap-community: a single SNMP community string that will be included
67#                 in  the traps sent to the hosts.
68#
69# hosts: a list of hosts to which the SNMP agent will send traps.
70#
71# An example of two trap community definitions for multiple hosts:
72#    trap = {
73#      {
74#        trap-community = public
75#        hosts = hubble, snowbell
76#      }
77#      {
78#        trap-community = private
79#        hosts = telescope
80#      }
81#    }
82#
83############################################################
84#
85#  Update the community strings (public and private) below
86#  before copying this template file
87#
88# Common SNMP ACL Example
89# ------------------------
90#
91# o Only localhost can connect, and access rights
92#   are limited to read-only
93# o Traps are sent to localhost only
94#
95#
96# acl = {
97#  {
98#    communities = public, private
99#    access = read-only
100#    managers = localhost
101#  }
102# }
103#
104#
105# trap = {
106#   {
107#     trap-community = public
108#     hosts = localhost
109#   }
110# }
111