Skip to content

Configure SNMP community and traps

Create an SNMPv1 and SNMPv2c community by adding an SNMP manager and allow the traffic.

Introduction

In this example, we show how to do the following:

  • Configure Sophos Firewall as an SNMP agent if you haven't already done it.
  • Configure SNMPv1 and SNMPv2c managers.
  • Allow SNMP traffic for the zone to which SNMP managers belong.
  • Allow Sophos Firewall to send SNMP alerts.

Configure Sophos Firewall as an SNMP agent

Allow Sophos Firewall to act as an SNMP agent. It uses the standard ports used by SNMP agents and users or managers.

  1. Go to Administration > SNMP.
  2. Select Enable SNMP agent.
  3. Enter the Location and Contact person.
  4. Click Apply.

    Here's an example:

    Configure SNMP agent.

Configure an SNMPv1 and v2c community

Specify the IP address of the SNMP manager. Sophos Firewall sends SNMPv1 and SNMPv2c traps to managers.

  1. Go to Administration > SNMP. Scroll down to SNMPv1 and v2c community and traps and select Add.
  2. Enter a name.

    It acts as the SNMP community string.

  3. Specify the IP address, for example, 50.50.50.10.

  4. Select Query and Trap support.
  5. Click Apply.

    Here's an example:

    Configure SNMP manager.

Allow SNMP traffic and alerts

Allow SNMP traffic for the zone to which SNMP users and managers belong. Additionally, allow Sophos Firewall to send SNMP alerts.

  1. Go to Administration > Device access and select the zones from which SNMP users and managers can send and receive SNMP traffic.

    Here's an example:

    Allow SNMP traffic.

  2. Go to System services > Notification list.

  3. Turn on SNMP traps.
  4. Turn on SNMP for the alerts you want to send.

    Here's an example:

    Select SNMP alerts.

More resources