beautypg.com

Port security traps, Dhcp snooping traps – Brocade 6910 Ethernet Access Switch MIB Reference User Manual

Page 95

background image

Brocade 6910 Ethernet Access Switch MIB Reference

83

53-1002652-02

14

IronWare traps

Port security traps

The Port Security feature enables a device to learn a limited number of “secure” MAC addresses on
an interface. The interface will forward only those packets with source MAC addresses that match
these secure addresses. If the interface receives MAC addresses that are included in its secure
MAC list, the device generates the following traps:

NOTE

These traps apply to ports that have the Port Security feature enabled.

DHCP snooping traps

Dynamic Host Configuration Protocol (DHCP) snooping enables the device to filter untrusted DHCP
packets in a subnet. DHCP snooping can prevent man-in-the-middle (MiM) attacks, such as a
malicious user who is posing as a DHCP server and is sending false DHCP server reply packets with
the intention of misdirecting other users. It can also stop unauthorized DHCP servers and prevent
errors due to misconfiguration of DHCP servers. The following traps are generated if a suspect
packet is detected.

snTrapClientLoginReject
brcdIp.0.110

snAgGblTrapMessage

Informational The SNMP trap that is generated

when a login attempt by a telnet or
SSH client fails.
Format:
Security: {snmp | ssh|telnet| web}
access [by user ] from src [IP
| IPv6 ] rejected,
attempts

snTrapSysMemoryLowThreshold
brcdIp.0.180

snAgGblTrapMessage

Informational The SNMP trap that is generated

when memory utilization reaches the
memory rising threshold (set by the
CLI memory command).

snTrapTemperatureOK
brcdIp.0.1001

snAgGblTrapMessage

Informational The SNMP trap that is generated

when the actual temperature reading
falls from the rising threshold and
reaches the falling threshold.
Sample Trap Message:
System: Stack unit

temperature

C degrees is

normal

Trap Name and Number

Varbind

Severity

Description

snTrapPortSecurityViolation
brcdIp.0.77

snAgGblTrapMessage

Minor

The SNMP trap that is generated
when insecure MAC addressesare
received from a port with MAC
security feature enabled.
Sample Trap Message:
Brocade Trap: Port

Security Violation

Trap Name and Number

Varbind

Severity

Description

See also other documents in the category Brocade Computer Accessories: