在华为usg防火墙上配置了snmp v3,通过python的netsnmp模块获取接口上的公网上。
- usg上的snmp配置,将yorur_usernam、your_auth_pass、yoru_priva_pass替换你自己的设置
snmp-agent
snmp-agent sys-info version v3
snmp-agent group v3 v3group privacy read-view v3view write-view v3view notify-view v3view
snmp-agent mib-view included v3view iso
snmp-agent usm-user v3 your_username
snmp-agent usm-user v3 your_username group v3group
snmp-agent usm-user v3 your_username authentication-mode sha cipher your_auth_pass
snmp-agent usm-user v3 your_username privacy-mode aes128 cipher yoru_priva_pass
snmp-agent trap source Vlanif11
snmp-agent trap enable
int vlan 11
service-manage snmp permit
- 在linux下通过下面的命令可以获取usg接口上的所有IP
snmpwalk -O n -v 3 -u your_username -a SHA -A ‘your_auth_pass‘ -x AES -X ‘yoru_priva_pass‘ -l authPriv your_vlan11_ip IP-MIB::ipAdEntAddr
- 通过python脚本获取接口上的公网IP
#!/usr/.bin/pythyon
import netsnmp
from IPy import IP
ips = netsnmp.snmpwalk(".1.3.6.1.2.1.4.20.1.1",
Version=3,
SecName="your_username",
DestHost="yoru_vlan11_ip",
AuthProto="SHA",
AuthPass="your_auth_pass",
PrivProto="AES",
PrivPass="yoru_priva_pass",
SecLevel="authPriv"
)
for ip in ips:
if IP(ip).iptype() is ‘PUBLIC‘:
print ip
原文地址:https://blog.51cto.com/penguintux/2414830
时间: 2024-10-07 20:17:58