doc: Update snmp.rst

Updated documentation for routers with a large route table, which breaks
SNMP/AgentX and in some conditions even crashes FRR. The documentation
proposal amends the SNMP configuration to exclude certain OID's that
are not needed in normal cases.

Format-fixed-by: Donald Sharp <sharpd@cumulusnetworks.com>
Signed-off-by: Bart Vrancken <bart@abuse.io>
This commit is contained in:
Bart Vrancken 2020-05-26 09:35:46 +02:00 committed by Donald Sharp
parent 276b698a43
commit 6f6d86069b

View File

@ -23,6 +23,40 @@ the latest version of `net-snmp` which was formerly known as `ucd-snmp`. It is
free and open software and available at `http://www.net-snmp.org/ <http://www.net-snmp.org/>`_
and as binary package for most Linux distributions.
.. _net-smtp-configuration:
NET-SNMP configuration
====================
Routers with a heavy amount of routes (e.g. BGP full table) might experience
problems with a hanging vtysh from time to time, 100% CPU on the snmpd or
even crashes of the frr daemon(s) due to stalls within AgentX. Once snmp
agents connects they start receiving a heavy amount of SNMP data (all the
routes) which cannot be handled quick enough. It's recommended (by several
vendors as well) to exclude these OID's unless you really need them, which
can be achieved by amending the default view from SNMP
:file:`/etc/snmp/snmpd.conf`:
::
# This is the default view
view all included .1 80
# Remove ipRouteTable from view
view all excluded .1.3.6.1.2.1.4.21
# Remove ipNetToMediaTable from view
view all excluded .1.3.6.1.2.1.4.22
# Remove ipNetToPhysicalPhysAddress from view
view all excluded .1.3.6.1.2.1.4.35
# Remove ipCidrRouteTable from view
view all excluded .1.3.6.1.2.1.4.24
# Optionally protect SNMP private/secret values
view all excluded .1.3.6.1.6.3.15
view all excluded .1.3.6.1.6.3.16
view all excluded .1.3.6.1.6.3.18
# Optionally allow SNMP public info (sysName, location, etc)
view system included .iso.org.dod.internet.mgmt.mib-2.system
.. _agentx-configuration:
AgentX configuration