How to troubleshoot SNMPv3 related issues on SDX appliance

How to troubleshoot SNMPv3 related issues on SDX appliance

book

Article ID: CTX217470

calendar_today

Updated On:

Description

Objective of this article is to show how we can troubleshoot SNMPv3 related issues on SDX appliance and which log files to check for further analysis.

Instructions

We assume that we have configured SNMPv3 on SDX appliance as mentioned in below article:

http://docs.citrix.com/en-us/sdx/11-1/manage-monitor-appliance-network-configuration/configuring-snmp-trap-destination.html

After the configuration, if users complain of issues where they are not able to run SNMP query from their SNMP manager and it fails with error as shown below. Then what log files we can check on SDX:

snmpwalk -v3 -u sdxuser-l authPriv -a MD5 -A 'sdxpassword' -x DES -X 'sdxpassword' 10.10.10.10 .1.3.6.1.2.1.1.1.0
snmpwalk: Authentication failure (incorrect password, community or key)


Please check below steps for troubleshooting and see if it helps to narrow down the issue:

a) First make sure SNMPv3 config is same on SDX SVM and on SNMP manager.
b) Make sure Username ad Password used on SNMP manager is same as specified on SVM.
c) We can capture tcpdump on SDX SVM by running below command (as highlighted) to confirm if it is not a network issue and further checking SNMP traffic.

Do SSH to SVM IP and login as shown below:

login as: nsroot
Using keyboard-interactive authentication.
Password:
Last login: Thu Sep 22 14:40:15 2016 from 10.101.255.83
> shell
bash-2.05b# tcpdump -vvv -s 1500 -w snmp.pcap
tcpdump: listening on 0/1, link-type EN10MB (Ethernet), capture size 1500 bytes
^C151 packets captured
207 packets received by filter
0 packets dropped by kernel

hit Ctrl+c to stop trace once issue is reproduced

Below is the location where file is saved and you can use Winscp software to login to SVM IP to download the trace file:

bash-2.05b# pwd
/mps

d)  Do SSH to SVM IP and look for snmp.log file under /var/log directory for any errors:

bash-2.05b# cd /var/log/
bash-2.05b# more snmpd.log

e) Verify if the SNMP config done on GUI is showing in snmpd.conf file under /etc directory :

bash-2.05b# cat /etc/snmpd.conf

f) Make sure snmpd process is running by running below command:

bash-2.05b# ps -ax | grep snmpd
52760  ??  I      0:00.01 /usr/sbin/snmpd -c /etc/snmpd.conf -Lf /var/log/snmpd.log -p /var/run/snmpd.pid
78735   0  S+     0:00.00 grep snmpd


Note: If still the issue is unresolved, please contact Citrix Support and open a case to further troubleshoot.


 

Issue/Introduction

In this article we will see how we can troubleshoot SNMPv3 related issues on SDX appliance and which log files to check for further analysis.
Powered by Wolken Software