Service Configuration - How to configure NTP and SNMP services

07/22/2021 0 1164

DESCRIPTION:

A service configuration includes configuring both the Network Time Protocol (NTP) and the Simple Network
Management Protocol (SNMP) service settings.

NTP(Network Time Protocol) is a protocol used to synchronize computer clock times within a network of computers. NTP uses Coordinated Universal Time (UTC) to synchronize computer clock times to a millisecond, and sometimes, to a fraction of a millisecond.

SNMP (Simple Network Management Protocol) is a network protocol used over User Datagram Protocol (UDP)
that allows you to monitor the status of the SonicWALL security appliance and receive notification of
critical events as they occur on the network. SonicWALL security appliance supports SNMP v1/v2c/v3
and all relevant Management Information Base II (MIBII) groups except egp and at.

This article describes how to configure NTP and SNMP services on the SonicWALL firewall.

RESOLUTION:

Resolution for SonicOS 7.X :
This release includes significant user interface changes and many new features that are different from the SonicOS 6.5 and earlier firmware. The below resolution is for customers using SonicOS 7.X firmware.

To add an NTP server to the SonicWALL firewall follow the steps below :

1. Navigate to DEVICE | Settings > Time.
2. Under ‘Time Zone’, select the appropriate time zone.
   
   
   
   NOTE: Some installations may require GMT instead of local time.
   
   
3. Enable ‘Display UTC in logs (instead of local time).
4. Enable ‘Only use custom NTP servers’.
   
5. Click Accept.
   
   
   
6. Click on NTP Server.
7. Click on Add. The Add NTP Server window is displayed.
8. Type the IP address of an NTP server in the NTP Server field.
9. Enter a Trust Key No.
   
   
   
   NOTE: The Trust Key can only be five numeric characters in length.
   
   
10. Click Add.

To add an SNMP server to the SonicWALL firewall follow the steps below :

1. Navigate to DEVICE | Settings > SNMP.
   
   
   
   
2. Select Enable SNMP, and then click Accept. The Configure button becomes active and the display expands.
   
   
   
   
3. To configure the SNMP interface, click Configure. The Configure SNMP dialog displays with two tabs: General and Advanced.
   
   
   
   
4. Type the host name of the SonicWALL appliance in the System Name field.
5. Type the network administrator’s name in the System Contact field.
6. Type an e-mail address, telephone number, or pager number in the System Location field.
7. When SNMPv3 configuration is used, an Asset Number field displays on the menu. Enter the Asset Number of the appliance.
8. Type a name for a group or community of administrators who can view SNMP data in the Get Community Name field (Default is public).
9. Type a name for a group or community of administrators who can view SNMP traps in the Trap Community Name field.
10. Type the IP address or host name of the SNMP management system receiving SNMP traps in the Host 1 through Host 4 fields.
    
    NOTE:  You must configure at least one IP address or host name, but up to four addresses or host names can be used.
    
    
11. Click the Advanced tab.
12. Enable “Mandatory Require SNMPv3”. The default Engine-ID is generally acceptable.
13. Click OK.
    
    
    
    Adding SNMPv3 User and Group Access:
    
    
14. Click on User/Group Section, select “Add Group”.
15. Enter the SNMPv3 Group name.
16. Select OK.
    
    
    
    
17. Under the User/Group Section, select "Add User”.
18. Enter the Username.
19. From the Security Level drop-down box, select “Authentication and Privacy”.
20. From the Authentication Method drop-down box, select “SHA1”.
21. Enter the Authentication Key.
22. From the Encryption Method drop-box select “AES”.
23. Enter the Privacy Key.
24. From the Group drop-down box select the SNMPv3 Group name created in step 14.
    
    
    
    
25. Under the Access Section, select “Add”.
26. Enter the name of the access policy under “Access Name”.
27. From the Read View drop-down box, select root.
28. From the Master SNMPv3 Group, select the Group name created in step 14.
29. From the Access Security Level drop-down box, select “Authentication and Privacy”.
30. Click OK.
    
    
    
    

Resolution for SonicOS 6.5 :
This release includes significant user interface changes and many new features that are different from the SonicOS 6.2 and earlier firmware. The below resolution is for customers using SonicOS 6.5 firmware.

To add an NTP server to the SonicWALL firewall follow the steps below :

1. Navigate to MANAGE | Appliance >System Time.
2. Under ‘Time Zone’, select the appropriate time zone.
   
   
   
   NOTE: Some installations may require GMT instead of local time.
   
   
3. Enable "Display UTC in logs (instead of local time)".
4. Enable "Only use custom NTP servers".
5. Click "Accept".
   
   
   
   
6. Under NTP settings, Click Add. The Add NTP Server window is displayed.
   
   
   
   
7. Type the IP address of an NTP server in the NTP Server field.
8. Enter a Trust Key No.
   
   NOTE: The Trust Key can only be five numeric characters in length.
   
   
9. Click OK.
10. Click Accept on the System Time page to update the settings.
    
    

To add an SNMP server to the SonicWALL firewall follow the steps below :

1. Navigate to MANAGE | Appliance >SNMP.
   
   
   
   
2. Select Enable SNMP, and then click Accept. The Configure button becomes active and the display expands.
   
   
   
   
3. To configure the SNMP interface, click Configure. The Configure SNMP dialog displays with two tabs: General and Advanced.
   
   
   
   
4. Type the host name of the SonicWALL appliance in the System Name field.
5. Type the network administrator’s name in the System Contact field.
6. Type an e-mail address, telephone number, or pager number in the System Location field.
7. When SNMPv3 configuration is used, an Asset Number field displays on the menu. Enter the Asset Number of the appliance.
8. Type a name for a group or community of administrators who can view SNMP data in the Get Community Name field (Default is Public).
9. Type a name for a group or community of administrators who can view SNMP traps in the Trap Community Name field.
10. Type the IP address or host name of the SNMP management system receiving SNMP traps in the Host 1 through Host 4 fields.
    
    NOTE: You must configure at least one IP address or host name, but up to four addresses or host names can be used.
    
    
11. Click the Advanced tab.
12. Enable “Mandatory Require SNMPv3”. The default Engine-ID is generally acceptable.
13. Click OK.
    
    
    
    
    Adding SNMPv3 User and Group Access:
    
    
14. Under the User/Group Section, select “Add Group”.
15. Enter the SNMPv3 Group name.
16. Select OK.
    
    
    
    
17. Under the User/Group Section, select “Add User”.
18. Enter the Username.
19. From the Security Level drop-down box, select “Authentication and Privacy".
20. From the Authentication Method drop-down box, select “SHA1".
21. Enter the Authentication Key.
22. From the Encryption Method drop-box select “AES”.
23. Enter the Privacy Key.
24. From the Group drop-down box select the SNMPv3 Group name created in step 14.
    
    
    
    
25. Under the Access Section, select “Add”.
26. Enter the name of the access policy under “Access Name”.
27. From the Read View drop-down box, select root.
28. From the Master SNMPv3 Group, select the Group name created in step 14.
29. From the Access Security Level drop-down box, select “Authentication and Privacy”.
30. Click OK.