Hi all,
I have an IPSEC VPN setup between a 7800NX a 7402NX.
I would like to do some basic SNMP polling of the 7800NX, so enabled SNMP and can poll it fine from the local subnet of the 7800NX.
However, I would like to poll it from the other end of the tunnel, but port 161 is blocked. I have another 7800NX with another IPSEC tunnel going back to the 7800NX and SNMP polling works fine, but the 7402NX uses a new OS, and the firewall rules are setup differently.
I haven't setup any virtual servers or firewall rules on the 7402NX (I connect to it via the IPSEC tunnel and have a backup PPTP VPN setup in case of any issues.)
So essentially, I am not sure how to open up the SNMP port to allow access from the other end of the IPSEC tunnel.
If I run nmap from the remote subnet, I can see the other commonly used ports open, and I can use telnet, and browse the admin page via http fine.
22/tcp open ssh
23/tcp open telnet
80/tcp open http
139/tcp open netbios-ssn
445/tcp open microsoft-ds
So I assume I need to add a firewall rule for SNMP to allow access from the remote subnet, but am not sure how to add add it. The 7800NX is interstate, so I am a bit hesitant to play around with the rules in case I lock myself out...
Has anyone run into a similar situation and resolved it ?