The SNMP Proxy Forwarder tool works as an application-level proxy with a built-in SNMP message router. SNMP forwarder design features split client/server operation that promotes having one part of the system in DMZ while other part is facing the Internet. Message routing can be programmed via a declarative mini-language.
Typical use case for an SNMP proxy is to work as an application-level firewall or a protocol translator that enables SNMPv3 access to a SNMPv1/SNMPv2c entity or vice versa.
- SNMPv1/v2c/v3 operations with built-in protocol and transport translation capabilities
- SNMPv3 USM supports MD5/SHA/SHA224/SHA256/SHA384/SHA512 auth and DES/3DES/AES128/AES192/AES256 privacy crypto algorithms
- Forwards SNMP commands and notifications
- Maintains multiple independent SNMP engines and network transports
- Split client and server parts interconnected through encrypted TCP links
- Flexible SNMP PDU routing
- Extension modules supporting SNMP PDU filtering and on-the-fly modification
- Supports transparent proxy operation (Linux only)
- Works on Linux, Windows and OS X
SNMP Proxy Forwarder software is freely available for download from PyPI.
Just run:
$ pip install snmpfwd
Alternatively, you can get it from GitHub.
First you need to configure the tool. It is largely driven by configuration files written in a declarative mini-language. To help you started, we maintain a collection of configuration files designed to serve specific use-cases.
If something does not work as expected or we are missing an interesting feature, open an issue at GitHub or post your question on Stack Overflow.
Finally, your PRs are warmly welcome! ;-)
Copyright (c) 2014-2019, Ilya Etingof. All rights reserved.