|
41 | 41 | metadata: |
42 | 42 | ipsec: |
43 | 43 | - local: 10.0.10.2 |
44 | | - remote 10.0.40.2 |
| 44 | + remote: 10.0.40.2 |
45 | 45 | peer: rtr2 |
46 | 46 | tunnels: |
47 | 47 | - local: 192.168.10.0/24 |
|
85 | 85 | dnsServers: |
86 | 86 | - 192.168.0.254 |
87 | 87 | staticAssignments: |
88 | | - 00:00:00:00:00:BB: 192.168.0.50 |
| 88 | + "00:00:00:00:00:BB": 192.168.0.50 |
89 | 89 | dns: |
90 | | - 1.2.3.4: foo.com |
| 90 | + "1.2.3.4": foo.com |
| 91 | + snmp: |
| 92 | + listenAddress: 10.0.0.254 |
| 93 | + systemName: edge-router-01 |
| 94 | + location: "Lab A, Rack 2, U 24" |
| 95 | + |
| 96 | + communities: |
| 97 | + - name: readonly-community |
| 98 | + authorization: ro |
| 99 | + trapTargets: |
| 100 | + - 10.0.50.5 |
| 101 | + - name: readwrite-community |
| 102 | + authorization: rw |
| 103 | + clients: |
| 104 | + - 10.0.1.11 |
| 105 | + trapTargets: |
| 106 | + - 10.0.50.5 |
91 | 107 | snat: |
92 | 108 | - interface: eth0 |
93 | 109 | srcAddr: 192.168.0.0/24 |
@@ -199,6 +215,26 @@ spec: |
199 | 215 |
|
200 | 216 | * `dns`: if present, map of IP-to-domain DNS entries to create on the router. |
201 | 217 |
|
| 218 | +* `snmp`: if present, SNMP is configured on the router. |
| 219 | + |
| 220 | + * `listenAddress`: IP address on a local interface to bind SNMP to. Defaults to listening on all interfaces. |
| 221 | + |
| 222 | + * `systemName`: a string describing the system. |
| 223 | + |
| 224 | + * `location`: a string for the system's physical location. |
| 225 | + |
| 226 | + * `contact`: a string for the system's contact information. |
| 227 | + |
| 228 | + * `communities`: a list of SNMP communities to configure. |
| 229 | + |
| 230 | + * `name`: the community string/name. This is required. |
| 231 | + |
| 232 | + * `authorization`: the authorization level for the community. Can be `ro` (read-only) or `rw` (read-write). Defaults to `ro` if not specified. |
| 233 | + |
| 234 | + * `clients`: a list of client IP addresses that are allowed to use this community. |
| 235 | + |
| 236 | + * `trapTargets`: a list of IP addresses to send SNMP traps to. |
| 237 | + |
202 | 238 | * `emulators`: if present, a list of network emulator traffic policies to apply |
203 | 239 | to one or more interfaces on egress. For each emulator in the list, only the |
204 | 240 | `name` key is required, though the traffic policy will not get applied if |
@@ -235,7 +271,7 @@ spec: |
235 | 271 | rules are actually applied to packets "egressing out of" interface `eth0`. |
236 | 272 |
|
237 | 273 | !!! note |
238 | | - Currently, the `ipsec`, `emulators`, and `snat`/`dnat` metadata sections only |
| 274 | + Currently, the `ipsec`, `emulators`, `snmp`, and `snat`/`dnat` metadata sections only |
239 | 275 | apply to Vyatta/VyOS routers. |
240 | 276 |
|
241 | 277 | !!! note |
|
0 commit comments