• State Resolved
  • Locked Locked
  • Replies 4 replies
  • Subscribers 31 subscribers
  • Views 258 views
  • Users 0 members are here
Support feedback
Options
Options
Related

This thread has been locked.

If you have a related question, please click the "Ask a related question" button in the top right corner. The newly created question will be automatically linked to this question.

AM2432: Problems with SNMP in Profinet

Andrea Politano
Prodigy 160 points
Part Number: AM2432

Tool/software:

Hi,


I have two problems with SNMP in Profinet.
I am using the SDK 09.02.15 with AM2432.

The first one is that I noticed that in the file pn_app_iod_cfg.h it is possible to modify macros that change the behavior of SNMP. I have tried to modify some values (such as PN_API_IOD_SNMP_PORT1_NAME and PN_API_IOD_SNMP_INTERFACE_NAME) but when querying the device with an external tool it seems that the values are fixed constants and those macros are not actually used. Is this normal behavior?
The second is that our team has performed a cybersecurity scan with the tool Nessus, and the two problems in the screen were found. Is it possible to take action on my side to be able to fix them? Or are these problems only fixable by correcting them in the stack?

Thanks.


Kind regards,
Andrea

  • +1
    TI__Intellectual 1070 points

    Hi Andrea,

    Thanks for your inquiry.
    For the time being, our stack library is pre-compiled with the default macros defined in pn_app_iod_cfg.h, which makes it not possible for the end user to change some values. 
    We are currently planning to change that and make it dynamically reconfigurable but this needs some time. If you're interested in a custom library that's pre-compiled with your own data, please send me an email so we can include the responsible departments.

    Regarding your second question, I will look into it and give you feedback soon.

    Thanks.
    Kind regards,
    Kamil

  • 0 in reply to Kamil Alkhouri
    TI__Intellectual 1070 points

    Hi Andrea,

    we did some investigation here. Regarding SNMP messages handling it has to be done in the stack. We have implemented some filters to protect the device from different types of network bursts but, of course, we can't cover everything. We decided to plan a feature which allows the end users to dynamically configure some filters for their special use case. However, for now these filters are static.

    You may ask for a customized library that's configured to your specific needs (including PN_API_IOD_SNMP_PORT1_NAME, etc.).

    Kind regards,
    Kamil 

  • 0 in reply to Kamil Alkhouri
    Prodigy 160 points

    Hi Kamil,

    thank you for your reply.
    Do you already know in what version of SDK the filters will be added?

    Thank you,

    Best regards,

    Andrea

  • +1 in reply to Andrea Politano
    TI__Intellectual 1070 points

    Hi Andrea,

    some filters will be part of the next release we discussed in our last meeting with you.

    Thank you.
    Kind regards,
    Kamil