SNMPAgent Class

Properties   Methods   Events   Config Settings   Errors  

The SNMPAgent class is used to implement UDP-based SNMP Agent Applications.

Syntax

ipworkssnmp.snmpagent()

Remarks

The SNMPAgent class implements a UDP-based standard SNMP Agent as specified in the SNMP RFCs. The class supports SNMP v1, v2c, and v3.

SNMP over DTLS is also supported when SSLEnabled is set to True. When acting as a client, the SSLServerAuthentication event allows you to check the server identity and other security attributes. The SSLStatus event provides information about the DTLS handshake. Additional SSL-related settings are also supported through the Config method. When acting as a server, the SSLCert properties are used to select a certificate for the server. When client authentication is required, the SSLAuthenticateClients property can be set to True and the SSLClientAuthentication event can be used to examine client credentials.

The class provides both encoding/decoding and transport capabilities, making the task of developing a custom SNMP agent as simple as setting a few key properties and handling a few events. SNMP data such as SNMP object id-s (OID-s) are exchanged as text strings, thus further simplifying the task of handling them.

The class is activated/deactivated by calling the Activate or Deactivate method. These methods enable or disable sending and receiving. The activation status can be found in the Active property.

The class operates asynchronously. Requests are received through events such as GetRequest, GetBulkRequest, GetNextRequest, etc. and the corresponding responses are automatically sent when the events return. Traps are sent through the SendTrap method.

SNMPv3 USM security passwords are requested through the GetUserPassword event, and event parameters such as User and SecurityLevel provide information about the security attributes of received requests, and enable granular decision capability about what to provide and what not to provide. The SendSecureTrap method is used to send authenticated (secure) SNMPv3 traps.

The AddUser, RemoveUser, ShowCache, and ClearCache methods are used to manage an internal authentication cache. This internal cache can be used as an alternative to the GetUserPassword event, automatically checking the cache against the security parameters provided in the request signature.

SNMP OIDs, types, and values are provided in the Objects collection of SNMP objects for both sent and received packets.

Other packet information is provided through corresponding event parameters, such as Community, or RequestId.

Property List

---

The following is the full list of the properties of the class with short descriptions. Click on the links for further details.

Method List

---

The following is the full list of the methods of the class with short descriptions. Click on the links for further details.

Event List

---

The following is the full list of the events fired by the class with short descriptions. Click on the links for further details.

Config Settings

---

The following is a list of config settings for the class with short descriptions. Click on the links for further details.

SNMPAgent.AcceptData Property

Enables or disables data reception.

Syntax

isAcceptData(): boolean;
setAcceptData(acceptData: boolean): void;

Default Value

TRUE

Remarks

Setting the property to False temporarily disables data reception. Setting the property to True re-enables data reception.

This property is not available at design time.

SNMPAgent.Active Property

Indicates whether the class is active.

Syntax

isActive(): boolean;
setActive(active: boolean): void;

Default Value

FALSE

Remarks

This property indicates whether the class is currently active and can send or receive data.

The class will be automatically activated if it is not already and you attempt to perform an operation which requires the class to be active.

Use the Activate and Deactivate methods to control whether the class is active.

This property is not available at design time.

SNMPAgent.LocalEngineId Property

The Engine Id of the SNMP Agent.

Syntax

getLocalEngineId(): Uint8Array;
setLocalEngineId(localEngineId: Uint8Array): void;

Default Value

""

Remarks

This property is only used for SNMPv3 packets (when SNMPVersion is 3).

SNMPAgent.LocalHost Property

The name of the local host or user-assigned IP interface through which connections are initiated or accepted.

Syntax

getLocalHost(): string;
setLocalHost(localHost: string): void;

Default Value

""

Remarks

This property contains the name of the local host as obtained by the gethostname() system call, or if the user has assigned an IP address, the value of that address.

In multihomed hosts (machines with more than one IP interface) setting LocalHost to the IP address of an interface will make the class initiate connections (or accept in the case of server classs) only through that interface. It is recommended to provide an IP address rather than a hostname when setting this property to ensure the desired interface is used.

If the class is connected, the LocalHost property shows the IP address of the interface through which the connection is made in internet dotted format (aaa.bbb.ccc.ddd). In most cases, this is the address of the local host, except for multihomed hosts (machines with more than one IP interface).

Note: LocalHost is not persistent. You must always set it in code, and never in the property window.

SNMPAgent.LocalPort Property

The port in the local host where the class listens.

Syntax

getLocalPort(): number;
setLocalPort(localPort: number): void;

Default Value

161

Remarks

The LocalPort property must be set before the class is activated (Active is set to True). It instructs the class to bind to a specific port (or communication endpoint) in the local machine (default 161).

You may also set LocalPort to 0. This allows the TCP/IP stack to choose a port at random. The value chosen is provided via the LocalPort property after the class is activated through the Active property.

LocalPort cannot be changed once the class is Active. Any attempt to set the LocalPort property when the class is Active will generate an error.

Note: on macOS and iOS, root permissions are required to set LocalPort to any value below 1024.

SNMPAgent.Objects Property

The objects in the current request.

Syntax

getObjects(): SNMPObjectList;
setObjects(objects: SNMPObjectList): void;

Default Value

Remarks

The SNMP objects being sent or received in the current request. The collection is first cleared, then populated every time an SNMP packet is received. It is also used to create outgoing SNMP packets.

Please refer to the SNMPObject type for a complete list of fields.

SNMPAgent.RequestId Property

The request-id to mark outgoing packets with.

Syntax

getRequestId(): number;
setRequestId(requestId: number): void;

Default Value

1

Remarks

If a custom value is needed for RequestId, the property must be set before sending the request. The class increments RequestId automatically after sending each packet.

This property is not available at design time.

SNMPAgent.SNMPVersion Property

Version of SNMP used for outgoing requests (traps).

Syntax

getSNMPVersion(): SNMPAgentSNMPVersions;
setSNMPVersion(SNMPVersion: SNMPAgentSNMPVersions): void;

enum SNMPAgentSNMPVersions {
  snmpverV1,
  snmpverV2c,
  snmpverV3
}

Default Value

2

Remarks

This property takes one of the following values:

SNMPAgent.SSLAcceptServerCert Property

Instructs the class to unconditionally accept the server certificate that matches the supplied certificate.

Syntax

getSSLAcceptServerCert(): Certificate;
setSSLAcceptServerCert(SSLAcceptServerCert: Certificate): void;

Default Value

Remarks

If it finds any issues with the certificate presented by the server, the class will normally terminate the connection with an error.

You may override this behavior by supplying a value for SSLAcceptServerCert. If the certificate supplied in SSLAcceptServerCert is the same as the certificate presented by the server, then the server certificate is accepted unconditionally, and the connection will continue normally.

Note: This functionality is provided only for cases in which you otherwise know that you are communicating with the right server. If used improperly, this property may create a security breach. Use it at your own risk.

Please refer to the Certificate type for a complete list of fields.

SNMPAgent.SSLAuthenticateClients Property

If set to True, the server asks the client(s) for a certificate.

Syntax

isSSLAuthenticateClients(): boolean;
setSSLAuthenticateClients(SSLAuthenticateClients: boolean): void;

Default Value

FALSE

Remarks

This property is used in conjunction with the SSLClientAuthentication event. Please refer to the documentation of the SSLClientAuthentication event for details.

SNMPAgent.SSLCert Property

The certificate to be used during Secure Sockets Layer (SSL) negotiation.

Syntax

getSSLCert(): Certificate;
setSSLCert(SSLCert: Certificate): void;

Default Value

Remarks

This property includes the digital certificate that the class will use during SSL negotiation. Set this property to a valid certificate before starting SSL negotiation. To set a certificate, you may set the field to the encoded certificate. To select a certificate, use the store and subject fields.

Please refer to the Certificate type for a complete list of fields.

SNMPAgent.SSLEnabled Property

Whether DTLS is enabled.

Syntax

isSSLEnabled(): boolean;
setSSLEnabled(SSLEnabled: boolean): void;

Default Value

FALSE

Remarks

This setting specifies whether DTLS is enabled in the class. When False (default) the class operates in plaintext mode. When True DTLS is enabled.

This property is not available at design time.

SNMPAgent.SSLServerCert Property

The server certificate for the last established connection.

Syntax

getSSLServerCert(): Certificate;

Default Value

Remarks

This property contains the server certificate for the last established connection.

SSLServerCert is reset every time a new connection is attempted.

This property is read-only.

Please refer to the Certificate type for a complete list of fields.

SNMPAgent.SysUpTime Property

Time passed since the agent was initialized (in hundredths of a second).

Syntax

getSysUpTime(): number;
setSysUpTime(sysUpTime: number): void;

Default Value

0

Remarks

This property is used when sending SNMP traps, and it normally provides the time since the system was restarted in 1/100s of a second.

If another value is desired, you may set this property to a custom value. From that point on, SysUpTime will return the value set plus time elapsed.

This property is not available at design time.

SNMPAgent.activate Method

Activates the class.

Syntax

async snmpagent.activate(): Promise<void>

Remarks

This method activates the component and will allow it to send or receive data.

The class will be automatically activated if it is not already and you attempt to perform an operation which requires the class to be active.

Note: Use the Active property to check whether the component is active.

SNMPAgent.addUser Method

Adds a user to the internal authentication cache.

Syntax

async snmpagent.addUser(user : string, authenticationProtocol : number, authenticationPassword : string, encryptionAlgorithm : number, encryptionPassword : string): Promise<void>

Remarks

The internal authentication cache can be used as an alternative to the GetUserPassword event, automatically checking the cache against the security parameters provided in the request signature.

The ShowCache method is used to show the contents of the internal authentication cache.

The ClearCache method can be used to completely clear the cache.

Valid Authentication Protocols are:

Valid Encryption Algorithms are:

NOTE: Specifying an authentication protocol of 0 is a special case where the class will attempt to verify users with all valid authentication protocols.

SNMPAgent.clearCache Method

Clears the internal authentication database.

Syntax

async snmpagent.clearCache(): Promise<void>

Remarks

All user records are removed from the internal authentication cache as a result of this call.

SNMPAgent.config Method

Sets or retrieves a configuration setting.

Syntax

async snmpagent.config(configurationString : string): Promise<string>

Remarks

Config is a generic method available in every class. It is used to set and retrieve configuration settings for the class.

These settings are similar in functionality to properties, but they are rarely used. In order to avoid "polluting" the property namespace of the class, access to these internal properties is provided through the Config method.

To set a configuration setting named PROPERTY, you must call Config("PROPERTY=VALUE"), where VALUE is the value of the setting expressed as a string. For boolean values, use the strings "True", "False", "0", "1", "Yes", or "No" (case does not matter).

To read (query) the value of a configuration setting, you must call Config("PROPERTY"). The value will be returned as a string.

SNMPAgent.deactivate Method

Deactivates the class.

Syntax

async snmpagent.deactivate(): Promise<void>

Remarks

This method deactivates the component and will prohibit it from sending and receiving data.

Note: Use the Active property to check whether the component is active.

SNMPAgent.doEvents Method

This method processes events from the internal message queue.

Syntax

async snmpagent.doEvents(): Promise<void>

Remarks

When DoEvents is called, the class processes any available events. If no events are available, it waits for a preset period of time, and then returns.

SNMPAgent.hashPasswords Method

Hashes all passwords in the cache.

Syntax

async snmpagent.hashPasswords(): Promise<void>

Remarks

Forces computation of all passwords hashes in the cache. Used together with the HashPassword event to enable implementations of external password hash storage.

SNMPAgent.removeUser Method

Removes the user specified by User from the internal authentication cache.

Syntax

async snmpagent.removeUser(user : string): Promise<void>

Remarks

The internal authentication cache can be used as an alternative to the GetUserPassword event, automatically checking the cache against the security parameters provided in the request signature.

The ShowCache method is used to show the contents of the internal authentication cache.

The ClearCache method can be used to completely clear the cache.

SNMPAgent.reset Method

Clears the object arrays.

Syntax

async snmpagent.reset(): Promise<void>

Remarks

Clears the object arrays, and sets the trap and error properties to their default values. This is useful for reinitializing all the properties that are used to create outgoing packets before building a new packet.

Note: SNMPVersion will be reset to snmpverV2c (2).

SNMPAgent.sendResponse Method

Sends a response packet to a Get, Get-Next, Get-Bulk, or Set request.

Syntax

async snmpagent.sendResponse(remoteHost : string, remotePort : number, requestId : number, community : string, errorStatus : number, errorIndex : number): Promise<void>

Remarks

Use this method to send asynchronous response packets. A valid RequestId must be specified. SendResponse sends an unauthenticated response packet. Depending upon the value of the SNMPVersion property, the packet is constructed as an SNMPv1, SNMPv2c, or SNMPv3 (unauthenticated) response PDU. To send authenticated or encrypted SNMPv3 responses, use SendSecureResponse

The RemoteHost and RemotePort parameters are used to determine where the response is to be sent. The object identifiers, types, and values for the request are taken from the Objects collection. The RequestId, Community, ErrorStatus, and ErrorIndex parameters are used to specify other properties of the response.

SNMPAgent.sendSecureResponse Method

Sends an authenticated and/or encrypted SNMPv3 response.

Syntax

async snmpagent.sendSecureResponse(remoteHost : string, remotePort : number, requestId : number, messageId : number, errorStatus : number, errorIndex : number, user : string, authenticationProtocol : number, authenticationPassword : string, encryptionAlgorithm : number, encryptionPassword : string): Promise<void>

Remarks

Similar to the SendResponse method except that User, Authentication Protocol, and AuthenticationPassword are used to authenticate the response. EncryptionAlgorithm and EncryptionPassword (if not empty) are used to encrypt the response.

The MessageId argument must match the MessageId parameter obtained from the GetRequest, GetNextRequest, SetRequest, or GetBulkRequest event.

The user and password arguments used to send the response will be added to the internal user cache. If the user is already in the cache, its passwords will be updated with those supplied.

Valid Authentication Protocols are:

Valid Encryption Algorithms are:

SNMPAgent.sendSecureTrap Method

Sends an authenticated and/or encrypted SNMPv3 trap.

Syntax

async snmpagent.sendSecureTrap(remoteHost : string, trapOID : string, user : string, authenticationProtocol : number, authenticationPassword : string, encryptionAlgorithm : number, encryptionPassword : string): Promise<void>

Remarks

Similar to the SendTrap method except that User, AuthenticationPassword, and Authentication Protocol are used to authenticate the trap. EncryptionPassword (if not empty) and EncryptionAlgorithm are used to encrypt the message.

The user and password arguments used to send the trap will be added to the internal user cache. If the user is already in the cache, its passwords will be updated with those supplied.

Valid Authentication Protocols are:

Valid Encryption Algorithms are:

SNMPAgent.sendTrap Method

Sends an SNMP Trap.

Syntax

async snmpagent.sendTrap(remoteHost : string, trapOID : string): Promise<void>

Remarks

Depending upon the value of the SNMPVersion property, the packet is constructed as an SNMPv1 or SNMPv2 Trap PDU. The following configuration settings provide more control about how traps are generated: TrapPort, TrapAgentAddress, TrapCommunity, TrapEnterprise. The SysUpTime property provides the trap timestamp.

SendTrap sends an unauthenticated trap. The SendSecureTrap method is used to send authenticated SNMPv3 traps.

If any values are provided in the Objects collection, they are sent unchanged. In the case of an SNMPv2 or SNMPv3 Trap, if Objects has a count that is equal to 0, the following values are set: sysUpTime.0 equal to SysUpTime and snmpTrapOID.0 equal to TrapOID.

For SNMPv2 and SNMPv3 Traps, TrapOID must contain the full OID of the Trap. For SNMPv1, TrapOID must be a string of the form "generic.specific" where generic and specific are numeric values providing the Trap Generic Type and Specific Type.

For SNMPv1, TrapOID must be of the form "GenericTrap.SpecificTrap". These values are sent in the PDU header. TrapAgentAddress and TrapEnterprise are taken from the corresponding configuration settings.

Additionally, the following symbolic values are recognized and translated as follows:

SNMPAgent.showCache Method

Lists all entries in the internal user authentication cache.

Syntax

async snmpagent.showCache(): Promise<void>

Remarks

A CacheEntry event is fired for every record in the internal user authentication cache.

The internal authentication cache can be used as an alternative to the GetUserPassword event, automatically checking the cache against the security parameters provided in the request signature.

The ShowCache method is used to show the contents of the internal authentication cache.

The ClearCache method can be used to completely clear the cache.

SNMPAgent.value Method

Returns the value corresponding to an OID.

Syntax

async snmpagent.value(OID : string): Promise<string>

Remarks

If the OID does not exist in the Objects collection, a trappable error is generated.

Please refer to the SNMPObject type for more information.

SNMPAgent.BadPacket Event

Fired for erroneous and/or malformed messages.

Syntax

snmpagent.on('BadPacket', listener: (e: {readonly packet: string, readonly packetB: Uint8Array, readonly sourceAddress: string, readonly sourcePort: number, readonly errorCode: number, readonly errorDescription: string, report: boolean}) => void )

Remarks

The full message is provided in the Packet parameter.

The BadPacket event is also fired when authentication fails for received packets due to a bad password or other reasons.

If the Report parameter is set to True, an unauthenticated error report will be sent to the client, otherwise the packet will be silently ignored.

Please refer to the GetUserPassword event for more information concerning SNMPv3 authentication.

SNMPAgent.CacheEntry Event

Shows in the internal cache.

Syntax

snmpagent.on('CacheEntry', listener: (e: {readonly user: string, readonly authenticationProtocol: string, readonly authenticationPassword: string, readonly encryptionAlgorithm: string, readonly encryptionPassword: string}) => void )

Remarks

CacheEntry events are triggered by a call to ShowCache. One event is fired for each user.

SNMPAgent.Connected Event

Fired immediately after a connection completes (or fails).

Syntax

snmpagent.on('Connected', listener: (e: {readonly remoteAddress: string, readonly remotePort: number, readonly statusCode: number, readonly description: string}) => void )

Remarks

This event fires after a connection completes or fails.

StatusCode is the value returned by the system TCP/IP stack. This will be 0 if the connection was successful.

Description contains a human readable description of the status. This will be "OK" if the connection was successful.

RemoteAddress is the IP address of the remote host.

RemotePort is the port on the remote host.

SNMPAgent.Disconnected Event

Fired when a connection is closed.

Syntax

snmpagent.on('Disconnected', listener: (e: {readonly remoteAddress: string, readonly remotePort: number, readonly statusCode: number, readonly description: string}) => void )

Remarks

This event fires after a connection is broken.

StatusCode is the value returned by the system TCP/IP stack. This will be 0 if the connection was broken normally.

Description contains a human readable description of the status. This will be "OK" if the connection was broken normally.

RemoteAddress is the IP address of the remote host.

RemotePort is the port on the remote host.

SNMPAgent.DiscoveryRequest Event

Fired when an SNMPv3 discovery packet is received.

Syntax

snmpagent.on('DiscoveryRequest', listener: (e: {readonly engineId: string, readonly engineIdB: Uint8Array, readonly engineBoots: number, readonly engineTime: number, readonly user: string, readonly securityLevel: number, readonly sourceAddress: string, readonly sourcePort: number, respond: boolean}) => void )

Remarks

EngineId, EngineBoots, EngineTime, and User are the values received from SourceAddress.

For SNMPv3, the User parameter shows the user that was supplied with the packet. This parameter MUST be used together with the SecurityLevel parameter which shows the level of security in the message.

The SecurityLevel parameter shows whether the request has been authenticated. If SecurityLevel is 0, the request has NOT been authenticated (i.e. the packet signature has not been verified). For an authenticated, non encrypted request, SecurityLevel is 1. For an authenticated and encrypted request, SecurityLevel is 2.

Respond is True by default, and will automatically send a response using the value in LocalEngineId. To suppress the response, set Respond to False.

The value returned to SourceAddress for EngineBoots is always 0, and EngineTime is the number of seconds since January 1st, 1970 (GMT).

SNMPAgent.Error Event

Fired when information is available about errors during data delivery.

Syntax

snmpagent.on('Error', listener: (e: {readonly errorCode: number, readonly description: string}) => void )

Remarks

The Error event is fired in case of exceptional conditions during message processing. Normally the class .

The ErrorCode parameter contains an error code, and the Description parameter contains a textual description of the error. For a list of valid error codes and their descriptions, please refer to the Error Codes section.

SNMPAgent.GetBulkRequest Event

Fired when a GetBulkRequest packet is received.

Syntax

snmpagent.on('GetBulkRequest', listener: (e: {readonly requestId: number, readonly messageId: number, readonly SNMPVersion: number, readonly community: string, readonly user: string, readonly securityLevel: number, readonly sourceAddress: string, readonly sourcePort: number, readonly nonRepeaters: number, readonly maxRepetitions: number, errorIndex: number, errorStatus: number, readonly errorDescription: string, respond: boolean}) => void )

Remarks

This is only available for SNMP versions 2 and 3.

The list of variables in the SNMP packet, including optional values and types, is provided through the Objects collection. Each object is of type SNMPObject. This type describes the ObjectsOid, ObjectsObjectType, and ObjectsValue of each SNMP object. These variables must be copied to another location before the event has completed executing, or they may be overridden by other events.

The SourceAddress and SourcePort parameters show the address and port of the sender as reported by the TCP/IP stack.

The MessageId parameter identifies the received request.

For SNMPv3, the User parameter shows the user that was supplied with the packet. This parameter MUST be used together with the SecurityLevel parameter which shows the level of security in the message.

The SecurityLevel parameter shows whether the request has been authenticated. If SecurityLevel is 0, the request has NOT been authenticated (i.e. the packet signature has not been verified). For an authenticated, non encrypted request, SecurityLevel is 1. For an authenticated and encrypted request, SecurityLevel is 2.

To send a response, the Respond parameter must be set to true. By default, this value is false, which means no response will be sent. The ErrorStatus parameter may also be set to a valid SNMP status code (the default value is 0, which represents no error).

The following is a list of valid SNMP status code values:

The ErrorIndex parameter indicates the index of the first variable (object) that caused an error. The default value is 0.

Variable indexes start with 0. ErrorIndex has no meaning when ErrorStatus is 0 (no error).

A GetBulkRequest is very similar to a GetNextRequest, the difference is that Getbulk performs a continuous GetNext operation based on the MaxRepitions value. The NonRepeaters value will determine the number of Objects for which a simple GetNext operation should be performed. For the remaining variables, a continuous GetNext operation is performed based on the MaxRepitions value.

So if you send a request containing X objects, the agent will perform N simple GetNext operations and M continuous GetNext operations X - N times. With X being the number of objects received, N being the number of NonRepeaters, and M being the number of MaxRepitions. Thus the SNMPMgr is expecting to receive N + M x (X - N) objects, assuming that each object has M successors.

SNMPAgent.GetNextRequest Event

Fired when a GetNextRequest packet is received.

Syntax

snmpagent.on('GetNextRequest', listener: (e: {readonly requestId: number, readonly messageId: number, readonly SNMPVersion: number, readonly community: string, readonly user: string, readonly securityLevel: number, readonly sourceAddress: string, readonly sourcePort: number, errorIndex: number, errorStatus: number, readonly errorDescription: string, respond: boolean}) => void )

Remarks

The list of variables in the SNMP packet, including optional values and types, is provided through the Objects collection. Each object is of type SNMPObject. This type describes the ObjectsOid, ObjectsObjectType, and ObjectsValue of each SNMP object. These variables must be copied to another location before the event has completed executing, or they may be overridden by other events.

The SourceAddress and SourcePort parameters show the address and port of the sender as reported by the TCP/IP stack.

The MessageId parameter identifies the received request.

For SNMPv3, the User parameter shows the user that was supplied with the packet. This parameter MUST be used together with the SecurityLevel parameter which shows the level of security in the message.

The SecurityLevel parameter shows whether the request has been authenticated. If SecurityLevel is 0, the request has NOT been authenticated (i.e. the packet signature has not been verified). For an authenticated, non encrypted request, SecurityLevel is 1. For an authenticated and encrypted request, SecurityLevel is 2.

To send a response, the Respond parameter must be set to true. By default, this value is false, which means no response will be sent. The ErrorStatus parameter may also be set to a valid SNMP status code (the default value is 0, which represents no error).

The following is a list of valid SNMP status code values:

The ErrorIndex parameter indicates the index of the first variable (object) that caused an error. The default value is 0.

Variable indexes start with 0. ErrorIndex has no meaning when ErrorStatus is 0 (no error).

SNMPAgent.GetRequest Event

Fired when a GetRequest packet is received.

Syntax

snmpagent.on('GetRequest', listener: (e: {readonly requestId: number, readonly messageId: number, readonly SNMPVersion: number, readonly community: string, readonly user: string, readonly securityLevel: number, readonly sourceAddress: string, readonly sourcePort: number, errorIndex: number, errorStatus: number, readonly errorDescription: string, respond: boolean}) => void )

Remarks

The list of variables in the SNMP packet, including optional values and types, is provided through the Objects collection. Each object is of type SNMPObject. This type describes the ObjectsOid, ObjectsObjectType, and ObjectsValue of each SNMP object. These variables must be copied to another location before the event has completed executing, or they may be overridden by other events.

The SourceAddress and SourcePort parameters show the address and port of the sender as reported by the TCP/IP stack.

The MessageId parameter identifies the received request.

For SNMPv3, the User parameter shows the user that was supplied with the packet. This parameter MUST be used together with the SecurityLevel parameter which shows the level of security in the message.

The SecurityLevel parameter shows whether the request has been authenticated. If SecurityLevel is 0, the request has NOT been authenticated (i.e. the packet signature has not been verified). For an authenticated, non encrypted request, SecurityLevel is 1. For an authenticated and encrypted request, SecurityLevel is 2.

To send a response, the Respond parameter must be set to true. By default, this value is false, which means no response will be sent. The ErrorStatus parameter may also be set to a valid SNMP status code (the default value is 0, which represents no error).

The following is a list of valid SNMP status code values:

The ErrorIndex parameter indicates the index of the first variable (object) that caused an error. The default value is 0.

Variable indexes start with 0. ErrorIndex has no meaning when ErrorStatus is 0 (no error).

SNMPAgent.GetUserPassword Event

Retrieves a password associated with a user.

Syntax

snmpagent.on('GetUserPassword', listener: (e: {readonly passwordType: number, readonly user: string, password: string, algorithm: number}) => void )

Remarks

The GetUserPassword event is fired after initial inspection of SNMPv3 requests.

The type of password required is provided in the PasswordType parameter: 1 for authentication, and 2 for encryption (privacy).

The password corresponding to User (if any) must be provided in the Password parameter. If the password is valid, processing will continue to other events such as GetRequest, SetRequest, etc.

If the PasswordType parameter is 1 (authentication is used), the Algorithm parameter can be set. Possible values are:

If the PasswordType parameter is 2 (encryption is used), the Algorithm parameter must also be set. Possible values are:

If the password does not match the signature in the request, a BadPacket event will be fired, at which point you can decide whether to report the error to the client (see the description of the BadPacket event for more information).

If the User is invalid or unknown, set the password to empty string (default) to ignore the request. This will result in a BadPacket event being fired, at which point you can decide whether to report the error to the client or not.

SNMPAgent.GetUserSecurityLevel Event

Sets the security level for an incoming packet.

Syntax

snmpagent.on('GetUserSecurityLevel', listener: (e: {readonly user: string, readonly engineId: string, readonly engineIdB: Uint8Array, securityLevel: number}) => void )

Remarks

The GetUserSecurityLevel event is fired after the first inspection of each SNMPv3 request. The SecurityLevel parameter determines the level of security for the message.

On entry, the SecurityLevel parameter contains the default security level for User if the user is located in the internal cache, or if the User is not found in the cache, the SecurityLevel will be -1.

The value of SecurityLevel upon exiting the event, determines how the message will be processed:

SNMPAgent.HashPassword Event

Fired before and after a password is hashed.

Syntax

snmpagent.on('HashPassword', listener: (e: {readonly password: string, readonly authAlgorithm: number, hash: string}) => void )

Remarks

SNMPv3 passwords are hashed in order to obtain authentication and encryption keys. This is an expensive operation, and in certain situations it may be preferable to store the hashed passwords externally and supply them on demand.

If a hash is required, the event fires with an empty string in the Hash parameter. In this case, you can choose to supply a value for the hash and stop the class from computing the hash.

The event also fires every time a hash is computed. In this case, the Hash parameter contains the value of the computed hash.

AuthAlgorithm contains either 1 for HMAC-MD5-96, 2 for HMAC-SHA-96 or 3 for HMAC-192-SHA-256

SNMPAgent.PacketTrace Event

Fired for every packet sent or received.

Syntax

snmpagent.on('PacketTrace', listener: (e: {readonly packet: string, readonly packetB: Uint8Array, readonly direction: number, readonly packetAddress: string, readonly packetPort: number}) => void )

Remarks

The PacketTrace event shows all the packets sent or received by the class.

Packet contains the full contents of the datagram.

Direction shows the direction of the packet: 1 for incoming packets, and 2 for outgoing packets.

In the case of an incoming packet, PacketAddress and PacketPort identify the source of the packet.

In the case of an outgoing packet, PacketAddress and PacketPort identify the destination of the packet.

SNMPAgent.ReadyToSend Event

Fired when the class is ready to send data.

Syntax

snmpagent.on('ReadyToSend', listener: (e: {}) => void )

Remarks

The ReadyToSend event indicates that the underlying TCP/IP subsystem is ready to accept data after a failed DataToSend(TBD. DataToSend is removed).

SNMPAgent.Report Event

Fired when a Report packet is received.

Syntax

snmpagent.on('Report', listener: (e: {readonly requestId: number, readonly SNMPVersion: number, readonly community: string, readonly user: string, readonly securityLevel: number, readonly sourceAddress: string, readonly sourcePort: number, readonly errorIndex: number, readonly errorStatus: number, readonly errorDescription: string}) => void )

Remarks

For SNMPv3, the User parameter shows the user that was supplied with the packet. This parameter MUST be used together with the SecurityLevel parameter which shows the level of security in the message.

The SecurityLevel parameter shows whether the request has been authenticated. If SecurityLevel is 0, the request has NOT been authenticated (i.e. the packet signature has not been verified). For an authenticated, non encrypted request, SecurityLevel is 1. For an authenticated and encrypted request, SecurityLevel is 2.

The list of variables in the SNMP packet, including optional values and types, is provided through the Objects collection. Each object is of type SNMPObject. This type describes the ObjectsOid, ObjectsObjectType, and ObjectsValue of each SNMP object. These variables must be copied to another location before the event has completed executing, or they may be overridden by other events.

The SourceAddress and SourcePort parameters show the address and port of the sender as reported by the TCP/IP stack.

SNMPAgent.SetRequest Event

Fired when a SetRequest packet is received.

Syntax

snmpagent.on('SetRequest', listener: (e: {readonly requestId: number, readonly messageId: number, readonly SNMPVersion: number, readonly community: string, readonly user: string, readonly securityLevel: number, readonly sourceAddress: string, readonly sourcePort: number, errorIndex: number, errorStatus: number, readonly errorDescription: string, respond: boolean}) => void )

Remarks

The list of variables in the SNMP packet, including optional values and types, is provided through the Objects collection. Each object is of type SNMPObject. This type describes the ObjectsOid, ObjectsObjectType, and ObjectsValue of each SNMP object. These variables must be copied to another location before the event has completed executing, or they may be overridden by other events.

The SourceAddress and SourcePort parameters show the address and port of the sender as reported by the TCP/IP stack.

The MessageId parameter identifies the received request.

For SNMPv3, the User parameter shows the user that was supplied with the packet. This parameter MUST be used together with the SecurityLevel parameter which shows the level of security in the message.

The SecurityLevel parameter shows whether the request has been authenticated. If SecurityLevel is 0, the request has NOT been authenticated (i.e. the packet signature has not been verified). For an authenticated, non encrypted request, SecurityLevel is 1. For an authenticated and encrypted request, SecurityLevel is 2.

To send a response, the Respond parameter must be set to true. By default, this value is false, which means no response will be sent. The ErrorStatus parameter may also be set to a valid SNMP status code (the default value is 0, which represents no error).

The following is a list of valid SNMP status code values:

The ErrorIndex parameter indicates the index of the first variable (object) that caused an error. The default value is 0.

Variable indexes start with 0. ErrorIndex has no meaning when ErrorStatus is 0 (no error).

SNMPAgent.SSLClientAuthentication Event

Fired when the client presents its credentials to the server.

Syntax

snmpagent.on('SSLClientAuthentication', listener: (e: {readonly remoteAddress: string, readonly remotePort: number, readonly certEncoded: string, readonly certEncodedB: Uint8Array, readonly certSubject: string, readonly certIssuer: string, readonly status: string, accept: boolean}) => void )

Remarks

This event fires when a client connects to the class and presents a certificate for authentication. The Accept parameter is a recommendation on whether to continue or close the connection. This is just a suggestion: application software must use its own logic to determine whether to continue or not.

When Accept is False, Status shows why the verification failed (otherwise, Status contains the string "OK").

RemoteAddress is the IP address of the connecting client.

RemotePort is the source port of the connecting client.

CertEncoded is the base64 encoded certificate presented by the client.

CertSubject is the subject of the certificate presented by the client.

CertIssuer is the subject of the issuer of the certificate presented by the client.

Status is the stauts of the certificate.

Accept defines whether the certificate is accepted.

SNMPAgent.SSLServerAuthentication Event

Fires when connecting to the server.

Syntax

snmpagent.on('SSLServerAuthentication', listener: (e: {readonly remoteAddress: string, readonly remotePort: number, readonly certEncoded: string, readonly certEncodedB: Uint8Array, readonly certSubject: string, readonly certIssuer: string, readonly status: string, accept: boolean}) => void )

Remarks

This event is where the client can decide whether to continue with the connection process or not. The Accept parameter is a recommendation on whether to continue or close the connection. This is just a suggestion: application software must use its own logic to determine whether to continue or not.

When Accept is False, Status shows why the verification failed (otherwise, Status contains the string "OK"). If it is decided to continue, you can override and accept the certificate by setting the Accept parameter to True.

RemoteAddress is the IP address of the server.

RemotePort is the source port of the server.

CertEncoded is the base64 encoded certificate presented by the server.

CertSubject is the subject of the certificate presented by the server.

CertIssuer is the subject of the issuer of the certificate presented by the server.

Status is the stauts of the certificate.

Accept defines whether the certificate is accepted.

SNMPAgent.SSLStatus Event

Shows the progress of the secure connection.

Syntax

snmpagent.on('SSLStatus', listener: (e: {readonly remoteAddress: string, readonly remotePort: number, readonly message: string}) => void )

Remarks

The event is fired for informational and logging purposes only. It is used to track the progress of the connection.

RemoteAddress is the IP address of the remote machine.

RemotePort is the port of the remote machine.

Message is the log message.

Certificate Type

This is the digital certificate being used.

Remarks

This type describes the current digital certificate. The certificate may be a public or private key. The fields are used to identify or select certificates.

Fields

Constructors

public Certificate();

public Certificate(String certificateFile);

public Certificate(byte[] encoded);

public Certificate(int storeType, String store, String storePassword, String subject);

public Certificate(int storeType, String store, String storePassword, String subject, String configurationString);

public Certificate(int storeType, String store, String storePassword, byte[] encoded);

public Certificate(int storeType, byte[] store, String storePassword, String subject);

public Certificate(int storeType, byte[] store, String storePassword, String subject, String configurationString);

public Certificate(int storeType, byte[] store, String storePassword, byte[] encoded);

SNMPObject Type

The current SNMP object.

Remarks

This type defines an SNMP object. Each object has an , , and . These values are populated by the class when incoming packets are received. You may use these fields to define objects to be used in outgoing packets.

Fields

Constructors

public SNMPObject();

public SNMPObject(String oid);

public SNMPObject(String oid, byte[] value);

public SNMPObject(String oid, byte[] value, int objectType);

Config Settings (class ipworkssnmp.snmpagent)

The class accepts one or more of the following configuration settings. Configuration settings are similar in functionality to properties, but they are rarely used. In order to avoid "polluting" the property namespace of the class, access to these internal properties is provided through the Config method.

SNMPAgent Config Settings

UDP Config Settings

Socket Config Settings

Base Config Settings

Trappable Errors (class ipworkssnmp.snmpagent)

SNMPAgent Errors

UDP Errors

SSL Errors

TCP/IP Errors