Skip to main content
Version: 2.12.0

SNMP Setup Guide

While NetFlow tells you who is talking, SNMP tells you why your network might be struggling. By combining flow data with device-level health metrics — like CPU, memory, and interface status — NFO provides a 360-degree view of your infrastructure.

NFO leverages the Simple Network Management Protocol (SNMP) to collect vital performance data, network details, and alerts from your devices. As part of your current NFO license, you are entitled to SNMP Basic, which offers foundational monitoring to complement your NetFlow visibility.

SNMP data flow — devices to NFO to downstream platforms

tip

For advanced security (SNMPv3), automation, and large-scale management, we offer the SNMP Pro tier. For a full feature breakdown, see Feature Tiers and Protocol Access.

Step 1: Configure Credentials

Provide NFO with the authentication details it needs to communicate with your devices.

  1. Navigate to SNMP Management > Credentials.
  2. Add your devices' SNMPv2c community strings or SNMPv3 security names.
  3. Click Save. NFO securely stores these for use during the discovery phase.

For the full credentials field reference — including SNMPv3 security levels, authentication protocols, and encryption options — see SNMP Credentials.

Step 2: Launch Auto-Discovery & Classification

NFO builds a dynamic inventory by probing your subnets or IP ranges and automatically identifying hardware types.

  1. Navigate to SNMP Management > Auto-discovery > SNMP auto-discovery EDFN agent.
  2. Define your IP Ranges on the Auto-discovery networks tab (e.g., 10.0.0.0/24 or 192.168.20.1 - 192.168.20.24).
  3. Verify via Dry Run: Click Dry run. NFO scans the range to identify hardware (Cisco, Juniper, Palo Alto, etc.). Switch to the Preview devices tab to see how NFO has automatically mapped devices to functional Device Groups.
  4. Commit to Inventory: Once satisfied with the classification results, go to the Settings tab and click Run now. This moves the discovered devices into your active monitoring inventory.
  5. Schedule Updates: Adjust the Cron schedule (default: twice a day) to ensure NFO automatically detects and re-classifies new equipment added to your network.
tip

For advanced discovery options — including scan concurrency, SNMP GET timeouts, LLDP/CDP topology traversal, and per-subnet credential assignment — see Auto-Discovery.

Step 3: Enable the Collection Engine

Activate the logic that performs the actual polling.

  1. Navigate to Modules > Utilities.
  2. Locate SNMP Custom OID Sets Monitor (10103).
  3. Toggle to Enabled.
  4. Toggle to Enabled the OID sets that correspond to your discovered Device Groups.

Result: NFO begins polling CPU, Memory, and Interface metrics based on the hardware discovered in Step 2. No manual OID mapping required.

Step 4: Review and Override Classifications (Optional)

NFO automatically assigns Device Groups and a Device Type to each discovered device. In most environments this requires no changes. Review this if any devices were classified incorrectly — for example, a multi-purpose layer-3 switch you want to treat strictly as a router, or a Linux host you want tagged as a security Appliance`.

  1. Navigate to SNMP Management > Auto-discovery > Classification Rules tab.
  2. Review the Device Group and Device Type assigned to your infrastructure.
  3. If a device needs a different classification, click Add Rule and define the override condition (e.g., match on sysName pattern NY-CORE → assign Device Type router).
  4. Click Save. Rules apply on the next discovery cycle.

For a full explanation of how Device Groups and Device Types work, and how multi-group inheritance is applied, see Understanding Multi-Group Inheritance.

Step 5: Configure Auto-Discovery Reporting (Optional)

Enable the Auto-discovery Reporter (Module 10701) to forward device discovery metadata — including device inventory, topology connections, and classification changes — to your SIEM for asset management and network topology mapping.

  1. Navigate to Modules > Utilities.
  2. Locate Auto-discovery Reporter (10701).
  3. Toggle to Enabled.

For output field mapping and SIEM forwarding configuration, see Auto-discovery Reporter (10701).

Verifying Health & Success

Once polling is active, confirm everything is working:

  • Device List: Navigate to SNMP Management > IPv4 Device List. Confirm your devices appear with their Type and Assigned Groups correctly identified.
  • Polling Success: Check the NFO header for Skipped Requests. If this number is rising, check your firewall paths or verify that your community strings match the device configuration.
  • Audit Logs: Navigate to the Status page and select the Logs tab for a real-time view of system activity.

Next Steps

You have a working SNMP pipeline. NFO is discovering devices, classifying them, and polling for health metrics.

  • Receive Alerts: Set up SNMP Trap Inputs to ingest real-time hardware alerts from your devices.
  • Customize Polling: Need to monitor a proprietary metric? See SNMP Custom OID Sets Monitor (10103).
  • Advanced Configuration: For the full reference covering MIB uploads, interface overrides, polling rules, and unresponsive device handling, see SNMP Management.