Running new 6.12 on routers.
Using routers with multiple paths in our network.
SNMP only responds on the current active interfaces.. so if routes change and traffic goes a different direction my mrtg stats
fail.
What I would like to do is have the snmp respond on a loopback address and do all the polling from that ip , so that if routes change
it wouldn’t matter.
Anyone have this problem?? or have a fix for it?
We use OSPF internally and I am able to poll SNMP on all IPs of the router - the routing is taken care of by OSPF.
Can you ping/traceroute the IP that you can not SNMP poll on?
yes.. we use ospf with BGP on the network..
I can ssh/winbox/telnet/tracreoute to all the interfaces on the router… but it just won’t respond via snmp on all of the interfaces.
Might be a 6.12 thing, we are not running 6.12 yet.
Do you only have this problem on 6.12 or other versions as well?
Was using 5.16 and it was doing the same thing.. so I upgraded to 6.12 before I started asking questions… assumed I’de get the defacto “Upgrade to newest version first” request .. 
I can tell you it works fine for us with 6.7 and with 6.11.
Have you set-up firewall / mangle logging to see if its not being blocked in firewall / pushed into an alternate routing-table in mangle / etc.?
Sorry for the obvious things, but best start with those
no firewall.. just routing…
we don’t block traffic on these routers.. they just move traffic… customers routers further downstream deal with all the firewalling etc..
Alright, lets look at this in detail then
Can you please post the output of these commands?
/interface exp com
/ip exp com
/routing exp com
/snmp exp com
Feel free to ommit any sensitive data.
I removed what I had to for security reasons… hope it doesn’t make this info Unusable.
I have it working on an interface now… just preffered to use the loopback address, making it easier. in the long run.
/snmp community
set [ find default=yes ] addresses=x.x.x.x/x name=xxxxxxxxx
/snmp
set contact=“REDACTED” enabled=yes location=REDCATED
trap-community=REDACTED trap-target=0.0.0.0
/ip hotspot user profile
set [ find default=yes ] idle-timeout=none keepalive-timeout=2m
mac-cookie-timeout=3d
/ip ipsec proposal
set [ find default=yes ] enc-algorithms=3des
/ip address
add address=x.x.x.17/30 interface=ether1 network=x.x.x.16
add address=x.x.x3.49/28 interface=ether3 network=x.x.x3.48
add address=x.x.x3.18/30 interface=GRE1 network=x.x.x3.16
add address=x.x.x.12/29 interface=vlan56 network=x.x.x.8
add address=x.x.x.182/30 interface=VLAN87 network=x.x.x.180
add address=x.x.x.189/30 interface=ether4 network=x.x.x.188
add address=x.x.x.178/30 interface=VLAN443 network=x.x.x.176
add address=x.x.x.41/32 interface=LOOPBACK0 network=.x.x.x41
/ip dns
set allow-remote-requests=yes max-udp-packet-size=512 servers=
x.x.x.11,x.x.x.10
/ip dns static
add address=159.148.147.196 name=www.mikrotik.com
/ip proxy
set max-cache-size=none parent-proxy=0.0.0.0
/ip route
add check-gateway=ping distance=150 gateway=x.x.x.17
add distance=1 dst-address=x.x.x.94/32 gateway=x.x.x.18
add distance=1 dst-address=x.x.x.62/32 gateway=x.x.x.18
add distance=1 dst-address=x.x.x.34/32 gateway=x.x.x.18
/ip service
set telnet address=x.x.x.0/20
set ftp disabled=yes
set www disabled=yes
set ssh address=x.x.x.0/20
set api disabled=yes
/ip upnp
set allow-disable-external-interface=no
/routing ospf interface
add authentication=md5 authentication-key=redacted cost=22 interface=VLAN443
network-type=point-to-point
add authentication=md5 authentication-key=redacted cost=20 interface=ether4
network-type=point-to-point
/routing ospf network
add area=backbone network=x.x.x.176/30
add area=backbone network=x.x.x.41/32
add area=backbone network=x.x.x.188/30
/interface bridge
add name=LOOPBACK0 protocol-mode=none
/interface ethernet
set [ find default-name=ether2 ] speed=1Gbps
set [ find default-name=ether3 ] speed=1Gbps
set [ find default-name=ether4 ] speed=1Gbps
/interface gre
add dscp=1 local-address=x.x.x.17 mtu=1500 name=GRE1 remote-address=
x.x.x.34
/interface vlan
add interface=ether2 l2mtu=1596 name=VLAN87 vlan-id=87
add comment=comment1 interface=ether2 l2mtu=1596 name=VLAN90
vlan-id=90
add comment=comment1 interface=ether2 l2mtu=1596 name=VLAN443 vlan-id=
443
add comment=Comment1 interface=ether2 l2mtu=1596 name=vlan56
vlan-id=56
/interface wireless security-profiles
set [ find default=yes ] group-ciphers=“” supplicant-identity=MikroTik
unicast-ciphers=“”
correct SNMP syntax:
suggested config
only trap-version=3 parameters
/snmp community
set [ find default=yes ] name=public addresses=0.0.0.0/0 authentication-password=“” authentication-protocol=MD5 encryption-password=“” encryption-protocol=DES read-access=yes security=none write-access=no
/snmp
set contact=“” enabled=yes engine-id=“” location=“” trap-community=public trap-generators=“” trap-target=0.0.0.0 trap-version=2
0.0.0.0/0 can be any address, pool address or multiple address from where are allowed to use SNMP
public the name are use and MUST set on SNMP client, IS CASE SENsitIVE
Yea - so this is SUPER OLD - but…
I seemed to have tracked this down to OSPF “cost” -
If you have more than one path leaving your router and the OSPF cost set manually in the interfaces tab of OSPF then this can happen if:
The “cost” is not the same leaving the router - IE you are preferring one path over another.
This can be in one direction with two links. (Take the same path to the gateway.)
OR
Two “directions” (different routed path’s to gateway).
6.47.10 This is still present.
I can make it happen on demand. So - perhaps if this is in other threads - it could be addressed.
You could start a new thread ?
And 6.47.10 is also old …