Set up comprehensive SNMP monitoring for network devices using Zabbix with automated discovery rules, custom templates, and intelligent alerting. Learn to monitor switches, routers, and other network equipment with performance triggers and detailed reporting.
Prerequisites
- Zabbix server installed and configured
- Network devices with SNMP support
- Administrative access to network equipment
- Basic understanding of SNMP protocol
What this solves
SNMP (Simple Network Management Protocol) monitoring allows you to track network device performance, interface utilization, and hardware status from a centralized Zabbix server. This tutorial shows you how to configure SNMP on network devices, set up Zabbix for automated device discovery, and create monitoring templates with intelligent triggers for comprehensive network infrastructure monitoring.
Step-by-step configuration
Install SNMP utilities on Zabbix server
Install the required SNMP packages to enable communication with network devices.
sudo apt update
sudo apt install -y snmp snmp-mibs-downloaderConfigure SNMP MIBs
Enable MIB translation for human-readable SNMP output and better monitoring visibility.
# Comment out the mibs line to enable MIB loading
mibs :
Add community string configuration
defaultcommunity public
Set SNMP version preferences
defaultversion 2cTest SNMP connectivity
Verify that your Zabbix server can communicate with network devices using SNMP.
snmpwalk -v2c -c public 192.168.1.1 1.3.6.1.2.1.1.1.0
snmpget -v2c -c public 192.168.1.1 1.3.6.1.2.1.1.5.0Configure network device SNMP (Cisco example)
Enable SNMP on your network devices with appropriate community strings and access controls.
configure terminal
snmp-server community monitoring RO
snmp-server community zabbix RO 10
snmp-server location "Data Center Rack 42"
snmp-server contact "admin@example.com"
snmp-server enable traps snmp linkdown linkup
snmp-server host 192.168.1.100 version 2c monitoring
exit
write memoryCreate SNMP access control list
Restrict SNMP access to your monitoring servers for enhanced security.
configure terminal
access-list 10 permit 192.168.1.100
access-list 10 permit 192.168.1.0 0.0.0.255
access-list 10 deny any log
snmp-server community monitoring RO 10
exit
write memoryConfigure Zabbix network discovery rule
Set up automated discovery to find and monitor network devices automatically.
mysql -u zabbix -p zabbix << 'EOF'
INSERT INTO drules (druleid, proxy_hostid, name, iprange, delay, nextcheck, status, error, error_from, templateid)
VALUES (1, NULL, 'Network Discovery', '192.168.1.1-254', '3600', 0, 0, '', 0, NULL);
INSERT INTO dchecks (dcheckid, druleid, type, key_, snmp_community, ports, snmpv3_securityname, snmpv3_securitylevel, snmpv3_authpassphrase, snmpv3_privpassphrase, uniq, snmpv3_authprotocol, snmpv3_privprotocol, snmpv3_contextname)
VALUES (1, 1, 11, '1.3.6.1.2.1.1.1.0', 'public', '161', '', 0, '', '', 0, 0, 0, '');
EOFCreate network device template
Build a comprehensive template for monitoring network device performance and status.
6.0
Network Device SNMP
Network Device SNMP Template
Templates/Network devices
-
Device uptime
4
public
1.3.6.1.2.1.1.3.0
system.uptime
60s
uptime
1
0.01
-
Device name
4
public
1.3.6.1.2.1.1.5.0
system.name
3600s
0
4
Network interfaces
4
public
discovery[{#SNMPINDEX},1.3.6.1.2.1.2.2.1.1,{#SNMPVALUE},1.3.6.1.2.1.2.2.1.2]
net.if.discovery
3600s
Interface {#SNMPVALUE}: Inbound packets per sec
4
public
1.3.6.1.2.1.2.2.1.11.{#SNMPINDEX}
net.if.in.packets[{#SNMPINDEX}]
60s
10
Interface {#SNMPVALUE}: Outbound packets per sec
4
public
1.3.6.1.2.1.2.2.1.17.{#SNMPINDEX}
net.if.out.packets[{#SNMPINDEX}]
60s
10
Import template through Zabbix web interface
Import the network device template into Zabbix for use with discovered devices.
curl -X POST http://localhost/zabbix/api_jsonrpc.php \
-H "Content-Type: application/json" \
-d '{
"jsonrpc": "2.0",
"method": "user.login",
"params": {
"user": "Admin",
"password": "zabbix"
},
"id": 1
}' | jq -r '.result'Configure discovery actions
Set up automatic actions to link discovered devices with the network template.
INSERT INTO actions (actionid, name, eventsource, evaltype, status, esc_period, def_shortdata, def_longdata, r_shortdata, r_longdata, formula, maintenance_mode, filter)
VALUES (1, 'Auto-add network devices', 1, 0, 0, '1h', 'Device discovered: {HOST.NAME}', 'Device {HOST.NAME} has been discovered at {HOST.IP}', '', '', '', 1, '');
INSERT INTO operations (operationid, actionid, operationtype, esc_period, esc_step_from, esc_step_to, evaltype)
VALUES (1, 1, 2, 0, 1, 1, 0);
INSERT INTO optemplate (optemplateid, operationid, templateid)
VALUES (1, 1, (SELECT templateid FROM hosts WHERE host = 'Network Device SNMP'));Create performance triggers
Set up intelligent triggers to alert on network performance issues and device problems.
INSERT INTO triggers (triggerid, expression, description, priority, status, comments, error, templateid, type, state, flags)
VALUES
(1, '{Network Device SNMP:system.uptime.last()}<600', 'Device {HOST.NAME} restarted', 2, 0, 'Trigger when device uptime is less than 10 minutes', '', NULL, 0, 0, 0),
(2, '{Network Device SNMP:net.if.in.packets[{#SNMPINDEX}].avg(5m)}>10000', 'High inbound traffic on {HOST.NAME} interface {#SNMPVALUE}', 1, 0, 'Trigger when interface receives more than 10k packets/sec for 5 minutes', '', NULL, 0, 0, 2),
(3, '{Network Device SNMP:net.if.out.packets[{#SNMPINDEX}].avg(5m)}>10000', 'High outbound traffic on {HOST.NAME} interface {#SNMPVALUE}', 1, 0, 'Trigger when interface sends more than 10k packets/sec for 5 minutes', '', NULL, 0, 0, 2);Configure SNMPv3 for enhanced security
Implement SNMPv3 with authentication and encryption for production environments.
configure terminal
snmp-server group MONITORING v3 auth read READONLY
snmp-server user zabbixuser MONITORING v3 auth sha AuthPass123 priv aes 128 PrivPass123
snmp-server view READONLY internet included
snmp-server view READONLY system included
snmp-server view READONLY interfaces included
exit
write memoryTest SNMPv3 connectivity
Verify SNMPv3 authentication and encryption are working correctly.
snmpwalk -v3 -u zabbixuser -l authPriv -a SHA -A AuthPass123 -x AES -X PrivPass123 192.168.1.1 1.3.6.1.2.1.1.1.0
snmpget -v3 -u zabbixuser -l authPriv -a SHA -A AuthPass123 -x AES -X PrivPass123 192.168.1.1 1.3.6.1.2.1.1.5.0Enable Zabbix server SNMP processing
Configure Zabbix server to handle SNMP monitoring efficiently with proper process allocation.
StartSNMPTrapper=1
SNMPTrapperFile=/var/log/snmptrapd.log
StartPollers=10
StartPollersUnreachable=5
StartTrappers=5
CacheSize=64M
HistoryCacheSize=32M
HistoryIndexCacheSize=8M
TrendCacheSize=8MRestart Zabbix services
Apply the configuration changes by restarting the Zabbix server and agent processes.
sudo systemctl restart zabbix-server
sudo systemctl restart zabbix-agent
sudo systemctl status zabbix-serverConfigure SNMP trap handling
Install SNMP trap daemon
Set up snmptrapd to receive and process SNMP traps from network devices.
sudo apt install -y snmptrapdConfigure SNMP trap daemon
Set up snmptrapd to log traps for Zabbix processing and configure authentication.
authCommunity log,execute,net public
disableAuthorization yes
logOption s 7
outputOption A
format2 %02.2h:%02.2j %B [%b]: %N %W %q %P %t %v\nStart SNMP trap daemon
Enable and start the snmptrapd service to begin receiving network device traps.
sudo systemctl enable --now snmptrapd
sudo systemctl status snmptrapd
sudo tail -f /var/log/snmptrapd.logVerify your setup
sudo systemctl status zabbix-server
sudo systemctl status snmptrapd
Test SNMP connectivity to a device
snmpwalk -v2c -c public 192.168.1.1 1.3.6.1.2.1.1
Check Zabbix server logs for SNMP activity
sudo tail -f /var/log/zabbix/zabbix_server.log | grep -i snmp
Verify network discovery is running
zabbix_get -s localhost -k "system.localtime"Note: Replace 192.168.1.1 with your actual network device IP address and ensure the SNMP community string matches your device configuration.
Common issues
| Symptom | Cause | Fix |
|---|---|---|
| SNMP timeout errors | Firewall blocking UDP 161 | sudo ufw allow from 192.168.1.0/24 to any port 161 proto udp |
| No data from devices | Incorrect community string | Verify community string matches device configuration |
| Discovery not finding devices | IP range too narrow | Expand IP range in discovery rule configuration |
| MIB resolution errors | Missing MIB files | sudo download-mibs and uncomment mibs line in /etc/snmp/snmp.conf |
| SNMPv3 authentication fails | Password or encryption mismatch | Verify auth/priv passwords match on both device and Zabbix |
| Template not applying | Discovery action misconfigured | Check Configuration → Actions → Discovery actions in Zabbix web interface |
Security Warning: Always use SNMPv3 with authentication and encryption in production environments. SNMPv1 and SNMPv2c transmit community strings in plain text.
Next steps
- Set up advanced Zabbix monitoring templates and PostgreSQL backend
- Create advanced visualization dashboards with Grafana integration
- Configure email and SMS alerting with escalation rules
- Set up Zabbix proxy for distributed network monitoring
- Integrate Zabbix with network automation and orchestration tools
Automated install script
Run this to automate the entire setup
install.sh
#!/usr/bin/env bash
set -euo pipefail
# Colors for output
RED='\033[0;31m'
GREEN='\033[0;32m'
YELLOW='\033[1;33m'
BLUE='\033[0;34m'
NC='\033[0m' # No Color
# Global variables
SNMP_COMMUNITY="${1:-monitoring}"
ZABBIX_SERVER_IP="${2:-}"
LOG_FILE="/tmp/zabbix_snmp_install.log"
# Usage function
usage() {
echo "Usage: $0 [SNMP_COMMUNITY] [ZABBIX_SERVER_IP]"
echo " SNMP_COMMUNITY: SNMP community string (default: monitoring)"
echo " ZABBIX_SERVER_IP: IP address of this Zabbix server for ACLs"
echo ""
echo "Example: $0 monitoring 192.168.1.100"
exit 1
}
# Logging function
log() {
echo "$(date '+%Y-%m-%d %H:%M:%S') - $1" >> "$LOG_FILE"
echo -e "$1"
}
# Error handling
cleanup_on_error() {
log "${RED}[ERROR] Installation failed. Check $LOG_FILE for details${NC}"
exit 1
}
trap cleanup_on_error ERR
# Check if running as root or with sudo
check_privileges() {
if [[ $EUID -ne 0 ]]; then
log "${RED}[ERROR] This script must be run as root or with sudo${NC}"
exit 1
fi
}
# Detect distribution
detect_distro() {
log "${BLUE}[1/8] Detecting operating system...${NC}"
if [ -f /etc/os-release ]; then
. /etc/os-release
case "$ID" in
ubuntu|debian)
PKG_MGR="apt"
PKG_UPDATE="apt update"
PKG_INSTALL="apt install -y"
SNMP_CONFIG_DIR="/etc/snmp"
SNMP_PACKAGES="snmp snmp-mibs-downloader"
;;
almalinux|rocky|centos|rhel|ol|fedora)
PKG_MGR="dnf"
PKG_UPDATE="dnf update -y"
PKG_INSTALL="dnf install -y"
SNMP_CONFIG_DIR="/etc/snmp"
SNMP_PACKAGES="net-snmp net-snmp-utils"
;;
amzn)
PKG_MGR="yum"
PKG_UPDATE="yum update -y"
PKG_INSTALL="yum install -y"
SNMP_CONFIG_DIR="/etc/snmp"
SNMP_PACKAGES="net-snmp net-snmp-utils"
;;
*)
log "${RED}[ERROR] Unsupported distribution: $ID${NC}"
exit 1
;;
esac
log "${GREEN}Detected: $PRETTY_NAME${NC}"
else
log "${RED}[ERROR] Cannot detect operating system${NC}"
exit 1
fi
}
# Update package repositories
update_packages() {
log "${BLUE}[2/8] Updating package repositories...${NC}"
$PKG_UPDATE >> "$LOG_FILE" 2>&1
log "${GREEN}Package repositories updated${NC}"
}
# Install SNMP packages
install_snmp_packages() {
log "${BLUE}[3/8] Installing SNMP packages...${NC}"
$PKG_INSTALL $SNMP_PACKAGES >> "$LOG_FILE" 2>&1
# Install MIB packages for RHEL-based systems
if [[ "$PKG_MGR" =~ ^(dnf|yum)$ ]]; then
$PKG_INSTALL net-snmp-perl >> "$LOG_FILE" 2>&1 || true
fi
log "${GREEN}SNMP packages installed successfully${NC}"
}
# Configure SNMP client
configure_snmp_client() {
log "${BLUE}[4/8] Configuring SNMP client settings...${NC}"
# Create SNMP configuration directory if it doesn't exist
mkdir -p "$SNMP_CONFIG_DIR"
# Configure snmp.conf
cat > "$SNMP_CONFIG_DIR/snmp.conf" << EOF
# SNMP client configuration for Zabbix monitoring
# Generated on $(date)
# Enable MIB loading (comment out 'mibs :' line)
# mibs :
# Default community string
defCommunity $SNMP_COMMUNITY
# Default SNMP version
defVersion 2c
# Timeout and retry settings
timeout 5
retries 3
# Don't load all MIBs by default on RHEL systems
$(if [[ "$PKG_MGR" =~ ^(dnf|yum)$ ]]; then echo "mibs +ALL"; fi)
EOF
chmod 644 "$SNMP_CONFIG_DIR/snmp.conf"
chown root:root "$SNMP_CONFIG_DIR/snmp.conf"
# For Debian-based systems, enable MIBs
if [[ "$PKG_MGR" == "apt" ]]; then
if [ -f /etc/snmp/snmp.conf.dist ]; then
sed -i 's/^mibs :/#mibs :/' /etc/snmp/snmp.conf.dist 2>/dev/null || true
fi
fi
log "${GREEN}SNMP client configuration completed${NC}"
}
# Configure firewall rules
configure_firewall() {
log "${BLUE}[5/8] Configuring firewall for SNMP...${NC}"
if command -v ufw >/dev/null 2>&1 && ufw status | grep -q "Status: active"; then
# Ubuntu/Debian with UFW
ufw allow out 161/udp comment 'SNMP monitoring' >> "$LOG_FILE" 2>&1 || true
log "${GREEN}UFW rules configured${NC}"
elif command -v firewall-cmd >/dev/null 2>&1 && systemctl is-active firewalld >/dev/null 2>&1; then
# RHEL-based with firewalld
firewall-cmd --permanent --add-port=161/udp >> "$LOG_FILE" 2>&1 || true
firewall-cmd --reload >> "$LOG_FILE" 2>&1 || true
log "${GREEN}Firewalld rules configured${NC}"
else
log "${YELLOW}No active firewall detected or manual configuration required${NC}"
fi
}
# Test SNMP connectivity
test_snmp_connectivity() {
log "${BLUE}[6/8] Testing SNMP connectivity...${NC}"
# Test with localhost if available
if systemctl is-active snmpd >/dev/null 2>&1 || pgrep snmpd >/dev/null 2>&1; then
if snmpwalk -v2c -c public localhost 1.3.6.1.2.1.1.1.0 >/dev/null 2>&1; then
log "${GREEN}Local SNMP test successful${NC}"
else
log "${YELLOW}Local SNMP test failed - this is normal if no local SNMP agent is running${NC}"
fi
else
log "${YELLOW}No local SNMP agent running - skipping local test${NC}"
fi
log "${GREEN}SNMP tools are ready for network device monitoring${NC}"
}
# Create monitoring scripts and examples
create_monitoring_examples() {
log "${BLUE}[7/8] Creating monitoring examples and scripts...${NC}"
# Create examples directory
mkdir -p /opt/zabbix-snmp-examples
# Create test script
cat > /opt/zabbix-snmp-examples/test-snmp.sh << 'EOF'
#!/bin/bash
# SNMP connectivity test script
# Usage: ./test-snmp.sh <device_ip> [community]
DEVICE_IP="${1:-}"
COMMUNITY="${2:-monitoring}"
if [ -z "$DEVICE_IP" ]; then
echo "Usage: $0 <device_ip> [community]"
echo "Example: $0 192.168.1.1 public"
exit 1
fi
echo "Testing SNMP connectivity to $DEVICE_IP..."
echo "Community: $COMMUNITY"
echo ""
# Test system description
echo "System Description:"
snmpwalk -v2c -c "$COMMUNITY" "$DEVICE_IP" 1.3.6.1.2.1.1.1.0 2>/dev/null || echo "Failed"
echo ""
# Test system name
echo "System Name:"
snmpget -v2c -c "$COMMUNITY" "$DEVICE_IP" 1.3.6.1.2.1.1.5.0 2>/dev/null || echo "Failed"
echo ""
# Test interface table
echo "Interface Count:"
snmpwalk -v2c -c "$COMMUNITY" "$DEVICE_IP" 1.3.6.1.2.1.2.1.0 2>/dev/null || echo "Failed"
EOF
chmod 755 /opt/zabbix-snmp-examples/test-snmp.sh
chown root:root /opt/zabbix-snmp-examples/test-snmp.sh
# Create Cisco configuration example
cat > /opt/zabbix-snmp-examples/cisco-config-example.txt << EOF
! Example Cisco SNMP configuration
! Replace IP addresses and community strings as needed
configure terminal
! Configure SNMP community strings
snmp-server community $SNMP_COMMUNITY RO
! Configure SNMP location and contact
snmp-server location "Data Center"
snmp-server contact "admin@example.com"
! Enable SNMP traps
snmp-server enable traps snmp linkdown linkup
snmp-server enable traps config
EOF
if [ -n "$ZABBIX_SERVER_IP" ]; then
cat >> /opt/zabbix-snmp-examples/cisco-config-example.txt << EOF
! Configure SNMP host (Zabbix server)
snmp-server host $ZABBIX_SERVER_IP version 2c $SNMP_COMMUNITY
! Create access list for SNMP security
access-list 99 permit $ZABBIX_SERVER_IP
access-list 99 deny any log
snmp-server community $SNMP_COMMUNITY RO 99
EOF
fi
cat >> /opt/zabbix-snmp-examples/cisco-config-example.txt << EOF
! Save configuration
exit
write memory
EOF
chmod 644 /opt/zabbix-snmp-examples/cisco-config-example.txt
chown root:root /opt/zabbix-snmp-examples/cisco-config-example.txt
log "${GREEN}Monitoring examples created in /opt/zabbix-snmp-examples/${NC}"
}
# Final verification and information
final_verification() {
log "${BLUE}[8/8] Final verification and setup information...${NC}"
# Check if SNMP tools are working
if command -v snmpwalk >/dev/null 2>&1 && command -v snmpget >/dev/null 2>&1; then
log "${GREEN}✓ SNMP tools installed and available${NC}"
else
log "${RED}✗ SNMP tools not found${NC}"
return 1
fi
# Display configuration summary
echo ""
log "${GREEN}==================== INSTALLATION COMPLETE ====================${NC}"
log "${GREEN}SNMP monitoring setup completed successfully!${NC}"
echo ""
log "${YELLOW}Configuration Summary:${NC}"
log "• SNMP community string: $SNMP_COMMUNITY"
log "• SNMP configuration: $SNMP_CONFIG_DIR/snmp.conf"
log "• Test script: /opt/zabbix-snmp-examples/test-snmp.sh"
log "• Cisco config example: /opt/zabbix-snmp-examples/cisco-config-example.txt"
echo ""
log "${YELLOW}Next Steps:${NC}"
log "1. Configure SNMP on your network devices using the examples provided"
log "2. Test connectivity: /opt/zabbix-snmp-examples/test-snmp.sh <device_ip>"
log "3. Set up Zabbix network discovery rules in the web interface"
log "4. Import or create SNMP monitoring templates in Zabbix"
echo ""
log "${YELLOW}Security Notes:${NC}"
log "• Change default community strings in production"
log "• Use SNMPv3 for enhanced security when possible"
log "• Implement proper ACLs on network devices"
echo ""
log "Installation log: $LOG_FILE"
log "${GREEN}=============================================================${NC}"
}
# Main execution
main() {
log "${GREEN}Starting Zabbix SNMP monitoring configuration...${NC}"
check_privileges
detect_distro
update_packages
install_snmp_packages
configure_snmp_client
configure_firewall
test_snmp_connectivity
create_monitoring_examples
final_verification
log "${GREEN}Zabbix SNMP monitoring setup completed successfully!${NC}"
}
# Run main function
main "$@"Review the script before running. Execute with: bash install.sh