The SR OS SNMP agent can be reached via a VPRN interface address when configure>service>vprn>snmp>access is enabled.
Using an SNMP community defined inside the VPRN context (configure>service>vprn>snmp>community) or a user associated with an SNMPv3 USM access group defined in the system context (configure>system>snmp>access) allows access to a subset of the full SNMP data model. This subset can be seen in the output of show system security view "vprn-view".
Using an SNMP community defined in the system context (configure>system> security>snmp>community) allows access to the full SNMP data model (unless otherwise restricted used SNMP views).
Alternatively, grt leaking and a Base routing IP address can be used (along with an SNMP community defined at the system context) to get access to the entire SNMP data model (see the allow-local-management command).
A network manager using SNMP, cannot discover or fully manage an SR OS router using an SNMP community defined inside the VPRN context. Full SNMP access requires using one of the approaches described above.
SNMP communities configured under a VPRN are associated with the SNMP context "vprn". For example, walking the ifTable (IF-MIB) using the community configured for VPRN 5 returns counters and status for interfaces in VPRN 5 only.
To access VPRN ifTable entries, use the community string that is defined inside that VPRN context (config>service>vprn>snmp>community).