SNMP Overview

10 minutes
Share the link to this page
Copied
  Completed
You need to have access to the item to view this lesson.
One-time Fee
$99.99
List Price:  $139.99
You save:  $40
€91.90
List Price:  €128.67
You save:  €36.76
£78.70
List Price:  £110.19
You save:  £31.48
CA$136.14
List Price:  CA$190.60
You save:  CA$54.46
A$149.21
List Price:  A$208.90
You save:  A$59.69
S$134.58
List Price:  S$188.42
You save:  S$53.84
HK$780.18
List Price:  HK$1,092.29
You save:  HK$312.10
CHF 90.89
List Price:  CHF 127.25
You save:  CHF 36.36
NOK kr1,073.95
List Price:  NOK kr1,503.58
You save:  NOK kr429.62
DKK kr686.39
List Price:  DKK kr960.97
You save:  DKK kr274.58
NZ$162.99
List Price:  NZ$228.20
You save:  NZ$65.20
د.إ367.26
List Price:  د.إ514.18
You save:  د.إ146.92
৳11,707.96
List Price:  ৳16,391.62
You save:  ৳4,683.65
₹8,329.22
List Price:  ₹11,661.24
You save:  ₹3,332.02
RM468.70
List Price:  RM656.20
You save:  RM187.50
₦146,985.30
List Price:  ₦205,785.30
You save:  ₦58,800
₨27,706.17
List Price:  ₨38,789.74
You save:  ₨11,083.57
฿3,624.43
List Price:  ฿5,074.35
You save:  ฿1,449.91
₺3,224.01
List Price:  ₺4,513.75
You save:  ₺1,289.73
B$510.40
List Price:  B$714.59
You save:  B$204.18
R1,807.25
List Price:  R2,530.23
You save:  R722.97
Лв179.86
List Price:  Лв251.81
You save:  Лв71.95
₩135,425.45
List Price:  ₩189,601.05
You save:  ₩54,175.60
₪370.41
List Price:  ₪518.60
You save:  ₪148.18
₱5,770.97
List Price:  ₱8,079.59
You save:  ₱2,308.62
¥15,565.94
List Price:  ¥21,792.94
You save:  ¥6,227
MX$1,660.69
List Price:  MX$2,325.03
You save:  MX$664.34
QR362.75
List Price:  QR507.87
You save:  QR145.11
P1,354.73
List Price:  P1,896.68
You save:  P541.94
KSh13,098.69
List Price:  KSh18,338.69
You save:  KSh5,240
E£4,690.53
List Price:  E£6,566.93
You save:  E£1,876.40
ብር5,727.42
List Price:  ብር8,018.62
You save:  ብር2,291.20
Kz84,733.22
List Price:  Kz118,629.90
You save:  Kz33,896.68
CLP$89,440.82
List Price:  CLP$125,220.73
You save:  CLP$35,779.90
CN¥722.24
List Price:  CN¥1,011.17
You save:  CN¥288.92
RD$5,826.59
List Price:  RD$8,157.46
You save:  RD$2,330.87
DA13,436.03
List Price:  DA18,810.98
You save:  DA5,374.95
FJ$222.79
List Price:  FJ$311.92
You save:  FJ$89.12
Q776.81
List Price:  Q1,087.56
You save:  Q310.75
GY$20,917.88
List Price:  GY$29,285.87
You save:  GY$8,367.99
ISK kr13,827.61
List Price:  ISK kr19,359.21
You save:  ISK kr5,531.60
DH990.33
List Price:  DH1,386.51
You save:  DH396.17
L1,760
List Price:  L2,464.07
You save:  L704.07
ден5,654.52
List Price:  ден7,916.55
You save:  ден2,262.03
MOP$803.51
List Price:  MOP$1,124.95
You save:  MOP$321.43
N$1,819.78
List Price:  N$2,547.77
You save:  N$727.98
C$3,674.63
List Price:  C$5,144.63
You save:  C$1,470
रु13,329.38
List Price:  रु18,661.67
You save:  रु5,332.28
S/371.45
List Price:  S/520.05
You save:  S/148.59
K388.01
List Price:  K543.23
You save:  K155.22
SAR374.96
List Price:  SAR524.96
You save:  SAR150
ZK2,538.86
List Price:  ZK3,554.51
You save:  ZK1,015.64
L457.57
List Price:  L640.62
You save:  L183.04
Kč2,271.57
List Price:  Kč3,180.29
You save:  Kč908.72
Ft35,609.88
List Price:  Ft49,855.26
You save:  Ft14,245.38
SEK kr1,071.59
List Price:  SEK kr1,500.27
You save:  SEK kr428.67
ARS$88,666.13
List Price:  ARS$124,136.13
You save:  ARS$35,470
Bs690.83
List Price:  Bs967.19
You save:  Bs276.36
COP$380,678.73
List Price:  COP$532,965.46
You save:  COP$152,286.72
₡51,169.76
List Price:  ₡71,639.71
You save:  ₡20,469.95
L2,462.78
List Price:  L3,448
You save:  L985.21
₲749,130.70
List Price:  ₲1,048,812.96
You save:  ₲299,682.25
$U3,853.49
List Price:  $U5,395.05
You save:  $U1,541.55
zł392.01
List Price:  zł548.83
You save:  zł156.82
Already have an account? Log In

Transcript

Alright, here we go again. I said MP overview. Alright. SNMP enabled network devices share information about itself and its activities. They complete system. SNMP system consists of what a manager and an agent.

Okay? Imagine an agent or a management system that uses SNMP it polls and receives data from any number of network devices. SNMP takes information from anybody out there, okay. SNMP agent processor that runs the network device being monitored, all types of data are gathered by the device itself. You can read it yourself, okay? So you have a manner you have a manager and you have an agent SNMP I don't this is not a big deal.

You're gonna be using it and a third party application anyway in the real world. But know that you do have a manager and an agent. Keep that in mind. It asks you any questions here. They will SNMP has a management information base your MIB not men and black, but the management information base. He switches automatically collects data about itself, its resources and its interface the information is stored in the MIB when you purchase your switches or your routers, all right, make sure you have the up to date MIB.

Why is that because you have something called users or user object identifier for users whatever remember Object Identifier or the identifiers or all ID, object identifiers. Well, that is everything in your, in your in your switch everything in your router. Everything you see every line you see there has an number that's attached to it, which is in your MIB. The syslog messages that pop up I everything that you see on that screen has an ID, and ID is a screwed up number. It looks like a screwed up IP address. Okay, is it 10 dot 911 dot 125 dot one?

Yeah. It's you don't need to remember IDs. So don't worry about it. Okay. But that's how everything is organized in all IDs when you're getting this information. That's where you're gonna look at all right.

And it's based on a tree. So when you go into your MIB, right, because you set up a community string and all that good stuff, and you start, you know, expanding that tree because you're looking at certain things, and they get the information that you're looking for. And there they are doing things manually through, you know, godforsaken old equipment, but we don't use old equipment, do it, we use third party applications. And I keep saying that, because there's a reality. Okay, looking at the MIB data. SNMP manager must send SNMP poll or query to switch and the port number that you need to look at is 161.

That's the SNMP agent using UDP 161. Repeating that for a reason SNMP agent using UDP 161, when the SNMP manager sends SNMP poll or query to the switch, because the switch as the agent, right, the SNMP server or manager will send that to the switch via that UDP port. Okay. Now the commands obviously, it's gonna be something that you download, you can type it if you're not see ally or what have you get requests, get next request, get bulk requests or set requests. Again, the value GET request is just a value one particular ID All right, and then maybe get next request. Obviously, again, the next request that you're that's in line, get bulk, you're getting a whole bunch of information at once.

And then you saw the request, a specific MIB variable needs to be set to that value. Okay, so you said The request that you want to get so these commands Okay, no Nolan just northern. I mean they're pretty much self explanatory. Maybe not this one, you know set request and specific MIB variable, but you don't get bulk Come on, you're getting more than one information, get the next request after you know, so it's pretty much self explanatory. Okay. Now, this is why I stressed the 161.

Member the manager polls Aquarius and says the information to the switch. The agent is listening for that and UDP port 161 SNMP agents can send on solicited alerts to notify the SNMP manager or real time events at any time. It's done over UDP port 162. What do you need to remember about that? What do you need to remember on solicited alerts? All right coming from agents to the manager using UDP port 162.

That sounds like a question to me. Okay. I will put it in. Okay. So who uses port once that UDP once I see one or 162 unsolicited? Or is it the one that's being pulled a query?

You know, how are they want to phrase it, but pay attention to that. You can use SNMP traps the way news of any event is sent without any acknowledgement that the trap has been received or inform request. It replaces a particular command news of an American sent to SNMP manager and the manager is required to acknowledge the receipt by echoing the request back to the agent. This is an actual command. It's an actual command. Now we are different versions of SNMP.

Nobody uses SNMP version one anymore. That is old school security issues. Do To committee strings, read write our O's, our Ws write SNMP version to see, there's a 32 bit, there's a 64 bit counter, but it doesn't address the security issue, you still have the read only, or the rewrite. Okay? You can have more requests that something that was implemented in there, bulk requests are also part of this particular update. But again, it doesn't look into the security issues.

Now, with SNMP, v3, that guy is looking at authentication, user groups, you can put groups into different levels. So it really does an awesome job and securing your SNMP information because not everybody can just run it, you have to be you have to be authenticated to a particular group. And depending on the group that you're in, you're in a certain level, so you only do or look at certain things. So SNMP version three is the way to go. Obviously, this is the most basic One that everybody uses, but this is the way to go SNMP version three, because that has the security, the urinate goes by Guy, you're shoving everybody into user groups. And those groups are setting to different levels of types of security or where you can look at so definitely, this is what you want to do SNMP version one nobody uses and they do the work for them.

Alright, naming scheme you or enlighten them. Okay? group name, no authentication, no privilege, as I mean packets are neither authenticated or encrypted. So we definitely don't want that right. The groups that were resetting, authentication, no privileged. SNMP packets are authenticated, but are not encrypted.

And then authentication and privilege. SNMP packets are authenticated and encrypted. Definitely you won't be part of that particular group name, right? Because they're the ones that are completely secure. Right? So it all depends Again, here we're doing a comparison of SNMP versions of SNMP.

Version one, you see the SNMP, version one and v2, they both use community string. So there's no real security. Somebody figures out the security goes here that can be read and write read only. Now, you should always put read only before rewrite, people can then actually write and change things. You don't want to do that. So you'll be very careful.

At least you do have a different here. All right, the features of it were version one is a 32 bit within a 64. And this also has bulk requests an informed request messages as well. Okay, so this is why this becomes a little bit more popular, but again, it doesn't address security issues. SNMP version three. Now, the other indication user name, and look at the type of data protection.

We're talking about MD five shop ds 3ds as 120 Oh, five to 256 bit encryption. So we do have security when it comes to SNMP version three, because it's adding authentication and data integrity plus encryption. So you choose, which is better, right? You want to use the latest and greatest anyway. So SNMP version three, no, the different versions. No, the different versions.

No, who uses a community string and who really has a security? Okay, that is what you need to know. No other group man, there's only three of them. There's only three of them. I mean, and they speak just look at this. You know what to say there's no oh my god.

There's no authentication here. And there's no encryption. Here. There's authentication, but there's no encryption, or here we have authentication and encryption. So easy to understand. So these are the tables that you really need to look at.

Need to understand and the nope the ports ports. UDP port 161 is what that's the one that's being is is getting the information from the manager that's polling or querying the devices for UDP 62. It's sending the manager information. Okay, unsolicited. That's the key word on solicited messages. So these are little things I'm telling you to look at.

They're going to be very important. Of course, you do need an agent and you need a manager in order for SNMP more. Okay, that's SNMP to the next

Sign Up

Share

Share with friends, get 20% off
Invite your friends to LearnDesk learning marketplace. For each purchase they make, you get 20% off (upto $10) on your next purchase.