Presentation is loading. Please wait.

Presentation is loading. Please wait.

1. Introduction Objectives SNMP History IETF Standards

Published byThomas Olofsson Modified over 5 years ago

Similar presentations

Presentation on theme: "1. Introduction Objectives SNMP History IETF Standards"— Presentation transcript:

1 1. Introduction Objectives SNMP History IETF Standards
Field of Applications RMON NetFlow

2 What is Network Management ?
Performance analysis IP-handling (DHCP/DNS) Configuration of network elements Fault detection Monitoring Traffic analysis Security Provisioning

3 Network Management Areas according to ISO 7498-4 F – Fault Management
C – Configuration Management A – Accounting Management P – Performance Management S – Security Management

4 Why Network Management ?
Growing networks Demand for accessibility Information spread out

5 Why SNMP ? Multiple Vendors Different kind of equipments Cisco HP
Extreme 3Com Ericsson D-Link Microsoft Different kind of equipments

6 Successful ? Troubleshooting Backup Configuration Performance
Monitoring SNMP Web/Http Telnet/CLI FTP/Script

7 Alternatives to SNMP DMTF Distributed Management Task Force
In the beginning PC (DMI) CIM; data model (WMI) CLI-script CLI-based script TCL, Telnet, Perl, Python etc. CORBA Common Object Request Broker Architecture Telecom worlds WS Web Services Methods, WDSL, XML, SOAP

8 Can we use the Web interface today?
Its hard to be a vendor SNMP Agent Telnet Server Web Server FTP Server (CORBA) Web Services? Can we use the Web interface today?

9 More focus on funtionality
Do we have any problems today? One single interace (SNMP) Funtionality

10 SNMP – History 1(6) 1987 Three proposals
HEMS (High-level-Entity Management System) SGMP (Simple Gateway Monitoring Protocol) CMOT (CMIP over TCP) 1988 Feb IAB is setting up a working group Instructions; a solution now 1988 Apr Report from the working group SNMP in the short perspective CMOT in the long perspective

11 SNMP – History 2(6) 1988 Aug Proposal to SNMP version 1
RFC 1065: SMI (the structure) RFC 1066: MIB (a number of objects) RFC 1067: SNMP (the protocol) 1990 May SNMPv1 raised to Standard/Recommended RFC 1155: new SMI RFC 1156: new MIB RFC 1157: new SNMP

12 SNMP – History 3(6) 1991 Mar Introducing Traps
RFC 1212: concise MIB format RFC 1215: Trap format 1991 Aug MIB-II raised to Standard/Recommended RFC 1213: extention of MIB (RFC 1156) SNMPv1 RFC 1155, 1212, 1215: The structure (SMI) RFC 1157: The protocol (SNMP) RFC 1213: Managed Objects (MIB-II)

13 SNMP – History 4(6) 1993 Apr Proposal to SNMP version 2
RFC 1996 Jan SNMPv2 Draft Standard/Elective RFC 1998 Jan Proposal to SNMP version 3 RFC

14 SNMP – History 5(6) 1999 Apr SNMPv3 Draft Standard/Elective
RFC 1999 Apr SMIv2 Standard/Recommended RFC

15 SNMP – History 6(6) 2002 Mar SNMPv3 Standard/Recommended
RFC 3410: Introduction RFC 3411: Architecture RFC 3412: Message Processing RFC 3413: SNMP Applications RFC 3414: Security (USM) RFC 3415: Access Control (VACM) RFC 3416: Protocol Operations RFC 3417: Transport Mappings RFC 3418: MIBs 2003 Nov SNMPv1 Historical

16 SNMP versions – The Protocol 1(2)
SNMPv1 - RFC 1157 (historical) - security based on ”community names” - 5 protocol operations SNMPv2p - RFC 1441, 1445, 1446, 1448, 1449 (historical) - security based on ”parties” - 2 new protocol operations SNMPv2c - RFC 1901, 1905, 1906 (exp. + draft standard)

17 SNMP versions – The Protocol 2(2)
SNMPv2u - RFC 1905, 1906, 1909, 1910 (draft std. + exp.) - security based on ”users” - 2 new protocol operations SNMPv2* - Not def. in RFC’s (experimental) SNMPv3 - RFC (standard)

18 SNMP versions – The Structure
SMIv1 - RFC 1155, 1212, 1215 (standard) SMIv2 - RFC (standard) - extended definitions - table handling - one new data type

19 The Standardisation Process 1(4)
STATUS Req. Rec. Elec. Lim. Not Standard Draft Std. Prop. Std. Inform Experim Historical S T A E IESG IETF WG

20 The Standardisation Process 2(4)
STATUS Req. Rec. Elec. Lim. Not Standard Draft Std. Prop. Std. Inform Experim Historical 1990 S T A E SNMPv1 1989 1988 2003 IESG IETF WG

21 The Standardisation Process 3(4)
STATUS Req. Rec. Elec. Lim. Not Standard Draft Std. Prop. Std. Inform Experim Historical S T A E SNMPv2 1996 1993 IESG IETF WG

22 The Standardisation Process 4(4)
STATUS Req. Rec. Elec. Lim. Not Standard Draft Std. Prop. Std. Inform Experim Historical 2002 S T A E SNMPv3 1999 1998 IESG IETF WG

23 IETF Working Groups Application Area Routing Area General Area
Security Area Internet Area Transport Area Operations and Management Area Real-time App. Area

24 Operations and Management 1(2)
Area Director(s): Dan Romascanu, Ronald Bonica ADSL MIB Benchmarking Methodology Control And Provisioning of Wireless Access Points Diameter Maintenance and Extensions Domain Name System Operations Global Routing Operations IP Flow Information Export MBONE Deployment Network Configuration

25 Operations and Management 2(2)
cont. NETCONF Data Modeling Language Operations and Management Area Working Group Operational Security Capabilities for IP Network Infrastructure Performance Metrics for Other Layers RADIUS EXTensions IPv6 Operations

26 SNMP Managers Flat Organization NMS Hierarcial Organization NMS

27 SNMP Agents SNMPv1 SNMPv1/v2c SNMPv1/v2c/v3 NMS Proxy Agent Extensible
Master Agent Sub Agent MIB - SMUX, RFC 1227 - DPAPI, RFC 1592 - EMANATE, SNMP Research - Microsoft SNMP API - AgentX, RFC 2741 NMS

28 AgentX RFC 2741 Master Agent NMS Sub Agent
MIB - initiate session to master-agent - register their MIB-area - sends and receives AgentX messages - MIB instrumentation - initiate Trap events NMS - accept session from sub-agent - accept registration of MIB-area - supports adm. MIB-objects (RFC 2742) - manage access control of MIB-views - sends and receives SNMP messages RFC 2741

29 Monitoring ”The Real World” NMS

30 Event Triggering 1(2) Edge Triggered Events disk usage T T 90%
event threshold 75% rearm threshold time

31 Event Triggering 2(2) Level Triggered Events disk usage T T T 90%
event level time clock period

32 Fault Detection NMS

33 Configuration NMS

34 Trend Reports RMON NMS

35 Remote Monitoring (RMON)
Control Table RMON  DataSource BucketsReq Interval 1 50  30 50 1800 Result Table  Index Packets BrdCast MultiCast CRC 1 24010 25   5  2 2 14034  26  3 12035  4 29120  30  5 35023   Index Packets BrdCast MultiCast CRC 1 24010 25   5  2 2 14034  26  3 12035  4 29120  30  5 35023  RMON-1 RMON-2 OSI

36 RMON-1 Common in Switches Ethernet statistics (1) Ethernet history (2)
Alarm (3) Host (4) HostTopN (5) Matrix (6) Filter (7) Packet capture (8) Event (9) TokenRing (10) Common in Switches Ethernet statistics (1) Ethernet history (2) Alarm (3) Event (9)

37 RMON-2 Protocol directory (11) Protocol distribution (12)
Address mapping (13) Network layer host (14) Network layer matrix (15) Application layer host (16) Application layer matrix (17) User history (18) Probe configuration (19)

38 NetFlow Traffic analysis without probes Developed by Cisco
IOS 12.03(T) (1999) Network level (routers) Proposed IETF Standard RFC 3955 (Oct 2004)

39 What is a Flow ? 7 unique keys Source IP address
Destination IP address Source port Destination port Layer 3 protocol type TOS byte (DSCP) Input logical interface (ifIndex) Traffic Enable NetFlow UDP Export Packets Application GUI

40 NetFlow Benefits Service Provider Enterprise Peering Arrangements
Network Planning Traffic Engineering Accounting and Billing Security Monitoring Enterprise Internet Access Monitoring User Monitoring Application Monitoring Security Monitoring

41 NetFlow versions Cisco (and others) IETF (IPFIX) 1 Original
5 Standard and most common 7 Specific to 6500 and 7600 switches 8 Aggregation schemes IETF (IPFIX) 9 Flexible, extensible export format

42 Data Export Header Sequence number Record count Version number NetFlow Cache Expired flows are grouped together into “Netflow Export” UDP datagrams for export to a collector UDP is used for speed and simplicity

43 Flow Ageing When is a flow expired?
Transport is completed (TCP FIN or RST) After 15 sec of traffic inactivity (the only way for UDP). The inactive timer After 30 min of traffic activity. The active timer The cache is becoming full

44 NetFlow Summary Not a switching path 7 flow identifiers
For ingress traffic only A flow is unidirectional IP unicast only

Download ppt "1. Introduction Objectives SNMP History IETF Standards"

Similar presentations

Top-Down Network Design Chapter Nine Developing Network Management Strategies Copyright 2010 Cisco Press & Priscilla Oppenheimer.

Top-Down Network Design Chapter Nine Developing Network Management Strategies Copyright 2010 Cisco Press & Priscilla Oppenheimer.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 8: Monitoring the Network Connecting Networks.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 8: Monitoring the Network Connecting Networks.
Overview of Network Management. Outline Describe responsibilities of a network manager Define network management vocabulary Discuss network management.

Overview of Network Management. Outline Describe responsibilities of a network manager Define network management vocabulary Discuss network management.
REMOTE MONITORING RMON1 (RFC 1757 - DRAFT) TOKEN RING EXTENSIONS TO RMON (RFC 1513 - PROPOSED) RMON2 (RFC 2021 - PROPOSED) SMON (RFC 2613 - PROPOSED) Copyright.

REMOTE MONITORING RMON1 (RFC DRAFT) TOKEN RING EXTENSIONS TO RMON (RFC PROPOSED) RMON2 (RFC PROPOSED) SMON (RFC PROPOSED) Copyright.
MJ04/07041 Session 04 Arsitektur SNMP Organization Model Adapted from Network Management: Principles and Practice © Mani Subramanian 2000 and solely used.

MJ04/07041 Session 04 Arsitektur SNMP Organization Model Adapted from Network Management: Principles and Practice © Mani Subramanian 2000 and solely used.
SNMP & MIME Rizwan Rehman, CCS, DU. Basic tasks that fall under this category are: What is Network Management? Fault Management Dealing with problems.

SNMP & MIME Rizwan Rehman, CCS, DU. Basic tasks that fall under this category are: What is Network Management? Fault Management Dealing with problems.
Guide to TCP/IP, Third Edition Chapter 11: Monitoring and Managing IP Networks.

Guide to TCP/IP, Third Edition Chapter 11: Monitoring and Managing IP Networks.
Nov 9, 2006 IT 4333, Fall 20061 IT 4333 – Network Admin & Management RMON From: Byte Magazine, Javvin.com, Cisco.com, Wikipedia, and IETF.

Nov 9, 2006 IT 4333, Fall IT 4333 – Network Admin & Management RMON From: Byte Magazine, Javvin.com, Cisco.com, Wikipedia, and IETF.
Remote Monitoring and Desktop Management Week-7. SNMP designed for management of a limited range of devices and a limited range of functions Monitoring.

Remote Monitoring and Desktop Management Week-7. SNMP designed for management of a limited range of devices and a limited range of functions Monitoring.
1 Network Management Computer Networks. 2 OSI Network Management Model Performance Management e.g. utilization Fault Management e.g. SNMP traps Configuration.

1 Network Management Computer Networks. 2 OSI Network Management Model Performance Management e.g. utilization Fault Management e.g. SNMP traps Configuration.
Chapter 2  Overview of Network Management 1 Chapter 2 Overview  Why is network mgmt necessary?  Network managers job  Network management vocabulary.

Chapter 2  Overview of Network Management 1 Chapter 2 Overview  Why is network mgmt necessary?  Network managers job  Network management vocabulary.
SNMP In Depth. SNMP u Simple Network Management Protocol –The most popular network management protocol –Hosts, firewalls, routers, switches…UPS, power.

SNMP In Depth. SNMP u Simple Network Management Protocol –The most popular network management protocol –Hosts, firewalls, routers, switches…UPS, power.
Experiences in Analyzing Network Traffic Shou-Chuan Lai National Tsing Hua University Computer and Communication Center Nov. 20, 2003.

Experiences in Analyzing Network Traffic Shou-Chuan Lai National Tsing Hua University Computer and Communication Center Nov. 20, 2003.
Network Protocols UNIT IV – NETWORK MANAGEMENT FUNDAMENTALS.

Network Protocols UNIT IV – NETWORK MANAGEMENT FUNDAMENTALS.
NetfFow Overview SANOG 17 Colombo, Sri Lanka. Agenda Netflow –What it is and how it works –Uses and Applications Vendor Configurations/ Implementation.

NetfFow Overview SANOG 17 Colombo, Sri Lanka. Agenda Netflow –What it is and how it works –Uses and Applications Vendor Configurations/ Implementation.
SNMP Simple Network Management Protocol Team: Matrix CMPE-208 Fall 2006.

SNMP Simple Network Management Protocol Team: Matrix CMPE-208 Fall 2006.
Network Flow-Based Anomaly Detection of DDoS Attacks Vassilis Chatzigiannakis National Technical University of Athens, Greece TNC.

Network Flow-Based Anomaly Detection of DDoS Attacks Vassilis Chatzigiannakis National Technical University of Athens, Greece TNC.
1 © 2004, Cisco Systems, Inc. All rights reserved. Chapter 4 Routing Fundamentals and Subnets/ TCP/IP Transport and Application Layers.

1 © 2004, Cisco Systems, Inc. All rights reserved. Chapter 4 Routing Fundamentals and Subnets/ TCP/IP Transport and Application Layers.
Basic tasks that fall under this category are: What is Network Management? Fault Management Dealing with problems and emergencies in the network (router.

Basic tasks that fall under this category are: What is Network Management? Fault Management Dealing with problems and emergencies in the network (router.
1 Introduction to Internet Network Management Mi-Jung Choi Dept. of Computer Science KNU

1 Introduction to Internet Network Management Mi-Jung Choi Dept. of Computer Science KNU

Similar presentations

Ads by Google