Presentation is loading. Please wait.

Presentation is loading. Please wait.

SNMPv2 OVERVIEW: LIMITATIONS OF SNMPv1 HISTORY OF SNMPv2 • HIERARCHIES

Published byEva Brander Modified over 5 years ago

Similar presentations

Presentation on theme: "SNMPv2 OVERVIEW: LIMITATIONS OF SNMPv1 HISTORY OF SNMPv2 • HIERARCHIES"— Presentation transcript:

1 SNMPv2 OVERVIEW: LIMITATIONS OF SNMPv1 HISTORY OF SNMPv2 • HIERARCHIES
• SECURITY SNMPv2 PROTOCOL OPERATIONS TRANSPORT INDEPENDENCE RFCs Copyright © 2001 by Aiko Pras These sheets may be used for educational purposes

2 LIMITATIONS OF SNMPv1 • UNDOCUMENTED RULES • LIMITED ERROR CODES
• LIMITED DATA TYPES • LIMITED NOTIFICATIONS • LIMITED PERFORMANCE • TRANSPORT DEPENDENCE • LACK OF HIERARCHIES • LACK OF SECURITY

3 HISTORY OF SNMPv2 SNMP security SMP SNMP/SMI v1 SMIv2 parties
1990 1991 1992 1993 1994 1995 1996 1997 1998 1999 2000 SNMP/SMI v1 SNMP SMP SNMPv2 parties security SMIv2 community SNMPv3 d r a f t s n u l DISMAN V 2 U e c * . p o

4 HIERARCHIES: ORIGINAL IDEA
MANAGER TO MANAGER (M2M) MIB • STANDARD MIB APPROACH • LIMITED FUNCTIONALITY • RUN-TIME BEHAVIOUR MUST BE DEFINED AT IMPLEMENTATION TIME

5 HIERARCHIES: STATUS WORK HAS MOVED TO A SEPARATE
DISTRIBUTED MANAGEMENT GROUP (DISMAN) THREE APPROACHES ARE STANDARDIZED: • MIB BASED (EXPRESSION, EVENT AND NOTIFICATION LOG MIB) • SCRIPT BASED (SCRIPT AND SCHEDULE MIB) • REMOTE OPERATIONS BASED (REMOPS MIB)

6 SNMPv2 SECURITY: WHAT HAPPENED?
APRIL 1993: PROPOSED STANDARD FOUR EDITORS SECURITY BASED ON PARTIES FIRST PROTOTYPES APPEARED SOON JUNE 1995: PROPOSED STANDARD REJECTED BY TWO OF THE ORIGINAL EDITORS! AUGUST 1995: GENERAL AGREEMENT THAT PARTY BASED MODEL WAS TOO COMPLEX! MANY NEW PROPOSALS APPEARED: • SNMPv2C: COMMUNITY BASED • SNMPv2U: USER BASED • ... 1997: NEW SNMPv3 WORKING GROUP WAS FORMED WITH NEW EDITORS

7 SNMPv2 PROTOCOL OPERATIONS

8 GET SIMILAR TO SNMPv1, EXCEPT FOR "EXCEPTIONS" POSSIBLE EXCEPTIONS:
• noSuchObject • noSuchInstance EXCEPTIONS ARE CODED WITHIN THE VARBINDS EXCEPTIONS DO NOT RAISE ERROR STATUS AND INDEX

9 GET EXAMPLES get(1) response(error-status => noError, 1.2 => noSuchObject) get(1.1) response(error-status => noError, => noSuchInstance) get(1.1.9) get(1.2) response(error-status => noError, => noSuchObject) get(1.4.0) get(1.1.0, 1.4.0) response(error-status => noError, => , => noSuchObject)

10 GET-NEXT SIMILAR TO SNMPv1, EXCEPT FOR "EXCEPTIONS"
POSSIBLE EXCEPTIONS: • endOfMibView EXAMPLE getNext(1.4.0) response(error-status => noError, => endOfMibView)

11 TO RETRIEVE A LARGE NUMBER OF VARBINDS
GET-BULK NEW IN SNMPv2 TO RETRIEVE A LARGE NUMBER OF VARBINDS IMPROVES PERFORMANCE!

12 GETBULK PERFORMANCE

13 GET-BULK getBulk REQUEST HAS TWO ADDITIONAL PARAMETERS:
• non-repeators • max-repetitions • THE FIRST N ELEMENTS (non-repeators) OF THE VARBIND LIST ARE TREATED AS IF THE OPERATION WAS A NORMAL getnext OPERATION • THE NEXT ELEMENTS OF THE VARBIND LIST ARE TREATED AS IF THE OPERATION CONSISTED OF A NUMBER (max-repetitions) OF REPEATED getnext OPERATIONS

14 GET-BULK

15 GET-BULK EXAMPLE getBulk(max-repetitions = 4; 1.1) response(
=> => printer-1 => => 2 ) getBulk(max-repetitions = 3; ; ; ) => 2; => 1; => 2 => 3; => 1; => 3 => 5; => 1; => 2 )

16 SET SIMILAR TO SNMPv1 CONCEPTUAL TWO PHASE COMMIT:
• PHASE 1: PERFORM VARIOUS CHECKS • PHASE 2: PERFORM THE ACTUAL SET MANY NEW ERROR CODES ARE DEFINED

17 NEW ERROR CODES FOR SETS

18 TRAP SNMPv1: SNMPv2: • MIBs MAY NOW INCLUDE NOTIFICATION TYPE MACROS
• COLD START • WARM START • LINK DOWN • LINK UP • AUTHETICATION FAILURE • EGP NEIGHBOR LOSS SNMPv2: • MIBs MAY NOW INCLUDE NOTIFICATION TYPE MACROS • FIRST TWO VARBINDS: sysUptime AND snmpTrapOID • USES SAME FORMAT AS OTHER PDUs

19 EXAMPLE OF NOTIFICATION TYPE MACRO
linkUp NOTIFICATION-TYPE OBJECTS {ifIndex} STATUS current DESCRIPTION "A linkUp trap signifies that the entity has detected that the ifOperStatus object has changed to Up" ::= {snmpTraps 4}

20 INFORM CONFIRMED TRAP ORIGINALLY TO INFORM A HIGHER LEVEL MANAGER
SAME FORMAT AS TRAP PDU POSSIBLE ERROR: tooBig

21 REPORT NEW PDU TO SIGNAL PROTOCOL EXCEPTIONS / ERRORS
NO SEMANTICS DEFINED IN SNMPv2

22 TRANSPORT DEPENDANCE SNMPv1: • UDP SNMPv2: • CLNS (OSI)
• DDP (APPLETALK) • IPX

23 SNMPv2 RFCs COMMUNICATION MODEL SECURITY MODEL - SNMPv2C:
• DRAFT STANDARD • RFC 1905, RFC1906 SECURITY MODEL - SNMPv2C: • COMMUNITY BASED SNMP • SAME ‘SECURITY MECHANISMS’ AS SNMPv1 • EXPERIMENTAL STATUS • RFC 1901 SECURITY MODEL - SNMPv2U: • USER BASED SECURITY (AUTHENTICATION / ENCRYPTION / ACCESS CONTROL) • RFC 1909, RFC1910 INFORMATION MODEL: • STANDARD • RFC2578, RFC2579, RFC2580

24 SNMPv2 - SUMMARY IMPROVED COMMUNICATION MODEL TWO SECURITY MODELS
• TRAPS HAVE SAME FORMAT AS OTHER PDUS • GET-BULK PDU • ADDITIONAL ERROR CODES FOR SETS TWO SECURITY MODELS • SNMPv2C: COMMUNITY BASED • SNMPv2U: USER BASED INDEPENDENCE OF UNDERLYING TRANSPORT • MIB-II SPLIT INTO MODULES SECURITY AND HIERARCHIES TO SNMPv3 & DISMAN IMPROVED INFORMATION MODEL (SMIv2) • ADDITIONAL DATA TYPES • TEXTUAL CONVENTIONS E.G. ROW STATUS • NOTIFICATIONS

Download ppt "SNMPv2 OVERVIEW: LIMITATIONS OF SNMPv1 HISTORY OF SNMPv2 • HIERARCHIES"

Similar presentations

Chapter 6 SNMPv2 6-1 Network Management: Principles and Practice

Chapter 6 SNMPv2 6-1 Network Management: Principles and Practice
1 Jim Binkley SNMPv2 Overview Network Mgmt/Sec.. 2 Jim Binkley Outline u intro u SMI u protocol (changes) u MIB (changes) u conclusion.

1 Jim Binkley SNMPv2 Overview Network Mgmt/Sec.. 2 Jim Binkley Outline u intro u SMI u protocol (changes) u MIB (changes) u conclusion.
SNMPv2 Network Management Spring 2014 Bahador Bakhshi CE & IT Department, Amirkabir University of Technology This presentation is based on the slides listed.

SNMPv2 Network Management Spring 2014 Bahador Bakhshi CE & IT Department, Amirkabir University of Technology This presentation is based on the slides listed.
DISTRIBUTED MANAGEMENT THREE APPROACHES ARE BEING DEFINED MIB BASED EXPRESSION MIB EVENT MIB NOTIFICATION LOG MIB SCRIPT BASED SCRIPT MIB SCHEDULE MIB.

DISTRIBUTED MANAGEMENT THREE APPROACHES ARE BEING DEFINED MIB BASED EXPRESSION MIB EVENT MIB NOTIFICATION LOG MIB SCRIPT BASED SCRIPT MIB SCHEDULE MIB.
SNMPv2 SECURITY: WHAT HAPPENED? APRIL 1993: PROPOSED STANDARD FOUR EDITORS SECURITY BASED ON PARTIES FIRST PROTOTYPES APPEARED SOON JUNE 1995: PROPOSED.

SNMPv2 SECURITY: WHAT HAPPENED? APRIL 1993: PROPOSED STANDARD FOUR EDITORS SECURITY BASED ON PARTIES FIRST PROTOTYPES APPEARED SOON JUNE 1995: PROPOSED.
EXTENSIBLE AGENTS FACILITATE THE EXTENSION OF SNMP AGENTS WITH NEW MIB MODULES SEPARATE SNMP PROTOCOL ENGINE FROM MIB INSTRUMENTATION ALLOW DYNAMIC ADDITION.

EXTENSIBLE AGENTS FACILITATE THE EXTENSION OF SNMP AGENTS WITH NEW MIB MODULES SEPARATE SNMP PROTOCOL ENGINE FROM MIB INSTRUMENTATION ALLOW DYNAMIC ADDITION.
SNMPv2 OVERVIEW: LIMITATIONS OF SNMPv1 HISTORY OF SNMPv2 HIERARCHIES SECURITY SNMPv2 PROTOCOL OPERATIONS TRANSPORT INDEPENDENCE RFCs Copyright © 2001 by.

SNMPv2 OVERVIEW: LIMITATIONS OF SNMPv1 HISTORY OF SNMPv2 HIERARCHIES SECURITY SNMPv2 PROTOCOL OPERATIONS TRANSPORT INDEPENDENCE RFCs Copyright © 2001 by.
SNMP GOALS UBIQUITY PCs AND CRAYs INCLUSION OF MANAGEMENT SHOULD BE INEXPENSIVE SMALL CODE LIMITED FUNCTIONALITY MANAGEMENT EXTENSIONS SHOULD BE POSSIBLE.

SNMP GOALS UBIQUITY PCs AND CRAYs INCLUSION OF MANAGEMENT SHOULD BE INEXPENSIVE SMALL CODE LIMITED FUNCTIONALITY MANAGEMENT EXTENSIONS SHOULD BE POSSIBLE.
Pertemuan 10 Perbedaan antar versi SNMP

Pertemuan 10 Perbedaan antar versi SNMP
1 SNMP Simple Network Management Protocol. 2 SNMP Overview Define mechanism for remote management of network devices (routers, bridges, etc.) Fundamental.

1 SNMP Simple Network Management Protocol. 2 SNMP Overview Define mechanism for remote management of network devices (routers, bridges, etc.) Fundamental.
Network Management Definition ...deploying and coordinating resources in order to plan, operate, administer, analyze, evaluate, design and expand communication.

Network Management Definition "...deploying and coordinating resources in order to plan, operate, administer, analyze, evaluate, design and expand communication.
SNMP PROTOCOL Copyright © 2001 by Aiko Pras These sheets may be used for educational purposes.

SNMP PROTOCOL Copyright © 2001 by Aiko Pras These sheets may be used for educational purposes.
COMP4690, by Dr Xiaowen Chu, HKBU

COMP4690, by Dr Xiaowen Chu, HKBU
SNMP PROTOCOL Copyright © 2001 by Aiko Pras These sheets may be used for educational purposes.

SNMP PROTOCOL Copyright © 2001 by Aiko Pras These sheets may be used for educational purposes.
1 Network Management and SNMP  What is Network Management?  ISO Network Management Model (FCAPS)  Network Management Architecture  SNMPv1 and SNMPv2.

1 Network Management and SNMP  What is Network Management?  ISO Network Management Model (FCAPS)  Network Management Architecture  SNMPv1 and SNMPv2.
SNMP & MIME Rizwan Rehman, CCS, DU. Basic tasks that fall under this category are: What is Network Management? Fault Management Dealing with problems.

SNMP & MIME Rizwan Rehman, CCS, DU. Basic tasks that fall under this category are: What is Network Management? Fault Management Dealing with problems.
SNMP Simple Network Management Protocol

SNMP Simple Network Management Protocol
2006-July-9IETF 661 What MIB Document Editors need to know Bert Wijnen

2006-July-9IETF 661 What MIB Document Editors need to know Bert Wijnen
SNMP (Simple Network Management Protocol)

SNMP (Simple Network Management Protocol)
Network Protocols UNIT IV – NETWORK MANAGEMENT FUNDAMENTALS.

Network Protocols UNIT IV – NETWORK MANAGEMENT FUNDAMENTALS.

Similar presentations

Ads by Google