Presentation is loading. Please wait.

Presentation is loading. Please wait.

SNMP Simple Network Management Protocol. SNMP and UDP Uses UDP as transport protocol Connectionless Connectionless Port 161 for sending and receiving.

Published byIlene Alexander Modified over 9 years ago

Similar presentations

Presentation on theme: "SNMP Simple Network Management Protocol. SNMP and UDP Uses UDP as transport protocol Connectionless Connectionless Port 161 for sending and receiving."— Presentation transcript:

1 SNMP Simple Network Management Protocol

2 SNMP and UDP Uses UDP as transport protocol Connectionless Connectionless Port 161 for sending and receiving requests and answers Port 161 for sending and receiving requests and answers Port 162 for sending traps and alerts from managed devices Port 162 for sending traps and alerts from managed devices

3 SNMP Communities (1/2) Used by SNMPv1 & SNMPv2 Used to establish trust between manager and agent Three communities Read Only Read Only Read Write Read Write Trap Trap

4 SNMP Communities (2/2) Community strings Essentially passwords Essentially passwords Defaults Defaults Read Only = “public” Read Write = “private” Should be changed before going live Should be changed before going live Sent in clear text! Sent in clear text! How can security risk be limited? How can security risk be limited?

5 Structure of Management Information (1/17) SMI version 1 RFC 1155 RFC 1155 Defines how managed objects are named Defines how managed objects are named Defines managed objects data types Defines managed objects data types SMI version 2 RCF RCF Enhancements for SNMPv2 Enhancements for SNMPv2

6 Structure of Management Information (2/17) Definition of managed objects Name or OID Name or OID Uniquely identifies a managed object Two forms Human readable Human readable Numeric Numeric

7 Structure of Management Information (3/17) Definition of managed objects (cont.) Type and Syntax Type and Syntax Defined using a subset of Abstract Syntax Notation One (ASN.1) ASN.1 Way of specifying how data is represented and transmitted between managers and agents Way of specifying how data is represented and transmitted between managers and agents Machine independent Machine independent

8 Structure of Management Information (4/17) Definition of managed objects (cont.) Encoding Encoding Single instance of a managed object is encoded into a string of octets using Basic Encoding Rules (BER) BER Defines how objects are encoded and decoded Defines how objects are encoded and decoded

9 Structure of Management Information (5/17) Naming OIDs Objects are organized in a treelike hierarchy Objects are organized in a treelike hierarchy OIDs are made up of a series of integers separated by periods (.) OIDs are made up of a series of integers separated by periods (.) Human readable names translate the numbers into text Human readable names translate the numbers into text

10 Structure of Management Information (6/17) 1.3.6.1.2.1.1.6.0 iso.org.dod.internet.mgmt.mib- 2.system.sysLocation.0 iso.org.dod.internet.mgmt.mib- 2.system.sysLocation.0

11 org (3) dod (6) internet (1) mgmt (2)experimental (3) private (4) directory (1) mib-2 (1) tcp (6) udp (7) egp (8) cmot (9) transmission (10) snmp (11) system (1) interfaces (2) address translation (3) ip (4) icmp (5)... SUN (42) microsoft(311) apple (63) enterprise (1) cisco (9) IBM (2) HP (11) proteon (1) Internet Activities Board (IAB) AdministeredVendor Administered wellfleet (18) unassigned (9118) iso (1) Naming OIDs

12 Structure of Management Information (8/17)

13 Structure of Management Information (9/17)

14 Structure of Management Information (10/17) Defining OIDs Syntax attribute provides for definition of managed objects through a subset of ASN.1 Syntax attribute provides for definition of managed objects through a subset of ASN.1 Datatypes define what kind of information a managed object can hold Datatypes define what kind of information a managed object can hold Similar to datatypes used in programming Similar to datatypes used in programming

15 Structure of Management Information (11/17) SNMPv1 Datatypes Integer (32 bit) String Counter (32 bit) OID NULL (not used) Sequence Sequence of IpAddressNetworkAddressGaugeTimeTicksOpaque

16 Structure of Management Information (12/17) MIB-1

17 Structure of Management Information (13/17) Extensions to the SMI in V2 Integer32 – same as INTEGER Integer32 – same as INTEGER Counter32 – same as COUNTER Counter32 – same as COUNTER Gauge32 – same as GAUGE Gauge32 – same as GAUGE Unsigned32 – decimal value Unsigned32 – decimal value 0 to 2 32 – 1, inclusive Counter64 – similar to Counter32 Counter64 – similar to Counter32 Max value of 18,556,744,073,709,551,615 BITS – An enumeration of non-negative bits BITS – An enumeration of non-negative bits

18 Structure of Management Information (14/17) MIB-II

19 Structure of Management Information (15/17) MIB-II (cont.) Currently, there are 108 subordinates or object groups under MIB-2. Currently, there are 108 subordinates or object groups under MIB-2. These are the result of specific RFC’s for various protocols, etc. These are the result of specific RFC’s for various protocols, etc.

20 Structure of Management Information (16/17) MIB-II (cont.)

21 Structure of Management Information (17/17) MIB-II (cont.) System (1.3.6.1.2.1.1) – Objects pertaining to system operation System (1.3.6.1.2.1.1) – Objects pertaining to system operation Uptime, system contact, system name interfaces (1.3.6.1.2.1.2) – interface information interfaces (1.3.6.1.2.1.2) – interface information at (1.3.6.1.2.1.3) – address translation at (1.3.6.1.2.1.3) – address translation ip (1.3.6.1.2.1.4) – ip information, including routing ip (1.3.6.1.2.1.4) – ip information, including routing icmp (1.3.6.1.2.1.5) – icmp information icmp (1.3.6.1.2.1.5) – icmp information tcp (1.3.6.1.2.1.6) – tcp information, including connection state tcp (1.3.6.1.2.1.6) – tcp information, including connection state udp (1.3.6.1.2.1.7) – udp statistics udp (1.3.6.1.2.1.7) – udp statistics egp (1.3.6.1.2.1.8) – egp statistics, including neighbor table egp (1.3.6.1.2.1.8) – egp statistics, including neighbor table transmission (1.3.6.1.2.1.10) – no objects defined (other sub- trees) transmission (1.3.6.1.2.1.10) – no objects defined (other sub- trees) snmp (1.3.6.1.2.1.11) – performance of snmp implementation snmp (1.3.6.1.2.1.11) – performance of snmp implementation

22 SNMP Operations getgetnext getbulk (v2, v3) setgetresponsetrap notification (v2, v3) inform (v2, v3) report (v2, v3) Variable Binding A list of MIB objects that allows a request’s recipient to see what the originator wants to know A list of MIB objects that allows a request’s recipient to see what the originator wants to know OID = value OID = value

23 SNMP Operations (2/15)

24 SNMP Operations (3/15) GET Initiated by the NMS Initiated by the NMS NMS sends request to agent NMS sends request to agent Agent processes request Agent processes request Agent sends getresponse back to NMS Agent sends getresponse back to NMS snmpget cisco.ora.com public.1.3.6.1.2.1.1.6.0 System.sysLocation.0 = “”

25 SNMP Operations (4/15) GETNEXT Lets you issue a sequence of commands to retreive a group of values from a MIB Lets you issue a sequence of commands to retreive a group of values from a MIB For each MIB object, a separate GETNEXT requests and GETRESPONSE are generated For each MIB object, a separate GETNEXT requests and GETRESPONSE are generated Traverses a subtree in lexicographic order Traverses a subtree in lexicographic order

26 SNMP Operations (5/15) snmpwalk cisco.ora.com public system system.sysDescr.0 = “Cisco IOS Software, C2600 Software (C2600- IPBASE-M), Version 12.3(8)T3, RELEASE SOFTWARE (fc1) Technical Support: http://www.cisco.com/techsupport Copyright (c) 1986-2004 by Cisco Systems, Inc. Compiled Tue 20-Jul-04 17:03 by eaarmas” system.sysObjectID.0 = OID: enterprises.9.1.19 system.sysUpTime.0 = Timeticks: (27210723) 3 days, 3:35:07.23 system.sysContact.0 = “” system.sysName.0 = “cisco.ora.com” system.sysLocation.0 = “” system.sysServices.0 = 6

27 SNMP Operations (6/15) GETBULK Allows a NMS to retrieve a large section of a table at once Allows a NMS to retrieve a large section of a table at once Tells agent to send back as much information as possible – incomplete responses possible Tells agent to send back as much information as possible – incomplete responses possible Two fields required Two fields required Nonrepeaters – tells command that first N objects can be retreived with a simple getnext operation Max-repetitions – tells command to attempt up to M getnext operations to retrieve remaining objects

28 SNMP Operations (7/15) Snmpbulkget –v2c public –Cn1 –Cr3 linux.ora.com sysDescr ifInOctets ifOutOctets System.sysDescr.0 = “Linux snort 2.4.1-10 #1 Thu Sep 6 17:27:27 EDT 2001 i686 unknown” Interfaces.ifTable.ifEntry.ifInOctets.1 = 70840 Interfaces.ifTable.ifEntry.ifOutOctets.1 = 70840 Interfaces.ifTable.ifEntry.ifInOctets.2 = 143548020 Interfaces.ifTable.ifEntry.ifOutOctets.2 = 111725152 Interfaces.ifTable.ifEntry.ifInOctets.3 = 0 Interfaces.ifTable.ifEntry.ifOutOctets.3 = 0

29 SNMP Operations (8/15) SET Change the value of a managed object Change the value of a managed object Create a new row in a table Create a new row in a table

30 SNMP Operations (9/15) snmpget cisco.ora.com public system.sysLocation.0 system.sysLocation.0 = “” snmpset cisco.ora.com private system.sysLocation.0 s “Atlanta, GA” system.sysLocation.0 = “Atlanta, GA” snmpget cisco.ora.com public system.sysLocation.0 system.sysLocation.0 = “Atlanta, GA” *sysLocation is defined as a string in RFC 1213

31 SNMP Operations (10/15) Error Responses SNMPv1 SNMPv1noError(0)tooBig(1)noSuchName(2)badValue(3)readOnly(4)genErr(5)

32 SNMP Operations (11/15) Error Responses (cont.) SNMPv2 SNMPv2noAccess(6)wrongType(7)wrongLength(8)wrongEncoding(9)wrongValue(10)noCreation(11) resourceUnavailable(13) commitFailed(14) undoFailed(15) authorizationError(16) notWritable(17) inconsistentName(18)

33 SNMP Operations (12/15) SNMP Traps A way for agents to tell the NMS that something bad has happened A way for agents to tell the NMS that something bad has happened Originate from agents & sent to predetermined destination (NMS, log server, etc.) Originate from agents & sent to predetermined destination (NMS, log server, etc.) Prone to getting lost Prone to getting lost

34 SNMP Operations (13/15) SNMP Traps (cont.) Seven generic trap numbers Seven generic trap numbers coldStart (0) An agent has rebooted or started An agent has rebooted or started warmStart (1) An agent has reinitialized An agent has reinitialized linkDown (2) An interface on the device has gone down An interface on the device has gone down linkUp (3) An interface on the device has come up An interface on the device has come up

35 SNMP Operations (14/15) SNMP Traps (cont.) Seven generic trap numbers (cont.) Seven generic trap numbers (cont.) authenticationFailure (4) Indicates that a wrong community string was used to try to access the agent Indicates that a wrong community string was used to try to access the agent egpNeighborLoss (5) An EGP neighbor has gone down An EGP neighbor has gone down enterpriseSpecific (6) General catchall General catchall Enterprise specific Enterprise specific Defined under the private-enterprise branch of the SMI Defined under the private-enterprise branch of the SMI

36 SNMP Operations (15/15) SNMP Inform SNMPv2 SNMPv2 Allows for acknowledged sending of traps Allows for acknowledged sending of traps SNMP report Defined in the draft for SNMPv2 but never implemented Defined in the draft for SNMPv2 but never implemented Now part of SNMPv3 Now part of SNMPv3

37 SNMP Messages SNMPv1 & SNMPv2 messages Consist of a header and PDU Consist of a header and PDU Header consists of 2 fields Header consists of 2 fieldsVersion Community name HeaderPDU

38 SNMP PDU Formats (1/5) SNMPv1 Get, GetNext, Response, and Set Get, GetNext, Response, and Set PDU type Request ID Error Status Error Index Object 1 Value 1 Object 2 Value 2 Object n Value n Variable Bindings

39 SNMP PDU Formats (2/5) SNMPv1 (cont.) Trap Trap Enterprise Agent Address Generic Trap Type Specific Trap Code Time Stamp Object 1 Value 1 Object 2 Value 2 Object n Value n Variable Bindings

40 SNMP PDU Formats (3/5) SNMPv2 Get, GetNext, Inform, Response, Set, & Trap Get, GetNext, Inform, Response, Set, & Trap PDU Type Request ID Error Status Error Index Object 1 Value 1 Object 2 Value 2 Object n Value n Variable Bindings

41 SNMP PDU Formats (4/5) SNMPv2 GetBulk GetBulk PDU Type Request ID Non- Repeaters Max- Repetitions Object 1 Value 1 Object 2 Value 2 Object n Value n Variable Bindings

42 SNMP PDU Formats (5/5)

43 Host Management Host Resources MIB 1.3.6.1.2.1.25 1.3.6.1.2.1.25 Defines a basic framework for managing hosts Defines a basic framework for managing hosts hrSystem (1) Uptime, system date, system users, system processes Uptime, system date, system users, system processes hrStorage (2) & hrDevice (3) Objects pertaining to system storage and system utilization Objects pertaining to system storage and system utilization hrSWRun (4), hrSWRunPerf (5), & hrSWInstalled (6) Objects pertaining to OS and software running or installed Objects pertaining to OS and software running or installed Vendor specific MIBs are defined to provide more detailed information about their hosts Vendor specific MIBs are defined to provide more detailed information about their hosts

44 Remote Monitoring (1/4) RMON MIB 1.3.6.1.2.1.16 1.3.6.1.2.1.16statisticshistoryalarmhostshostTopNmatrixfiltercaptureevent

45 Remote Monitoring (2/4) Statistics (1.3.6.1.2.1.16.1) Statistics about all interfaces being monitored Statistics about all interfaces being monitored History (1.3.6.1.2.1.16.2) Periodic statistical samples from the statistics group Periodic statistical samples from the statistics group Alarm (1.3.6.1.2.1.16.3) Configure polling interval and threshold for RMON objects Configure polling interval and threshold for RMON objects

46 Remote Monitoring (3/4) Hosts (1.3.6.1.2.1.16.4) Records traffic stats for each host on the network Records traffic stats for each host on the network hostTopN (1.3.6.1.2.1.16.5) Used to generate reports on hosts that top a list ordered by a parameter in the host table Used to generate reports on hosts that top a list ordered by a parameter in the host table Matrix (1.3.6.1.2.1.16.6) Error and utilization information for sets of two addresses Error and utilization information for sets of two addresses

47 Remote Monitoring (4/4) Filter (1.3.6.1.2.1.16.7) Matches packets based on a filter equation Matches packets based on a filter equation When packet meets filter, an event may be triggered When packet meets filter, an event may be triggered Capture (1.3.6.1.2.16.8) Allows packets to be captured if they meet a filter in the filter group Allows packets to be captured if they meet a filter in the filter group Event (1.3.6.1.2.16.9) Controls the definition of RMON events Controls the definition of RMON events

Download ppt "SNMP Simple Network Management Protocol. SNMP and UDP Uses UDP as transport protocol Connectionless Connectionless Port 161 for sending and receiving."

Similar presentations

TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 24 Network Management: SNMP.

TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 24 Network Management: SNMP.
Shivkumar Kalyanaraman Rensselaer Polytechnic Institute 1 Simple Network Management Protocol (SNMP) Shivkumar Kalyanaraman Rensselaer Polytechnic Institute.

Shivkumar Kalyanaraman Rensselaer Polytechnic Institute 1 Simple Network Management Protocol (SNMP) Shivkumar Kalyanaraman Rensselaer Polytechnic Institute.
TCP/IP Protocol Suite 1 Chapter 21 Upon completion you will be able to: Network Management: SNMP Understand the SNMP manager and the SNMP agent Understand.

TCP/IP Protocol Suite 1 Chapter 21 Upon completion you will be able to: Network Management: SNMP Understand the SNMP manager and the SNMP agent Understand.
CSEE W4140 Networking Laboratory Lecture 11: SNMP Jong Yul Kim 04.19.2010.

CSEE W4140 Networking Laboratory Lecture 11: SNMP Jong Yul Kim
CSCE 515: Computer Network Programming Chin-Tser Huang University of South Carolina.

CSCE 515: Computer Network Programming Chin-Tser Huang University of South Carolina.
CSEE W4140 Networking Laboratory Lecture 11: SNMP Jong Yul Kim 04.15.2009.

CSEE W4140 Networking Laboratory Lecture 11: SNMP Jong Yul Kim
Shivkumar Kalyanaraman Rensselaer Polytechnic Institute 1 Simple Network Management Protocol (SNMP) Shivkumar Kalyanaraman Rensselaer Polytechnic Institute.

Shivkumar Kalyanaraman Rensselaer Polytechnic Institute 1 Simple Network Management Protocol (SNMP) Shivkumar Kalyanaraman Rensselaer Polytechnic Institute.
1 SNMP Simple Network Management Protocol. 2 SNMP Overview Define mechanism for remote management of network devices (routers, bridges, etc.) Fundamental.

1 SNMP Simple Network Management Protocol. 2 SNMP Overview Define mechanism for remote management of network devices (routers, bridges, etc.) Fundamental.
COMP4690, by Dr Xiaowen Chu, HKBU

COMP4690, by Dr Xiaowen Chu, HKBU
1 Network Management and SNMP  What is Network Management?  ISO Network Management Model (FCAPS)  Network Management Architecture  SNMPv1 and SNMPv2.

1 Network Management and SNMP  What is Network Management?  ISO Network Management Model (FCAPS)  Network Management Architecture  SNMPv1 and SNMPv2.
SNMP Simple Network Management Protocol

SNMP Simple Network Management Protocol
Guide to TCP/IP, Third Edition Chapter 11: Monitoring and Managing IP Networks.

Guide to TCP/IP, Third Edition Chapter 11: Monitoring and Managing IP Networks.
SNMP Terms SNMP Agent (network element to monitor) SNMP Management Station Community String (password) SMI (Structure of Management Info) MIB (Management.

SNMP Terms SNMP Agent (network element to monitor) SNMP Management Station Community String (password) SMI (Structure of Management Info) MIB (Management.
Introduction to SNMP AfNOG 11, Kigali/Rwanda.

Introduction to SNMP AfNOG 11, Kigali/Rwanda.
1 Kyung Hee University Prof. Choong Seon HONG SNMP Management Information.

1 Kyung Hee University Prof. Choong Seon HONG SNMP Management Information.
Ch. 31 Q and A CS332 Spring 2014. Network management more than just Ethernet Q: Comer mentions that network managers need to be able to account for different.

Ch. 31 Q and A CS332 Spring Network management more than just Ethernet Q: Comer mentions that network managers need to be able to account for different.
ENS 1 SNMP M Clements. ENS 2 Simple Network Management Protocol Manages elements in networks – E.g. routers, switches, IP phones, printers etc. Uses manager.

ENS 1 SNMP M Clements. ENS 2 Simple Network Management Protocol Manages elements in networks – E.g. routers, switches, IP phones, printers etc. Uses manager.
1 Network Management Computer Networks. 2 OSI Network Management Model Performance Management e.g. utilization Fault Management e.g. SNMP traps Configuration.

1 Network Management Computer Networks. 2 OSI Network Management Model Performance Management e.g. utilization Fault Management e.g. SNMP traps Configuration.
SNMP and Network Management Simple Network Management Protocol A Standard Protocol for Systems and Network Management.

SNMP and Network Management Simple Network Management Protocol A Standard Protocol for Systems and Network Management.
Chapter 6 Overview Simple Network Management Protocol

Chapter 6 Overview Simple Network Management Protocol

Similar presentations

Ads by Google