Presentation is loading. Please wait.

Presentation is loading. Please wait.

Text Overview of SNMP, FTP, Telnet. Text Overview of SNMP.

Published byBridget Sullivan Modified over 9 years ago

Similar presentations

Presentation on theme: "Text Overview of SNMP, FTP, Telnet. Text Overview of SNMP."— Presentation transcript:

1 Text Overview of SNMP, FTP, Telnet

2 Text Overview of SNMP

3 Document Name CONFIDENTIAL SNMP(Simple Network Management Protocol ) SNMP - Simple Network Management Protocol is an application layer protocol that facilitates the exchange of management information between network devices - Application-layer protocol for managing TCP/IP based networks. - Runs over UDP, which runs over IP using Port 161 and 162 - Two versions of SNMP exist: SNMP version 1 (SNMPv1) and SNMP version 2 (SNMPv2).

4 Document Name CONFIDENTIAL Simple Network Management Protocol SNMP is a framework that provides facilities for managing and monitoring network resources on the Internet. Components of SNMP: – SNMP agents – SNMP managers – Management Information Bases (MIBs) – SNMP protocol itself

5 Document Name CONFIDENTIAL Simple Network Management Protocol SNMP agent is software that runs on a piece of network equipment (host, router, printer, or others) and that maintains information about its configuration and current state in a database Information in the database is described by Management Information Bases (MIBs) An SNMP manager is an application program that contacts an SNMP agent to query or modify the database at the agent. SNMP protocol is the application layer protocol used by SNMP agents and managers to send and receive data.

6 Document Name CONFIDENTIAL SNMP Interactions in SNMP

7 Document Name CONFIDENTIAL MIBS A MIB specifies the managed objects MIB is a text file that describes managed objects using the syntax of ASN.1 (Abstract Syntax Notation 1) ASN.1 is a formal language for describing data and its properties In Linux, MIB files are in the directory /usr/share/snmp/mibs – Multiple MIB files – MIB-II (defined in RFC 1213) defines the managed objects of TCP/IP networks

8 Document Name CONFIDENTIAL Managed Objects Each managed object is assigned an object identifier (OID) The OID is specified in a MIB file. An OID can be represented as a sequence of integers separated by decimal points or by a text string: Example: – 1.3.6.1.2.1.4.6. – iso.org.dod.internet.mgmt.mib-2.ip.ipForwDatagrams When an SNMP manager requests an object, it sends the OID to the SNMP agent.

9 Document Name CONFIDENTIAL Organization of managed objects Managed objects are organized in a tree-like hierarchy and the OIDs reflect the structure of the hierarchy. Each OID represents a node in the tree. The OID 1.3.6.1.2.1 (iso.org.dod.internet.mgmt. mib-2) is at the top of the hierarchy for all managed objects of the MIB-II. Manufacturers of networking equipment can add product specific objects to the hierarchy.

10 Document Name CONFIDENTIAL Definition of managed objects in a MIB Specification of ipForwDatagrams in MIB-II. ipForwDatagrams OBJECT-TYPE SYNTAX Counter ACCESS read-only STATUS mandatory DESCRIPTION "The number of input datagrams for which this entity was not their final IP destination, as a result of which an attempt was made to find a route to forward them to that final destination. In entities which do not act as IP Gateways, this counter will include only those packets which were Source-Routed via this entity, and the Source- Route option processing was successful." ::= { ip 6 }

11 Document Name CONFIDENTIAL SNMP Protocol SNMP manager and an SNMP agent communicate using the SNMP protocol – Generally: Manager sends queries and agent responds – Exception: Traps are initiated by agent.

12 Document Name CONFIDENTIAL SNMP Protocol Get-request. Requests the values of one or more objects Get-next-request. Requests the value of the next object, according to a lexicographical ordering of OIDs. Set-request. A request to modify the value of one or more objects Get-response. Sent by SNMP agent in response to a get-request, get-next-request, or set-request message. Trap. An SNMP trap is a notification sent by an SNMP agent to an SNMP manager, which is triggered by certain events at the agent.

13 Document Name CONFIDENTIAL Traps Traps are messages that asynchronously sent by an agent to a manager Traps are triggered by an event Defined traps include: – linkDown: Even that an interface went donw – coldStart - unexpected restart (i.e., system crash) – warmStart - soft reboot – linkUp - the opposite of linkDown – (SNMP) AuthenticationFailure – …

14 Document Name CONFIDENTIAL SNMP Versions Three versions are in use today: – SNMPv1 (1990) – SNMPv2c (1996) Adds “GetBulk” function and some new types Adds RMON (remote monitoring) capability – SNMPv3 (2002) SNMPv3 started from SNMPv1 (and not SNMPv2c) Addresses security All versions are still used today Many SNMP agents and managers support all three versions of the protocol.

15 Document Name CONFIDENTIAL Format of SNMP Packets SNMPv1 Get/Set messages: Cleartext string that is used as a password PDU type, e.g.: 32: SNMPv1 Get 64: SNMPv2 Get Unique ID to match requests with replies Sequence of name-value pairs

16 Document Name CONFIDENTIAL SNMP Security SNMPv1 uses plain text community strings for authentication as plain text without encryption SNMPv2 was supposed to fix security problems, but effort de-railed (The “c” in SNMPv2c stands for “community”). SNMPv3 has numerous security features: – Ensure that a packet has not been tampered with (integrity), – Ensures that a message is from a valid source (authentication) – Ensures that a message cannot be read by unauthorized (privacy).

17 Document Name CONFIDENTIAL SNMP Security Security model of SNMPv3 has two components: 1.Instead of granting access rights to a community, SNMPv3 grants access to users. 2. Access can be restricted to sections of the MIB (Version-based Access Control Module (VACM). Access rights can be limited by specifying a range of valid IP addresses for a user or community, or by specifying the part of the MIB tree that can be accessed.

18 Document Name CONFIDENTIAL Security levels in SNMPv2 SNMP has three security levels: noAuthNoPriv: Authentication with matching a user name. authNoPriv: Authentication with MD5 or SHA message digests. authPriv: Authentication with MD5 or SHA message digests, and encryption with DES encryption Compare this to SNMPv1 and SNMPv2c: SNMPv1, SNMPv2: Authentication with matching a community string.

19 Text Thank you

20 Text Overview of FTP

21 Document Name CONFIDENTIAL - 21 - FTP This stands for File Transfer Protocol. This is a popular way to transfer files from machine to machine across a network.

22 Document Name CONFIDENTIAL - 22 - Ways to connect to an FTP server Internal client Private FTP server External client INTERNET

23 Document Name CONFIDENTIAL - 23 - We can configure FTP servers one of two ways. Private user-only site: Allows only system users to connect via FTP and access their files. Anonymous: Allows anyone on the network to connect to it and transfer files without having an account. FTP Configuration

24 Document Name CONFIDENTIAL - 24 - FTP commands --ftp [sitename] ftp starts the program and connects to the specified site --cd [directory] cd stands for change directory. This command will change to the specified directory --pwd Print working directory(tells the user which directory he/she is in) --dir [filespec]dir [filespec List details about the file specification

25 Text Thank you

26 Text TELNET

27 Document Name CONFIDENTIAL TELNET vs. telnet TELNET is a protocol that provides “a general, bi- directional, eight-bit byte oriented communications facility”. telnet is a program that supports the TELNET protocol over TCP. Many application protocols are built upon the TELNET protocol.

28 Document Name CONFIDENTIAL The TELNET Protocol TCP connection data and control over the same connection. Network Virtual Terminal negotiated options

29 Document Name CONFIDENTIAL Network Virtual Terminal Intermediate representation of a generic terminal. Provides a standard language for communication of terminal control functions.

30 Document Name CONFIDENTIAL Network Virtual Terminal NVT NVT ServerProcess TCP TCP

31 Document Name CONFIDENTIAL Negotiated Options All NVTs support a minimal set of capabilities. Some terminals have more capabilities than the minimal set. The 2 endpoints negotiate a set of mutually acceptable options (character set, echo mode, etc).

32 Document Name CONFIDENTIAL Negotiated Options The protocol for requesting optional features is well defined and includes rules for eliminating possible negotiation “loops”. The set of options is not part of the TELNET protocol, so that new terminal features can be incorporated without changing the TELNET protocol.

33 Document Name CONFIDENTIAL Option examples Line mode vs. character mode echo modes character set (EBCDIC vs. ASCII)

34 Document Name CONFIDENTIAL Control Functions TELNET includes support for a series of control functions commonly supported by servers. This provides a uniform mechanism for communication of (the supported) control functions.

35 Document Name CONFIDENTIAL Control Functions Interrupt Process (IP) – suspend/abort process. Abort Output (AO) – process can complete, but send no more output to user’s terminal. Are You There (AYT) – check to see if system is still running.

36 Document Name CONFIDENTIAL More Control Functions Erase Character (EC) – delete last character sent – typically used to edit keyboard input. Erase Line (EL) – delete all input in current line.

37 Document Name CONFIDENTIAL Command Structure All TELNET commands and data flow through the same TCP connection. Commands start with a special character called the Interpret as Command escape character (IAC). The IAC code is 255. If a 255 is sent as data - it must be followed by another 255.

38 Document Name CONFIDENTIAL Looking for Commands Each receiver must look at each byte that arrives and look for IAC. If IAC is found and the next byte is IAC - a single byte is presented to the application/terminal. If IAC is followed by any other code - the TELNET layer interprets this as a command.

39 Document Name CONFIDENTIAL Command Codes IP243 IP243 AO 244 AO 244 AYT245 AYT245 EC246 EC246 EL247 EL247 n WILL251 n WON’T252 n DO253 n DON’T254 n IAC255

40 Document Name CONFIDENTIAL Summary and References Please go through below link for further Study: http://www.tcpipguide.com/free/t_IntroductiontoNetworking.htm http://openbookproject.net/courses/intro2ict/networking/intro.html

41 Text Thank you

Download ppt "Text Overview of SNMP, FTP, Telnet. Text Overview of SNMP."

Similar presentations

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 8: Monitoring the Network Connecting Networks.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 8: Monitoring the Network Connecting Networks.
TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 24 Network Management: SNMP.

TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 24 Network Management: SNMP.
TCP/IP Protocol Suite 1 Chapter 18 Upon completion you will be able to: Remote Login: Telnet Understand how TELNET works Understand the role of NVT in.

TCP/IP Protocol Suite 1 Chapter 18 Upon completion you will be able to: Remote Login: Telnet Understand how TELNET works Understand the role of NVT in.
CSCE 515: Computer Network Programming Chin-Tser Huang University of South Carolina.

CSCE 515: Computer Network Programming Chin-Tser Huang University of South Carolina.
TCP/IP Protocol Suite 1 Chapter 21 Upon completion you will be able to: Network Management: SNMP Understand the SNMP manager and the SNMP agent Understand.

TCP/IP Protocol Suite 1 Chapter 21 Upon completion you will be able to: Network Management: SNMP Understand the SNMP manager and the SNMP agent Understand.
CSEE W4140 Networking Laboratory Lecture 11: SNMP Jong Yul Kim 04.19.2010.

CSEE W4140 Networking Laboratory Lecture 11: SNMP Jong Yul Kim
CSCE 515: Computer Network Programming Chin-Tser Huang University of South Carolina.

CSCE 515: Computer Network Programming Chin-Tser Huang University of South Carolina.
The TELNET protocol. TELNET vs. telnet TELNET is a protocol that provides “ a general, bi-directional, eight-bit byte oriented communications facility.

The TELNET protocol. TELNET vs. telnet TELNET is a protocol that provides “ a general, bi-directional, eight-bit byte oriented communications facility.
CSEE W4140 Networking Laboratory Lecture 11: SNMP Jong Yul Kim 04.15.2009.

CSEE W4140 Networking Laboratory Lecture 11: SNMP Jong Yul Kim
1 SNMP Simple Network Management Protocol. 2 SNMP Overview Define mechanism for remote management of network devices (routers, bridges, etc.) Fundamental.

1 SNMP Simple Network Management Protocol. 2 SNMP Overview Define mechanism for remote management of network devices (routers, bridges, etc.) Fundamental.
1 System support & Management Protocols Lesson 13 NETS2150/2850 School of Information Technologies.

1 System support & Management Protocols Lesson 13 NETS2150/2850 School of Information Technologies.
COMP4690, by Dr Xiaowen Chu, HKBU

COMP4690, by Dr Xiaowen Chu, HKBU
1 Network Management and SNMP  What is Network Management?  ISO Network Management Model (FCAPS)  Network Management Architecture  SNMPv1 and SNMPv2.

1 Network Management and SNMP  What is Network Management?  ISO Network Management Model (FCAPS)  Network Management Architecture  SNMPv1 and SNMPv2.
SNMP Simple Network Management Protocol

SNMP Simple Network Management Protocol
Guide to TCP/IP, Third Edition Chapter 11: Monitoring and Managing IP Networks.

Guide to TCP/IP, Third Edition Chapter 11: Monitoring and Managing IP Networks.
Introduction to SNMP AfNOG 11, Kigali/Rwanda.

Introduction to SNMP AfNOG 11, Kigali/Rwanda.
SNMP (Simple Network Management Protocol) Jon Sevy Geometric and Intelligent Computing Laboratory Department of Mathematics and Computer Science Drexel.

SNMP (Simple Network Management Protocol) Jon Sevy Geometric and Intelligent Computing Laboratory Department of Mathematics and Computer Science Drexel.
ENS 1 SNMP M Clements. ENS 2 Simple Network Management Protocol Manages elements in networks – E.g. routers, switches, IP phones, printers etc. Uses manager.

ENS 1 SNMP M Clements. ENS 2 Simple Network Management Protocol Manages elements in networks – E.g. routers, switches, IP phones, printers etc. Uses manager.
1 Network Management Computer Networks. 2 OSI Network Management Model Performance Management e.g. utilization Fault Management e.g. SNMP traps Configuration.

1 Network Management Computer Networks. 2 OSI Network Management Model Performance Management e.g. utilization Fault Management e.g. SNMP traps Configuration.
Chapter 6 Overview Simple Network Management Protocol

Chapter 6 Overview Simple Network Management Protocol

Similar presentations

Ads by Google