We think you have liked this presentation. If you wish to download it, please recommend it to your friends in any social system. Share buttons are a little bit lower. Thank you!
Presentation is loading. Please wait.
Published byArthur Coppler
Modified over 2 years ago
© 2006, Monash University, Australia CSE4884 Network Design and Management Lecturer: Dr Carlo Kopp, MIEEE, MAIAA, PEng Lecture 19-20 Simple Network Management Protocol Family
© 2006, Monash University, Australia References and Reading Burke J.R., Network Management; Concepts and Practice, Pearson/Prentice-Hall, 2004 – Ch.2 onward Wikipedia - http://en.wikipedia.org/wiki/Simple_Network_Manageme nt_Protocol http://en.wikipedia.org/wiki/Simple_Network_Manageme nt_Protocol http://www.cs.tcd.ie/Karl.Quinn/openresources/NDS23N ov04.ppt http://www.cs.tcd.ie/Karl.Quinn/openresources/NDS23N ov04.ppt Cisco SNMP Command Reference Dcoument - http://www.cisco.com/univercd/cc/td/doc/product/softwar e/ios123/123cgcr/fun_r/cfr_1g11.pdf ; also http://www.cisco.com/univercd/cc/td/doc/cisintwk/ito_doc /snmp.htm http://www.cisco.com/univercd/cc/td/doc/product/softwar e/ios123/123cgcr/fun_r/cfr_1g11.pdf http://www.cisco.com/univercd/cc/td/doc/cisintwk/ito_doc /snmp.htm Request for Comments: 1441; Introduction to version 2 of the Internet-standard Network Management Framework - http://tools.ietf.org/html/rfc1441http://tools.ietf.org/html/rfc1441
© 2006, Monash University, Australia Situational Awareness A critical problem for any network manager is maintaining situational awareness about the state of the network. The manager must know at all times what devices are in what state and how this impacts overall network performance and function. With situational awareness the network manager is flying blind and thus is not aware of malfunctions or performance problems as they arise. Network management software tools can provide situational awareness by automating monitoring of networks. SNMP is the most widely used management tool in IP networks.
© 2006, Monash University, Australia Network Management Protocols - Background Mid to early 1980s – proprietary network management software, usually designed to be mutually incompatible. 1987 – Simple Gateway Monitoring Protocol (SGMP) defined in RFC 1028 ; SGMP designed to monitor interface type, status, route type and route protocol in use; implemented to run over UDP.RFC 1028 Common Management Information Protocol (CMIP) defined in ITU X.700 and RFC 1095 as a replacement to SGMP, based on the OSI protocol suite rather than IP; developed in competition with SNMP; more complex than SNMP; not as widely used as SNMP; CMIP over TCP (CMOT) abandoned in 1989.RFC 1095 1990 – SNMPv1 recommended standard for IP networks. 1993 – SNMPv2 introduced; 1999-2002 – SNMPv3.
© 2006, Monash University, Australia Network Management (Cisco)
© 2006, Monash University, Australia SNMP Protocol SNMP was devised to manage network devices. SNMP is literally a simple protocol, which provides a limited command set. SNMP runs a Master Agent server program or daemon as a background process on a network device, or as a foreground task on a simpler network device. The SNMP Master Agent server responds to commands issued by an SNMP client program on a management system. SNMP defines a Management Information Base (MIB) for devices. A MIB is a heirarchical database of objects each of which describes the state of a device.
© 2006, Monash University, Australia SNMP Design Aims – IETF RFC 1157 (1) The development cost for management agent software necessary to support the protocol is accordingly reduced. (2) The degree of management function that is remotely supported is accordingly increased, thereby admitting fullest use of internet resources in the management task. (3) The degree of management function that is remotely supported is accordingly increased, thereby imposing the fewest possible restrictions on the form and sophistication of management tools. (4) Simplified sets of management functions are easily understood and used by developers of network management tools. Must be extensible, and device independent.
© 2006, Monash University, Australia SNMP Model (Cisco)
© 2006, Monash University, Australia SNMP Functions – IETF RFC 1157 The strategy implicit in the SNMP is that the monitoring of network state at any significant level of detail is accomplished primarily by polling for appropriate information on the part of the monitoring center(s). A limited number of unsolicited messages (traps) guide the timing and focus of the polling. Limiting the number of unsolicited messages is consistent with the goal of simplicity and minimizing the amount of traffic generated by the network management function. In plain language, SNMP aims to minimise complexity by using a very simple model for accessing devices, but retains the capability to generate asynchronous traps when important conditions arise.
© 2006, Monash University, Australia Limitations of Polling Technique Polling involves a client station periodically interrogating the status of individual devices to collect information. The large the number of devices to be polled, the greater the interval between visits. Polling is acceptable for the monitoring of slow changing events; most network management information is slow changing. The trap mechanism in SNMP is used to handle small numbers of critical events, which cannot wait for the duration of a whole polling cycle.
© 2006, Monash University, Australia Four Basic SNMP Operations The Get command is generated by a client to monitor managed devices. Variables that are maintained by managed devices are read back. The Set command is generated by a client to control managed devices. The values of variables stored within managed devices are changed. The Trap command is generated by managed devices; it asynchronously signals events to theclient. When specific events occur, the managed device sends a trap to the client. Traversal operations are used by clients to establish which variables a managed device can support; also to sequentially gather information in variable tables, such as a routing table.
© 2006, Monash University, Australia SNMP MIBs (Cisco) A Management Information Base (MIB) is a hierarchically organized collection of information. A MIB comprises managed objects which are identified by object identifiers. managed object - MIB object - an object – MIB – common industry usage of language. Managed objects are scalar or tabular. Scalar objects will define a single instance of an object. Tabular objects will define multiple instances of related objects, grouped in MIB tables. Object identifier / object ID will uniquely identify a managed object in the MIB hierarchy. The MIB hierarchy is tree structured.
© 2006, Monash University, Australia SNMP MIBs (Cisco) Top-level MIB object IDs belong to different standards organizations. Lower-level object IDs are allocated by associated organizations. Vendors can define private branches in the MIB tree, which include managed objects for their own products. MIBs that have not been standardized are usually positioned in the experimental branch.
© 2006, Monash University, Australia MIB Hierarchy (Cisco)
© 2006, Monash University, Australia MIB Hierarchy (Cisco)
© 2006, Monash University, Australia SNMP vs Security SNMP has only trivial authentication therefore is vulnerable to unauthorised accesses. SNMP security risks: 1. Masquerading. 2. Modification by unauthorised users. 3. Sequence and timing modification – replaying messages. 4. Disclosure – unauthorised gathering of data. Often Set operations not implemented at expense of utility.
© 2006, Monash University, Australia SNMP V1 Messaging (Cisco) Version Number Community Name Identifies PDU type Protocol Data Unit Associates Response with Request Objects and Values Get, GetNext, Response, and Set PDU Format
© 2006, Monash University, Australia SNMP V1 Messaging (Cisco) Version Number Community Name Type of managed object generating the trap Protocol Data Unit Objects and Values Trap PDU Format
© 2006, Monash University, Australia SNMP V2 Messaging (Cisco) Identifies PDU type Version Number Community Name Protocol Data Unit Associates Response with Request Objects and Values Get, GetNext, Inform, Response, Set, and Trap PDU Format
© 2006, Monash University, Australia SNMP PDU (Message) Classes SNMPv3 PDU Class DescriptionSNMPv1 PDUs SNMPv2/SNMPv3 PDUs Read Messages that read management information from a managed device using a polling mechanism. GetRequest-PDU, GetNextRequest-PDU GetRequest-PDU, GetNextRequest-PDU, GetBulkRequest-PDU Write Messages that change management information on a managed device to affect the device's operation. SetRequest-PDU Response Messages sent in response to a previous request. GetResponse-PDUResponse-PDU Notification Messages used by a device to send an interrupt-like notification to an SNMP manager. Trap-PDU Trapv2-PDU, InformRequest-PDU http://www.tcpipguide.com/free/t_SNMPProtocolGeneralOperationCommunicationMethodsan-2.htm
© 2006, Monash University, Australia SNMP MIB Model MIB Objects described in Structure of Management Information Version 2 (SMIv2) format, based on ISO/ITU Abstract Syntax Notation One (ASN.1) syntax.ASN.1 There are a very large number of MIBs defined for specific network devices and entities. Example index is at http://www.icir.org/fenner/mibs/mib- index.html or http://www.mibdepot.com/index.shtmlhttp://www.icir.org/fenner/mibs/mib- index.htmlhttp://www.mibdepot.com/index.shtml Specific MIB entries might be: 1. ADSL-LINE-EXT-MIB 2. ADSL-LINE-EXT-MIB 3. IPV6-ICMP-MIB 4. DIFFSERV-POLICY-MIB
© 2006, Monash University, Australia SNMP MIB Model MIBs are often specific or peculiar to particular devices and may include proprietary extensions. An SNMP client must understand the MIBs used by an SNMP agent server. Managing MIBs is an issue in its own right. For instance the mibDepot website hosts ~7300 SNMP MIBs covering ~1,000,000 MIB object definitions.
© 2006, Monash University, Australia Example - MG-SOFT MIB Compiler
© 2006, Monash University, Australia Example – NuDesign Visual MIBrowser®
© 2006, Monash University, Australia RMON: Remote Monitoring MIBs RMON1 and RMON2 MIBs permit monitoring of network traffic. Implemented to support management of LAN segments. RMON1 objects - Statistics, History, Alarm, Host, HostTopN, Matrix, Filters, Packet Capture, Events. RMON2 objects - Protocol Directory, Protocol Distribution, Address mapping, Network Layer host, Network layer matrix, Application layer host, Application layer matrix, Probe configuration. RMON1 or 2 agent usually implemented as a daemon or background task embedded in the firmware of a network device. The SNMP client must access the objects to gather the statistics. Filters
© 2006, Monash University, Australia RMON: Remote Monitoring MIBs Javvin Technologies, Inc Image
© 2006, Monash University, Australia Example - iReasoning MIB browser
© 2006, Monash University, Australia Tutorial Q&A + Discussion
BAI513 - PROTOCOLS SNMP BAIST – Network Management.
Network Protocols UNIT IV – NETWORK MANAGEMENT FUNDAMENTALS.
1 Network Management: SNMP The roots of education are bitter, but the fruit is sweet. - Aristotle.
Chapter 5 SNMPv1: Communication and Functional Models Network Management: Principles and Practice © Mani Subramanian Chapter 5.
Guide to TCP/IP, Third Edition Chapter 11: Monitoring and Managing IP Networks.
1 Network Management Computer Networks. 2 OSI Network Management Model Performance Management e.g. utilization Fault Management e.g. SNMP traps Configuration.
SNMP Simple Network Management Protocol. Simple Network Management Protocol SNMP is a framework that provides facilities for managing and monitoring network.
McGraw-Hill The McGraw-Hill Companies, Inc., 2000 SNMP Simple Network Management Protocol.
Chapter 6 SNMP 1 Chapter 6 Overview Simple Network Management Protocol o SNMPv1 SNMP packet format Structure of MIB tree MIB-2 objects SNMP.
Dr Alejandra Flores-Mosri Network Monitoring Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Explain.
Saad Haj Bakry, PhD, CEng, FIEE 1 SNMP: Simple Network Management Protocol Saad Haj Bakry, PhD, CEng, FIEE P RESENTATIONS IN N ETWORK M ANAGEMENT.
1 © 1999 BMC SOFTWARE, INC. 2/10/00 SNMP Simple Network Management Protocol.
COMP4690, by Dr Xiaowen Chu, HKBU Network Management Chapter 3 SNMP and MIB.
SNMP Simple Network Management Protocol Team: Matrix CMPE-208 Fall 2006.
TCP/IP Protocol Suite 1 Chapter 21 Upon completion you will be able to: Network Management: SNMP Understand the SNMP manager and the SNMP agent Understand.
Lec 3: Infrastructure of Network Management Part2 Organized by: Nada Alhirabi NET 311.
1 Ola Flygt Växjö University, Sweden Network Management Security.
Chapter 2 Overview of Network Management 1 Chapter 2 Overview Why is network mgmt necessary? Network managers job Network management vocabulary.
SNMP ( Simple Network Management Protocol ) based Network Management.
SNMP (Simple Network Management Protocol) By Xian Mihr Gandhi Neehar Athalye Venkatesh Lanke Madhusudhan Sreedhara.
1 System support & Management Protocols Lesson 13 NETS2150/2850 School of Information Technologies.
1 Introduction to Internet Network Management Mi-Jung Choi Dept. of Computer Science KNU
Network Management Security in distributed and remote network management protocols.
TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 24 Network Management: SNMP.
SNMP Simple Network Management Protocol SNMP Simple Network Management Protocol Haris Ribic.
Shivkumar Kalyanaraman Rensselaer Polytechnic Institute 1 Simple Network Management Protocol (SNMP) Shivkumar Kalyanaraman Rensselaer Polytechnic Institute.
Network Management8-1 Chapter 8: Network Management Chapter goals: r introduction to network management m motivation m major components r Internet network.
Remote Monitoring and Desktop Management Week-7. SNMP designed for management of a limited range of devices and a limited range of functions Monitoring.
Agenda SNMP Review SNMP Manager Management Information Base (MIB) Router Monitoring OPManager.
1 SNMP Simple network management protocol Group: Techno Presented by: Karthik Gottiparthy Gautami Parulkar Neeraj Sharma Jigar Patel Hariharan Venkataraman.
Topic 11 Network Management. SNMPv1 This information is specific to SNMPv1. When using SNMPv1, the snmpd agent uses a simple authentication scheme to.
1. TCP/IP network management model: 1. Management station 2. Management agent 3. Management information base 4. Network management protocol 2.
Test Case Generation for testing SNMP agents
1 Network Management Security Behzad Akbari Fall 2009 In the Name of the Most High.
Chapter 27 Network Management Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display.
1 Kyung Hee University Prof. Choong Seon HONG SNMP Network Management Concepts.
CIS : Network Management. Introduction Network, associated resources and distributed applications indispensable Complex systems —More things can.
1 Chapter 8 Network Management Security. 2 Outline Basic Concepts of SNMP SNMPv1 Community Facility SNMPv3 Recommended Reading and WEB Sites.
1 Network Management and SNMP What is Network Management? ISO Network Management Model (FCAPS) Network Management Architecture SNMPv1 and SNMPv2.
Standards for Network Administration Week-5. Standards for Network Administration 1. Management Information Base A structured database about a network.
Management Information Base for Version 2 of the Simple Network Management Protocol (MIB for SNMPv2)
CSEE W4140 Networking Laboratory Lecture 11: SNMP Jong Yul Kim
Network Management Protocols and Applications Cliff Leach Mike Looney Danny Mar Monty Maughon.
1 ITC242 – Introduction to Data Communications Week 12 Topic 18 Chapter 19 Network Management.
Network management Basic Networking - what’s happening on my network ?!
Network Management introduction Internet SNMP: Simple Network Management Protocol required reading: section 7.3 in text.
© 2017 SlidePlayer.com Inc. All rights reserved.