Professional Documents
Culture Documents
OPM
SNMP
SNMP is developed by IETF.
SNMP operates in application layer of Internet Protocol Suit.
It is an Internet-standard protocol for managing devices on IP
networks and is a component (part) of the Internet Protocol Suit
(TCP/IP).
It is used to monitor, control and coordinate network-attached
devices for conditions that warrant administrative attention.
OPM
SNMP (cont.)
The SNMP agent receives Manager requests on UDP port 161. The manager
may send requests from any available source port to port 161 to the agent.
The agent response is sent back to the source port on the manager. The manager
receives notifications/Traps on UDP port 162.
OPM
OPM
SNMP Network
Management
Organization
submodel
Information
subModel
OPM
Communication
subModel
Functional
subModel
Information Model
Communication Model
Transfer syntax
SNMP over TCP/IP
Communication services addressed by messages
Functional model
SNMP
Manager
SNMP
Manager
SNMP
Manager
SNMPAgent
Network Agent
Network
Element
Network
Element
OPM
RMON
Probe
Managed
Objects
OPM
Proxy
Server
Non-SNMP
Managed
Objects
SNMP
Managed
Objects
OPM
SNMP
Manager
SNMP
Agent
SNMP
Agent
SNMP
Manager
SNMP Agent
SNMP Agent
Network
Element
Network
Element
OPM
10
Information model
11
org (3)
The object
identifier of
internet is 1.3.6.1
dod (6)
internet
(1)
12
directory
(1)
mgmt
(2)
experimental
(3)
OPM
private
(4)
13
The mgmt (2) node is used to identify all IETF recommended and IAB (Internet
Architecture Board) approved subnodes and objects.
The experimental (3) objects under IETF experiments.
The private (4) is heavily used node, Commercial vendors can acquire a number
under enterprises (1).
OPM
14
enterprises
(1)
ibm
(2)
cisco
(9)
hp
(11)
3Com
(43)
Cabletron
(52)
1
org(3)
- Example .1.3.6.1.2.1.1
dod(6)
6
internet(1)
private(4)
directory(1)
1
2
mgmt(2)
experimental(3)
mib-2(1)
tcp(6)
system(1)
interfaces(2)
2
OPM
ip(4)
4
16
OPM
17
MIB-II
Internet
{1 3 6 1}
directory
(1)
mgmt
(2)
experimental
(3)
private
(4)
mib-2
(1)
system (1)
interfaces (2)
at (3)
ip (4)
icmp (5)
snmp (11)
transmission (10)
cmot (9)
egp (8)
udp (7)
tcp (6)
OPM
MIB-II groups
System group contains the objects that describe system administration
Interface group defines the interfaces of the network components and network
parameters associated with each interface.
Address Translation (AT) group is a cross-reference table between the IP address
and the MAC (physical) address.
19
Communication model
Get-Request
Get-Next-Request
Set-Request
Get-Response
Trap
OPM
20
SNMP Communication
SNMP Manager
SNMP
SNMP
UDP
UDP
IP
IP
DLC
DLC
PHY
PHY
OPM
Phys ical Medium
Trap
Get-Response
GetNext-Request
Get-Request
SNMP Agent
Application
Trap
Get-Response
Set-Request
GetNext-Request
Get-Request
SNMP Manager
Application
Set-Request
Management
Data
SNMP Agent
21
get_response
port 161
get_response
port 161
get_next_request
Manager
Agent
set_request
get_response
trap
port 162
OPM
port 161
port 161
22
SNMP Messages
Get-Request
Sent by manager requesting specific data from agent
Get-Next-Request
Sent by manager requesting data of the next Managed Object to the one
specified
Set-Request
Initializes or changes the value of network element/parameter
Get-Response
Agent responds with data for get and set requests from the manager
Trap (Notification)
Alarm generated by an agent
OPM
23
PDU type
SNMP Message
SNMP
Version
Application Layer
Transport Layer
IP
header
Network Layer
Data Link Layer
Physical Layer
Request
ID
PHY
header
Error
status
SNMP
Community
UDP
header
SNMP Message
UDP
header
SNMP Message
MAC
header
IP
header
UDP
header
SNMP Message
MAC
header
IP
header
UDP
header
SNMP Message
OPM
Modulation information
Transport Medium
Error
index
Variable
bindings
SNMP PDU
24
OPM
26
OPM
27
OPM
28
enterprise
Agentaddress
Generic
trap
Specific
trap
Time
stamp
Variable
binding
SNMP Message
SNMP
Version
Application Layer
UDP
header
SNMP Message
IP
header
UDP
header
SNMP Message
IP
header
UDP
header
SNMP Message
Transport Layer
Network Layer
MAC
header
SNMP
Community
SNMP PDU
PHY
header
Transport Medium
OPM
Modulation information
29
Specific trap type -- Used to identify a non-generic trap when the Generic Trap
Type is enterprise specific.
OPM
30
Generic trap type -- Field describing the event being reported. The following
seven values are defined:
Generic Trap Type
Description (brief)
coldStart (0)
warmStart (1)
linkDown (2)
linkUp (3)
authenticationFailure (4)
Authentication failure
egpNeighborLoss (5)
enterpriseSpecific (6)
Enterprise-specific trap
OPM
31
PDU type
SNMP Message
SNMP
Version
Application Layer
Transport Layer
IP
header
Network Layer
MAC
header
Request
ID
IP
header
NonMax
Repeaters Repetition
SNMP
Community
UDP
header
SNMP Message
UDP
header
SNMP Message
UDP
header
Variable
bindings
SNMP PDU
SNMP Message
PHY
header
Transport
Medium
OPM
Modulation information
32
OPM
33
Traps are unreliable because the receiver does not send any acknowledgment
when it receives a trap. The sender cannot determine if the trap was received.
34
Functional Model
It consists of:
Operation (Configuration , Fault & Performance ) Management
Administration (Authentication)
[Accounting management is left open for service providers]
OPM
35
SNMP Security
SNMP Community Strings (like passwords)
ACCESS:
- READ-ONLY: You can send out a Get & GetNext to the SNMP agent, and
if the agent is using the same read-only string it will process the request.
- READ-WRITE: Get, GetNext, and Set. If a MIB object has an ACCESS
value of read-write, then a Set PDU can change the value of that object
with the correct read-write community string.
OPM
36
OPM
37
SNMPv3 Security
SNMPv3 has numerous security features:
Ensures that a packet has not been tampered with (integrity due to encryption)
Ensures that a message is from a valid source (authentication using login ID &
password)
Ensures that a message cannot be read by unauthorized (privacy due to
encryption).
38
OPM
39
RMON
Org
DoD
RMON1
Internet
Mgmt
Private 1. Statistics
2. History
MIB 1&2
3. Alarm
4. Hosts
MIB 1
5. Host Top N
6. Matrix
MIB 2
7. Filter
8. Capture
9. Event
RMON2
11. Protocol Directory
12. Protocol Distribution
13. Address Map
14. Network-Layer Host
15. Network-Layer Matrix
41
42
RMON Groups
Each group is optional so that vendors do not need to support all the groups
within the Management Information Base (MIB).
OPM
43
RMON operation
Probes (RMON agent) store network information within their RMON MIB
and are normally found as embedded software on network hardware such as
routers and switches although they can be a program running on a Computer.
Probes can only see the traffic that flows through them so they must be placed on
each LAN segment or WAN link that is to be monitored.
OPM
44