SNMPv3

The InfoSec team at our organization has been pushing for the use of SNMPv3 over the older variants. This brought me an opportunity to learn more about this topic and here I share some of my learnings.


First, thing -> SNMP = Simple Network Management Protocol. 


There are three famous version -> SNMPv1, SNMPv2c (these 2 have little to no security), & SNMPv3 which is very secure.

So, why SNMP? 

Say, we're starting a new company, this company requires 50 servers, 20 switches, & 10 routers to keep its internet services up & running. To find the health about individual devices would involves logging into the console of each device which in this case is about 80 devices which would take a few days. Wouldn't it be nicer if we could have each device send health metrics to a centralized server location? A

h-ha! That's where SNMP comes in to our rescue. SNMP is an Application level protocol that uses UDP port 161 to send device diagnostics information to a server, this server that is our central location is known as the manager. There's an Agent running on the device that we want to send diagnostics from, this Agent polls the device for information that it sends to the manager.

Network management station (NMS) is another name for the manager.

Another term that you would come across often is the Management Information Base (MIB). MIBs contain Object Identifiers (OIDs), think of there are universally unique IDs for various endpoints provided by the device.

Comments

Post a Comment

Popular posts from this blog

Playing around with Dell R520 server

Image
After I got my first major tech job, I learned that a major part of the job would be working with Dell servers, setting up ESXi hosts, vCenter installation, etc. so I thought it would be a good idea to practice this at home in my own lab environment so I went and bought a Dell R520 server from the Facebook marketplace for around 300 CAD$. Let me explain how I set up the server. We'll go over the installation of ESXi in detail in another post. For now, let's assume that our server comes with ESXi pre-installed. Let's start by ensuring that the server is plugged in. Most servers come with 2 different PSUs (Power Supply Units). These are meant to go on different Power Strips for power outage redundancy. Once the server is plugged in, try to get your hands on an old monitor with a VGA cable, should cost about 20 CAD$ used. We also need a keyboard. In my case, ESXi was pre-installed so all I had to do was set up the hostname and IP address. Since the internal IP address in my ne
Read more

Experience Interviewing for an Infrastructure Engineer - Continuous Delivery position

Been a while since I got to write to this blog. Recently, I had the pleasure of interviewing for an Infrastructure Engineer - Continuous Delivery position for a company based in Dallas, Texas. I wanted to pen down my experience while the memory is fresh and possibly help others in the same pursuits. The first round was the typical HR round where the interviewer requested to know more about my experience in the DevOps / Infrastructure engineering field and gauge my interest in the position / learn about my background. It included a lot of open-ended questions such as can you please explain your role in your current position. The next round was considerably more interesting and included more pointed questions about my experience in particular tools and working platforms. The interviewer also took the time to explain the role and the need for this position.  After passing this round, I received a take-home exam, the exam question is as follows: Hi Srikar, We're excited to continue our
Read more

2023 Summer Reading List Summary

Image
This blogpost is going to be quite different from my regular posts. I would like to write something down by myself instead of just being a proxy for chatGPT like I did in the past few posts. Books I've read this summer: Thinking in Systems by Donella Meadows Extreme Ownership by Jockco Wilink and Leif Basin Financial Intelligence by Karen Berman Zero to One by Peter Thiel Stillness Is The Key by Ryan Holiday Let's talk about my takeaways book by book: Thinking In Systems , after reading this book, I try to think of everything happening around me in terms of a simple flow chart, on the one side is a 'source', then the other side is the 'output', & in the middle is a box that is an effect which acts on the source to produce the output. Here's an example from the book: Most systems along with having a 'source' and an output, also have feedback loops, they can broadly be classified into 2 types. One is a corrective loop, e.g. a thermostat on a an Air
Read more