Skip to main content

What is Simple Network Management Protocol?


The SNMP(Simple Network Management Protocol)is a protocol that allows devices to expose useful information to other devices or applications. Using SNMP, the Network operators can be able to manage their network elements, identify the fault, and can configure the remote system.

The SNMP Protocol is based on the communication between an Agent and a Manager.

SNMP Manager:

A manager or management system is a separate entity that is responsible for communicating with the SNMP agent implemented network devices.

SNMP Manager’s key functions
  • Queries agents. 
  • Gets responses from agents Sets variables in agents. 
  • Acknowledges asynchronous events from agents. 
SNMP Agent:

The agent is a program that is packaged within the network element. Enabling the agent allows it to collect the management information database from the device locally and makes it available to the SNMP manager when it is queried for. These agents could be standard (e.g. Net-SNMP) or specific to a vendor (e.g. HP insight agent)

SNMP agent’s key functions
  • Collects management information about its local environment.
  • Stores and retrieves management information as defined in the MIB. 
  • Signals an event to the manager. 
  • Acts as a proxy for some non–SNMP manageable network node.
SNMP Operations:
  • Get Request
    • Get Request is a Read operation on the Managed Device.
    • Get request is used to fetch information from the Managed Device for a particular Object Identifier (OID)
  • Get Next Request
    • Get Next Request is same as Get Request operation. It is used to retrieve the value of the next OID value in the MIB hierarchy.
    • Get Next Request is useful to retrieve more than one piece of information from the Managed Device.
  • Get Bulk
    • Get Bulk Request is used to retrieve a large amount of data from the MIB objects.
    • It internally uses series of Get Next operation to retrieve all data from the MIB tables.
  • Set Request
    • Set Request is a Write operation on the Managed Device.
    • Set Request is used to set/write values in the Managed Device. Basically, it is used to configure Network Elements.
  • Trap
    • Trap is a type of Asynchronous Notification propagated from the Managed Device to the Network Management System.
    • Traps are generated from the Network Elements when it experiences some error condition.
  • Inform
    • SNMP Inform is similar to Traps but is more reliable.
    • When an Agent sends a Trap to the Network Management System (Manager), the Manager receives the Trap and no acknowledgment is sent to Agent. By this way, the Agent doesn’t know whether the Trap has been received by Manager or not. Whereas in Inform Request, the Manager upon receiving the Inform Request can acknowledge the Agent with an SNMP Response PDU. By this way, Agent can be able to know whether Inform has reached or not.
If the Agent didn’t receive the Acknowledgement from the Manager, it can resend the Inform Request again.

OIDs and MIBs

Two crucial SNMP concepts are OIDs (Object Identifier) and MIBs (Management Information Base).SNMP works by querying “Objects”. An object is simply something that we can gather information about on a network device. A MIB is like a translator that helps a Management Station to understand SNMP responses obtained from your network devices.

SNMP Versions Supported
  • SNMP – V1
    • SNMPv1 was the first version of SNMP protocol.
    • SNMPv1 security is based on the Community String authentication.
    • List of operations supported in v1 are Get, Get Next, Get Response, Set, Trap.
  • SNMP – V2
    • SNMPv2 is the next evolution of SNMPv1.
    • Apart from the operations defined in SNMPv1, it adds operations like Get Bulk and Informs. Some of the message formats of the above operations were changed in v2.
    • SNMPv2c is the commonly used one. It also uses the same Community String based security.
  • SNMP – V3
    • SNMPv3 is the recent version and has evolved towards Security.
    • It includes the below security models
      • User-based Security Model
        • Used to identify that the message is from the right source.
      • View-based Access Control Model
        • Used to control which User can access the parts of the MIB objects.

Comments

Popular Posts

How to install draw.io Desktop Application on Kali Linux?

draw.io is an online diagramming open source web application which can be used as flowchart maker, network diagram software, ER diagram tool, UML diagramand more. It can be freely accessible website of draw.io or official Docker image or Desktop version for macOS, Linux & Windows. This guide includes detailed instructions about Desktop version installation on Kali Linux. Download the .deb build for draw.io sudo apt update sudo apt -y install wget curl curl -s https://api.github.com/repos/jgraph/drawio-desktop/releases/latest | grep browser_download_url | grep '\.deb' | cut -d '"' -f 4 | wget -i - Install with dpkg command sudo apt -f install ./drawio-amd64-*.de When application is installed, launch the application with following command. drawio Now application is ready to use. Click on " Create New Diagram"  to create new project or click on " Open Existing Diagram " to edit. ...

What is Honeypot?

A  honeypot is a security mechanism that creates a virtual trap to lure attackers. Simply we can say that this is a  decoy box residing inside your network demilitarized zone  (DMZ), set up by a security professional to trap or aid in locating hackers, or to draw them  away from the real target system. Since this a  decoy system , a malicious attacker might try to attack; software on  the system can log information about the attacker such as the IP address. This information  can be used to try to locate the attacker either during or after the attack. Honeypots vary based on design and deployment models, but they are all decoys intended to look like legitimate, vulnerable systems to attract cyber criminals. Type of Honeypot Production Honeypot : Used by companies and corporations for the purpose of researching the motives hackers as well ass diverting and mitigating the risk of attacks on the overall network. Research Honeypot : Used by nonprofit organi...

How to install Oracle Virtualbox in Ubuntu?

Introduction VirtualBox is a powerful free tool offered by Oracle for running an operating system on your computer virtually. In this tutorial lets learn how to install VirtualBox on Ubuntu. Installation 1. Open a terminal or press Ctrl + Alt +T 2. Enter the following command to all the packages or dependencies.      sudo apt-get update ( make sure to give the root password) 3. Run the following command to download and install Virtualbox     sudo apt-get install vrtualbox virtualbox-ext-pack That's all! VirtualBox has been successfully installed on your Ubuntu machine, and you can start using it.