Snmp

Introduction to SNMP www.sriinduit.blogspot.com

Contents ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

1. Basic Concepts Internet RMON Device Firewall / Router Management Station ... Polling Notification ... NM UNIX . . .. FDDI UNIX PC . . .. . . .. PC UNIX PC

網路管理標準化 ,[object Object],[object Object],[object Object]

網路管理相關標準 ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

SNMP Concepts ,[object Object],[object Object],[object Object],[object Object],[object Object],IAB: Internet Activities Board

SNMP Architectural Model ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

SNMP Architectural Model ( cont. ) Manager Agent Agent . . . Management Station Host Router Network Elements (NEs) Network Management Protocol SNMP Network 網路介面 SNMP UDP IP 網路介面 SNMP UDP IP 網路介面 SNMP UDP IP

Management Components ,[object Object],[object Object],[object Object],[object Object]

Management Components ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Management Components (cont.) ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Management Information Base (MIB) ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],網路介面 SNMP UDP IP Agent Managed Resources MIB NE: Network Element

SNMP Services ,[object Object],[object Object],[object Object],[object Object],Manager Agent(s) PDU: Protocol Data Unit Get, Set, GetNext Request Get Response Trap

SNMP Services Get GetNext Set Trap Get Request Get Response Manager Agent GetNext Request Get Response Manager Agent Set Request Get Response Manager Agent Trap Request Manager Agent

SNMP Services ( cont. ) ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Get-Next Request In SNMP, Only leaf objects have values. ＊ :Non-Leaf Object :Leaf Object 1 2 3 4 5 6 MIB Tree :

Default UDP Ports for SNMP 網路介面 SNMP UDP IP Manager Management Station Network Elements (NEs) 網路介面 SNMP UDP IP Agent 162 Any 161 Any

SNMP Standards ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

2. Management Information Base ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Object Identifier ,[object Object],[object Object],[object Object],root ccitt iso joint-iso-ccitt directory 0 1 2 std reg authority member body org 0 1 2 3 dod internet 6 1 1 2 3 4 mgmt experimental private MIB II system 1 interface 2 at 3 IP 4 ICMP 5 TCP 6 UDP 7 EGP 8 Trans. 10 SNMP 11 1 1 enterprises 1.3.6.1.2.1.2 1.3.6.1.4.1 1.3.6.1.2.1 MIB II interface enterprises

Private MIB Registration ,[object Object],[object Object],[object Object],ftp://ftp.isi.edu/in-notes/iana/assignments/enterprise-numbers

SMI (RFC1155) RFC1155-SMI DEFINITIONS ::= BEGIN EXPORTS -- EVERYTHING internet, directory, mgmt, experimental, private, enterprises, OBJECT-TYPE, ObjectName, ObjectSyntax, SimpleSyntax, ApplicationSyntax, NetworkAddress, IpAddress, Counter, Gauge, TimeTicks, Opaque; internet OBJECT IDENTIFIER ::= { iso org(3) dod(6) 1 } directory OBJECT IDENTIFIER ::= { internet 1 } mgmt OBJECT IDENTIFIER ::= { internet 2 } experimental OBJECT IDENTIFIER ::= { internet 3 } private OBJECT IDENTIFIER ::= { internet 4 } enterprises OBJECT IDENTIFIER ::= { private 1 }

SMI ( cont. ) OBJECT-TYPE MACRO ::= BEGIN TYPE NOTATION ::= "SYNTAX" type (TYPE ObjectSyntax) "ACCESS" Access "STATUS" Status VALUE NOTATION ::= value (VALUE ObjectName) Access ::= "read-only" | "read-write" | "write-only" | "not-accessible" Status ::= "mandatory" | "optional" | "obsolete" END ObjectName ::= OBJECT IDENTIFIER ASN.1 Macro

OBJECT-TYPE Example sysDesc OBJECT-TYPE SYNTAX DisplayString (SIZE (0..255)) ACCESS read-only STATUS mandary ::= { system 1}

ObjectName ::= OBJECT IDENTIFIER ObjectSyntax ::= CHOICE { simple SimpleSyntax, application-wide ApplicationSyntax} SimpleSyntax ::= CHOICE { number INTEGER, string OCTET STRING, object OBJECT IDENTIFIER, empty NULL} } ApplicationSyntax ::= CHOICE { address NetworkAddress, counter Counter, gauge Gauge, ticks TimeTicks, arbitrary Opaque } NetworkAddress ::= CHOICE { internet IpAddress} IpAddress ::= [APPLICATION 0] IMPLICIT OCTET STRING (SIZE (4)) Counter ::= [APPLICATION 1] IMPLICIT INTEGER (0..4294967295) Gauge ::= [APPLICATION 2] IMPLICIT INTEGER (0..4294967295) TimeTicks ::= [APPLICATION 3] IMPLICIT INTEGER (0..4294967295) Opaque ::= [APPLICATION 4] IMPLICIT OCTET STRING END SMI ( cont. )

Object Syntax Summary ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Concise MIB Definition (RFC 1212) OBJECT-TYPE MACRO ::= BEGIN TYPE NOTATION ::= "SYNTAX" type(ObjectSyntax) "ACCESS" Access "STATUS" Status DescrPart ReferPart IndexPart DefValPart VALUE NOTATION ::= value (VALUE ObjectName) DescrPart ::= "DESCRIPTION" value (description DisplayString) | empty ReferPart ::= "REFERENCE" value (reference DisplayString) | empty IndexPart ::= "INDEX" "{" IndexTypes "}" | empty IndexTypes ::= IndexType | IndexTypes "," IndexType IndexType ::= value (indexobject ObjectName) | type (indextype) DefValPart ::= "DEFVAL" "{" value (defvalue ObjectSyntax) "}" | empty END

Examples: MIB II (RFC 1213) ifEntry OBJECT-TYPE SYNTAX IfEntry ACCESS not-accessible STATUS mandatory DESCRIPTION "An interface entry containing objects at the subnetwork layer and below for a particular interface." INDEX { ifIndex } ::= { ifTable 1 } ifTable OBJECT-TYPE SYNTAX SEQUENCE OF IfEntry ACCESS not-accessible STATUS mandatory DESCRIPTION "A list of interface entries. The number of entries is given by the value of ifNumber." ::= { interfaces 2 } mib-2 OBJECT IDENTIFIER ::= { mgmt 1 } system OBJECT IDENTIFIER ::= { mib-2 1 } interfaces OBJECT IDENTIFIER ::= { mib-2 2 } at OBJECT IDENTIFIER ::= { mib-2 3 } ip OBJECT IDENTIFIER ::= { mib-2 4 } icmp OBJECT IDENTIFIER ::= { mib-2 5 } tcp OBJECT IDENTIFIER ::= { mib-2 6 } udp OBJECT IDENTIFIER ::= { mib-2 7 } egp OBJECT IDENTIFIER ::= { mib-2 8 } -- cmot OBJECT IDENTIFIER ::= { mib-2 9 } transmission OBJECT IDENTIFIER ::= { mib-2 10 } snmp OBJECT IDENTIFIER ::= { mib-2 11 }

Identification of Managed Objects ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Two Kinds of Managed Objects ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],mib-2.interface.ifTable.ifEntry.ifDescr . 2 mib-2.interface.ifTable.ifEntry.ifDescr . 6 mib-2.interface.ifTable.ifEntry.ifType . 2 mib-2.interface.ifTable.ifEntry.ifType . 6

Columnar Objects ifTable OBJECT-TYPE SYNTAX SEQUENCE OF IfEntry … ::= { interface 2 } IfEntry ::= SEQUENCE { ifIndex INTEGER, ifDescr DisplayString, ifType INTEGER, … } ifEntry OBJECT-TYPE SYNTAX IfEntry … INDEX {ifIndex } ::= { ifTable 1} ifDescr OBJECT-TYPE SYNTAX DisplayString (SIZE(0..255)) ACCESS read-only STATUS madatory ... ::= {ifEntry 2}

Columnar Objects ifIndex ifDescr ifType . . . 1 le0 6 . . . 6 llc0 1 . . . 7 lo0 24 . . . 9 le1 6 . . . .ifTable.ifEntry.1 (1.3.6.1.2.1.2.2.1. 1 ) .ifTable.ifEntry.2 (1.3.6.1.2.1.2.2.1. 2 ) .ifTable.ifEntry.3 (1.3.6.1.2.1.2.2.1. 3 ) 1.3.6.1.2.1.2.2.1.3.7 1.3.6.1.2.1.2.2.1.2. 6

Index in MIB II ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Index Example ,[object Object],[object Object],[object Object],[object Object],.1.3.6.1.2.1.6.13.1.1.10.144.18.118.1200.10.144.14.40.1600

MIB II ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

MIB-II ( cont. ) ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

IETF MIBs ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

3. SNMP ,[object Object],[object Object],[object Object],[object Object],[object Object],Message ::= SEQUENCE { version INTEGER {version-1(0)}, community OCTET STRING, data ANY } Version Community SNMP PDU

SNMP Authentication ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

SNMP PDU ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],GetRquest : GetNextRequest : GetResponse : SetRequest : Trap : [0] PDU [1] PDU [2] PDU [3] PDU [4] Trap-PDU Five SNMP PDUs: PDU: Protocol Data Unit

SNMP PDU ( cont. ) PDU type request-id 0 0 variable-bindings GetRequest, GetNextRequest, SetRequest PDU type request-id error-status error-index variable-bindings GetResponse variable-bindings name value name value name value . . .

Trap-PDU Trap-PDU ::= [4] IMPLICIT SEQUENCE { enterprise OBJECT IDENTIFIER, agent-addr NetworkAddress, generic-trap INTEGER { coldStart(0), warmStart(1), linkDown(2), linkUp(3), authenticationFailure(4), egpNeighborLoss(5), enterpriseSpecific(6)}, specific-trap INTEGER, time-stamp TimeTicks, variable-bindings VarBindList } ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],PDU type enterprise agent-addr generic - trap variable-bindings specific - trap time-stamp

How does a Manager do? Translates Internal Data to ASN.1 Format Translates ASN.1 Package to Internal Data Format NM Application NM Application Agent Agent Manager Sends Request PDU to Agent Received Response PDU from Agent

How does an Agent do? From Manager To Manager Agent Received SNMP Request PDU from Manager Translates ASN.1 Structure to Internal Data Maps MIB Variables to Internal Variables Sends SNMP Response PDU to Manager Translates Response PDU to ASN.1 Format Implement SNMP Request to Set or Get MIB Value

Main Loop of Agent ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Main Loop of Agent (cont.) ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

What's New in SNMPv2 ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

4. SNMP Application Examples ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Example for snmpget ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Example for snmpget (cont.) ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Example of snmpwalk ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Example of snmptrap ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Get System Information ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Get Interface Information ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Traffic Monitoring ,[object Object],[object Object],(C 2 - C 1 )  8 (t 2 - t 1 )  Bandwidth  100% Utilization (%) =

6. Reference ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Development of SNMP Standards ,[object Object],[object Object],[object Object]

SNMPv3 ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Appendix: ASN.1 Concepts ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

ASN.1 Reserved Words ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

What are defined using ASN.1 ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Modules ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Tags and Types ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],BER: Basic Encoding Rules

Tags and Types (cont.) ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Values in ASN.1 ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Basic Encode Rules ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],T T L T L V V V L

Snmp

Recommandé

Recommandé

Contenu connexe

Tendances

Tendances (20)

En vedette

En vedette (18)

Similaire à Snmp

Similaire à Snmp (20)

Dernier

Dernier (20)

Snmp