chapter 28 network management: snmpplw/dccn/presentation/ch28.pdf · the simple network management...
TRANSCRIPT
Chapter 28
Network Management:SNMP
28.1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display.
2828--1 1 NETWORK MANAGEMENT SYSTEMNETWORK MANAGEMENT SYSTEM
WeWe cancan saysay thatthat thethe functionsfunctions performedperformed byby aa networknetworkWeWe cancan saysay thatthat thethe functionsfunctions performedperformed byby aa networknetworkmanagementmanagement systemsystem cancan bebe divideddivided intointo fivefive broadbroadcategoriescategories:: configurationconfiguration managementmanagement faultfaultcategoriescategories:: configurationconfiguration management,management, faultfaultmanagement,management, performanceperformance management,management, securitysecuritymanagementmanagement andand accountingaccounting managementmanagementmanagement,management, andand accountingaccounting managementmanagement..
Topics discussed in this section:Topics discussed in this section:Configuration ManagementFault ManagementPerformance ManagementSecurity ManagementAccounting Management
28.2
Accounting Management
2828--2 2 SIMPLE NETWORK MANAGEMENTSIMPLE NETWORK MANAGEMENTPROTOCOL (SNMP)PROTOCOL (SNMP)PROTOCOL (SNMP)PROTOCOL (SNMP)
TheThe SimpleSimple NetworkNetwork ManagementManagement ProtocolProtocol (SNMP)(SNMP) isis aaTheThe SimpleSimple NetworkNetwork ManagementManagement ProtocolProtocol (SNMP)(SNMP) isis aaframeworkframework forfor managingmanaging devicesdevices inin anan internetinternet usingusingthethe TCP/IPTCP/IP protocolprotocol suitesuite ItIt providesprovides aa setset ofofthethe TCP/IPTCP/IP protocolprotocol suitesuite.. ItIt providesprovides aa setset ofoffundamentalfundamental operationsoperations forfor monitoringmonitoring andand maintainingmaintaininganan internetinternetanan internetinternet..
Topics discussed in this section:Topics discussed in this section:ConceptManagement ComponentsStructure of Management Information (SMI)Management Information Base (MIB)SNMP
28.4
SNMP
Note
SNMP defines the format of packets
Note
SNMP defines the format of packets exchanged between a manager andan agent It reads and changes thean agent. It reads and changes the
status (values) of objects (variables) i SNMP k tin SNMP packets.
28.7
Note
SMI defines the general rules for naming objects defining object types (includingobjects, defining object types (includingrange and length), and showing how to encode objects and values. SMI does not define the number of objects an jentity should manage or name the
objects to be managed or define theobjects to be managed or define the association between the objects and
their values28.8
their values.
MIB t ll ti f d
Note
MIB creates a collection of named objects, their types, and their relationships to each otherin an entity to be managed.a e t ty to be a aged
28.9
Note
We can compare the task of networkmanagement to the task of writing a program.
❏ Both tasks need rules. In networkmanagement this is handled by SMI.
❏ Both tasks need variable declarations. Innetwork management this is handled by MIB.
❏ Both tasks have actions performed bystatements. In network management this ishandled by SNMP.
28.10
Note
All objects managed by SNMP are given
Note
j g y gan object identifier.
The object identifier always starts with 1 3 6 1 2 11.3.6.1.2.1.
28.14
Example 28.1
Figure 28.11 shows how to define INTEGER 14.
Figure 28.11 Example 28.1, INTEGER 14
28.21
Example 28.2
Figure 28.12 shows how to define the OCTET STRING “HI”.
Figure 28.12 Example 28.2, OCTET STRING “HI”Figure 28.12 Example 28.2, OCTET STRING HI
28.22
Example 28.3
Figure 28.13 shows how to define ObjectIdentifier 1.3.6.1 (iso.org.dod.internet).
Fi 28 13Figure 28.13 Example 28.3, ObjectIdentifier 1.3.6.1
28.23
Example 28.4
Figure 28.14 shows how to define IPAddress 131.21.14.8..
Figure 28.14 Example 28.4, IPAddress 131.21.14.8.g p
28.24
Example 28.5
In this example, a manager station (SNMP client) usesthe GetRequest message to retrieve the number of UDPdatagrams that a router has received. There is only one
i d i h di i bl l dVarBind entity. The corresponding MIB variable relatedto this information is udpInDatagrams with the objectid ifi 1 3 6 1 2 1 1 0 h iidentifier 1.3.6.1.2.1.7.1.0. The manager wants to retrievea value (not to store a value), so the value defines a null
i Fi 28 23 h h l i f hentity. Figure 28.23 shows the conceptual view of thepacket and the hierarchical nature of sequences. We have
d hi d l d b f h dused white and colored boxes for the sequences and agray one for the PDU. The VarBind list has only oneV Bi d
28.35
VarBind.
Example 28.5 (continued)
The variable is of type 06 and length 09. The value is oftype 05 and length 00. The whole VarBind is a sequenceof length 0D (13). The VarBind list is also a sequence ofl h ( ) h G i f l h ( 9)length 0F (15). The GetRequest PDU is of length ID (29).Now we have three OCTET STRINGs related to the
i i d l d fl hsecurity parameter, security model, and flags. Then wehave two integers defining maximum size (1024) and
ID (64) Th h d i f l h 12message ID (64). The header is a sequence of length 12,which we left blank for simplicity. There is one integer,
i ( i 3) Th h l i fversion (version 3). The whole message is a sequence of52 bytes. Figure 28.24 shows the actual message sent byh i ( li ) h ( )
28.36
the manager station (client) to the agent (server).