Solved

If not SNMP... then what?

Posted on 2004-09-07
2
300 Views
Last Modified: 2010-04-17
I have been asked to set up some kind of monitoring on our managed switches and 10 servers. Dell Switches and Dell Blade servers running Server 2000 and 2003.
I have poked around at setting up SNMP, but keep getting statements that SNMP is insecure.

But I have not obtained any other alternatives to using SNMP with some monitoring tools.

So far all the tools I have looked at use SNMP to complete the task of monitoring and being able to respond to Network issues.

I need some quick advice on what is working in the field and waht is not, keeping in mind that this is a small business. We have 5 satelite offices in Fla and 1 in Ga. It is a small WAN, but most important is that we need to monitor our main office consisting of 4 managed switches and 10 servers

Thanks in advance... Michael..
0
Comment
Question by:Linux_Hawk
  • 2
2 Comments
 
LVL 79

Accepted Solution

by:
lrmoore earned 500 total points
ID: 12003286
SNMP is not as unsecure as the media will lead you to believe. Do it right, and it's a wonderful tool.
How do you do it right? Change the default community strings from "public" and "private" to something else. The community string is a password, treat it as such. Lock down the devices to only accept write strings from specific IP addresses. You can setup a read-only string and no reade-write communities on the devices. You probably won't use SNMP to send config changes to servers anyway, just monitor them.

Try using Dell's server management tool, it should be free. http://www1.us.dell.com/content/topics/global.aspx/solutions/en/openmanage?c=us&cs=555&l=en&s=biz

Else, look at something like SolarWinds Orion http://www.solarwinds.net

Or for less money:
SNMPc http://www.castlerock.com

Or, if you want an alternative to using SNMP, you can use Nagios  http://www.nagios.org
- caution - nagios is not for the Linux newbie...
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 12003299
Then again, if you are a Linux Hawk, Nagios might not be as much of a challenge for you as it is for me...

0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

We've been using the Cisco/Linksys RV042 for years as: - an internet Gateway - a site-to-site VPN device - a leased line site-to-site subnet-to-subnet interface (And, here I'm assuming that any RV0xx behaves the same way as an RV042.  So that's …
Creating an OSPF network that automatically (dynamically) reroutes network traffic over other connections to prevent network downtime.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

919 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now