Solved

If not SNMP... then what?

Posted on 2004-09-07
2
299 Views
Last Modified: 2010-04-17
I have been asked to set up some kind of monitoring on our managed switches and 10 servers. Dell Switches and Dell Blade servers running Server 2000 and 2003.
I have poked around at setting up SNMP, but keep getting statements that SNMP is insecure.

But I have not obtained any other alternatives to using SNMP with some monitoring tools.

So far all the tools I have looked at use SNMP to complete the task of monitoring and being able to respond to Network issues.

I need some quick advice on what is working in the field and waht is not, keeping in mind that this is a small business. We have 5 satelite offices in Fla and 1 in Ga. It is a small WAN, but most important is that we need to monitor our main office consisting of 4 managed switches and 10 servers

Thanks in advance... Michael..
0
Comment
Question by:Linux_Hawk
  • 2
2 Comments
 
LVL 79

Accepted Solution

by:
lrmoore earned 500 total points
ID: 12003286
SNMP is not as unsecure as the media will lead you to believe. Do it right, and it's a wonderful tool.
How do you do it right? Change the default community strings from "public" and "private" to something else. The community string is a password, treat it as such. Lock down the devices to only accept write strings from specific IP addresses. You can setup a read-only string and no reade-write communities on the devices. You probably won't use SNMP to send config changes to servers anyway, just monitor them.

Try using Dell's server management tool, it should be free. http://www1.us.dell.com/content/topics/global.aspx/solutions/en/openmanage?c=us&cs=555&l=en&s=biz

Else, look at something like SolarWinds Orion http://www.solarwinds.net

Or for less money:
SNMPc http://www.castlerock.com

Or, if you want an alternative to using SNMP, you can use Nagios  http://www.nagios.org
- caution - nagios is not for the Linux newbie...
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 12003299
Then again, if you are a Linux Hawk, Nagios might not be as much of a challenge for you as it is for me...

0

Featured Post

IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

It happens many times that access list (ACL) have to be applied to outgoing router interface in order to limit some traffic.This article is about how to test ACL from the router which is not very intuitive for everyone. Below scenario shows simple s…
Problem Description:   Couple of months ago we upgraded the ADSL line at our branch office from Home to Business line. The purpose of transforming the service to have static public IP’s. We were in need for public IP’s to publish our web resour…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

706 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now