Solved

too many Authentication failure for SNMP

Posted on 2014-04-01
3
499 Views
Last Modified: 2014-04-12
Hi all,

to security experts, I am suffering from an IP causing to me a "Authentication failure for SNMP" on my device..as I can see from the logs.

I need to know the right steps or procedures from the security engineers on dealing with such events:

1- how to protect my device
2- how to prevent it to harm me?
3-shall I send an abuse?
0
Comment
Question by:besmile4ever
3 Comments
 
LVL 19

Expert Comment

by:Miguel Angel Perez Muñoz
ID: 39971751
On a local LAN may be a device with SNMP configured on another network that sends SNMP traps as is on her native network.
0
 
LVL 10

Accepted Solution

by:
0xSaPx0 earned 500 total points
ID: 39972382
1- how to protect my device

Locate the source of these authentication failures on the LAN and determine the cause for the failure and either disconnect the device from the LAN or resolve the authentication issue. Likely this is a device setup to send traps with an incorrect community string.

2- how to prevent it to harm me?

No harm will be done other than log polluton from the excessive failure attempts. However, if it is a brute force of some type you will need to locate the device and disable it.

3-shall I send an abuse?

This is a device located on the LAN segment and likely just a misconfiguration so I would do some detective work first before anything else.
0
 

Author Closing Comment

by:besmile4ever
ID: 39996946
thnks
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

As technology users and professionals, we’re always learning. Our universal interest in advancing our knowledge of the trade is unmatched by most industries. It’s a curiosity that makes sense, given the climate of change. Within that, there lies a…
This article outlines the process to identify and resolve account lockout in an Active Directory environment.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

773 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question