Solved

too many Authentication failure for SNMP

Posted on 2014-04-01
3
507 Views
Last Modified: 2014-04-12
Hi all,

to security experts, I am suffering from an IP causing to me a "Authentication failure for SNMP" on my device..as I can see from the logs.

I need to know the right steps or procedures from the security engineers on dealing with such events:

1- how to protect my device
2- how to prevent it to harm me?
3-shall I send an abuse?
0
Comment
Question by:besmile4ever
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 19

Expert Comment

by:Miguel Angel Perez Muñoz
ID: 39971751
On a local LAN may be a device with SNMP configured on another network that sends SNMP traps as is on her native network.
0
 
LVL 10

Accepted Solution

by:
0xSaPx0 earned 500 total points
ID: 39972382
1- how to protect my device

Locate the source of these authentication failures on the LAN and determine the cause for the failure and either disconnect the device from the LAN or resolve the authentication issue. Likely this is a device setup to send traps with an incorrect community string.

2- how to prevent it to harm me?

No harm will be done other than log polluton from the excessive failure attempts. However, if it is a brute force of some type you will need to locate the device and disable it.

3-shall I send an abuse?

This is a device located on the LAN segment and likely just a misconfiguration so I would do some detective work first before anything else.
0
 

Author Closing Comment

by:besmile4ever
ID: 39996946
thnks
0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When it comes to security, close monitoring is a must. According to WhiteHat Security annual report, a substantial number of all web applications are vulnerable always. Monitis offers a new product - fully-featured Website security monitoring and pr…
This article provides a convenient collection of links to Microsoft provided Security Patches for operating systems that have reached their End of Life support cycle. Included operating systems covered by this article are Windows XP,  Windows Server…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

724 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question