D-Link DGS-1520-28MP Product Manual 2 - Page 34

SNMP-based Management, Connecting using SNMP, Traps, Management Information Base (MIB)

Get D-Link DGS-1520-28MP PDF manuals and user guides View all D-Link DGS-1520-28MP manuals
Add to My Manuals
Save this manual to your list of manuals

Page 34 highlights

DGS-1520 Series Gigabit Ethernet Smart Managed Switch Hardware Installation Guide SNMP-based Management The Switch can be managed with an SNMP-compatible console program. The Switch supports Simple Network Management Protocol (SNMP) versions 1, 2c, and 3. An SNMP agent decodes the incoming SNMP messages and responds to requests with MIB objects stored in the database. The SNMP agent updates the MIB objects to generate statistics and counters. Connecting using SNMP In SNMP versions 1 and 2c, user authentication is accomplished using community strings, which function like passwords. The remote user SNMP application and the Switch must use the same community string. SNMP packets from any station that were not authenticated are ignored (dropped). The default community strings for the Switch are: • public - Allows authorized management stations to retrieve MIB objects. • private - Allows authorized management stations to retrieve and modify MIB objects. SNMPv3 uses a more sophisticated authentication process that is separated into two parts. The first part is to maintain a list of users and their attributes that are allowed to act as SNMP managers. The second part describes what each user on that list can do as an SNMP manager. The Switch allows groups of users to be listed and configured with a shared set of privileges. This SNMP version may also be set for a listed group of SNMP managers. Thus, a group of SNMP managers can be created to view read-only information or receive traps using SNMP version 1, while assigning a higher level of security to another group, granting read/write privileges using SNMP version 3. Using SNMP version 3 individual users or groups of SNMP managers can be allowed to perform or be restricted from performing specific SNMP management functions. The functions that have been allowed or restricted are defined using the Object Identifier (OID) associated with a specific MIB. An additional layer of security is available for SNMP version 3 in that SNMP messages may be encrypted. Traps Traps are messages that are sent by an SNMP-enabled device to the Network Management Station (NMS) and can be used to alert network personnel of events that occur on the Switch. These events can be as serious, like a reboot (someone accidentally turned off the Switch), or less serious like a port status change. The Switch generates traps and sends them to a pre-configured IP address, usually an NMS. Typical traps include trap messages for Authentication Failure and Topology Change. Management Information Base (MIB) A MIB stores management and counter information. The Switch uses the standard MIB-II Management Information Base module. Consequently, values for MIB objects can be retrieved from any SNMP-based network management software. In addition to the standard MIB-II, the Switch also supports its own proprietary enterprise MIB as an extended Management Information Base. The proprietary MIB may also be retrieved by specifying the MIB Object Identifier. MIB values can be either read-only or read-write. 29

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
DGS-1520 Series Gigabit Ethernet Smart Managed Switch Hardware Installation Guide
29
SNMP-based Management
The Switch can be managed with an SNMP-compatible console program. The Switch supports Simple Network
Management Protocol (SNMP) versions 1, 2c, and 3. An SNMP agent decodes the incoming SNMP messages and
responds to requests with MIB objects stored in the database. The SNMP agent updates the MIB objects to generate
statistics and counters.
Connecting using SNMP
In SNMP versions 1 and 2c, user authentication is accomplished using
community strings
, which function like
passwords. The remote user SNMP application and the Switch must use the same community string. SNMP packets
from any station that were not authenticated are ignored (dropped).
The default community strings for the Switch are:
public
- Allows authorized management stations to retrieve MIB objects.
private
- Allows authorized management stations to retrieve and modify MIB objects.
SNMPv3 uses a more sophisticated authentication process that is separated into two parts. The first part is to
maintain a list of users and their attributes that are allowed to act as SNMP managers. The second part describes
what each user on that list can do as an SNMP manager.
The Switch allows groups of users to be listed and configured with a shared set of privileges. This SNMP version may
also be set for a listed group of SNMP managers. Thus, a group of SNMP managers can be created to view read-only
information or receive traps using SNMP version 1, while assigning a higher level of security to another group,
granting read/write privileges using SNMP version 3.
Using SNMP version 3 individual users or groups of SNMP managers can be allowed to perform or be restricted from
performing specific SNMP management functions. The functions that have been allowed or restricted are defined
using the Object Identifier (OID) associated with a specific MIB. An additional layer of security is available for SNMP
version 3 in that SNMP messages may be encrypted.
Traps
Traps are messages that are sent by an SNMP-enabled device to the Network Management Station (NMS) and can
be used to alert network personnel of events that occur on the Switch. These events can be as serious, like a reboot
(someone accidentally turned off the Switch), or less serious like a port status change. The Switch generates traps
and sends them to a pre-configured IP address, usually an NMS. Typical traps include trap messages for
Authentication Failure and Topology Change.
Management Information Base (MIB)
A MIB stores management and counter information. The Switch uses the standard MIB-II Management Information
Base module. Consequently, values for MIB objects can be retrieved from any SNMP-based network management
software. In addition to the standard MIB-II, the Switch also supports its own proprietary enterprise MIB as an
extended Management Information Base. The proprietary MIB may also be retrieved by specifying the MIB Object
Identifier. MIB values can be either read-only or read-write.