FreshTomato Wiki

User Tools

Site Tools

Trace:
admin-snmp

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
admin-snmp [2024/08/26 23:22] – -Define RO Community hogwildadmin-snmp [2024/10/21 20:16] (current) – -Clarify risks of enabling Remote Acess hogwild
Line 1: Line 1:
 ====== SNMP ====== ====== SNMP ======
  
-In this menu you can configure Simple Network Management Protocol settings in FreshTomato.+In this menu you can configure Simple Network Management Protocol settings.
  
-SNMP is a simple protocol used for network monitoring and management. It collects and organizes information about devices on TCP/IP-based networks, and can even allow you to modify that information to change device behavior.+ \\ The Simple Network Management Protocol is used for network monitoring and management. It allows you to collect and organize information about devices on IP networks, and can even allow you to modify that information to change device behavior.
  
-SNMP has a simple client-server architecture. In SNMP, servers (called "managers") collect and process information about network devices. Typically, the manager software runs on a PC or server. Clients are called "agents". Agents run on any type of device which supports them, connected to a TCP/IP network. This can include computers, network equipment, and many other devices types, such as phones, IoT devices, and more.+SNMP has a simple client-server architecture. In SNMP:
  
-SNMP collects management data from the various clients via a regular polling process. It exposes the data in the form of variables in a database, called the Management Information Base (MIB). The MIB describes the system status and configuration of each device. MIB variables can then be remotely queried (and sometimes manipulated) by managing applications. \\  \\+ \\ 
 + 
 +  * Servers (called "Managers") collect and process information about \\ network devices. Typically, the manager software runs on a PC or server.  
 +  * Clients are called "Agents". Agents run on any device that supports them \\ that are connected to a IP network. This includes computers, network gear, \\ and many other device types, such as phones, \\ IoT devices, and more.  
 +  * FreshTomato acts as a sort of connector between the Manager and \\ the Agents. 
 + 
 + \\ 
 + 
 +SNMP lets one or more Managers collect management data from various clients via a regular polling process. It exposes the data in the form of variables in a database, called the Management Information Base (MIB). The MIB describes the system status and configuration of each device. MIB variables can then be remotely queried (and even manipulated) by Manager applications. \\  \\
  
 {{::admin-snmp.png?633}} {{::admin-snmp.png?633}}
  
- \\ **Enable SNMP**: Checking this enables the SNMP service, causing it to start collecting data.+ \\ 
 + 
 +\\ **Enable SNMP**: enables the SNMP service, and allows a Manager program to start polling for data
 + 
 + \\ 
 + 
 +**Port: **the port number on which the manager polls data from monitored agent devices. (Default: 161). 
 + 
 + \\ 
 + 
 +**Remote Access: **inserts a firewall rule to expose a UDP port (of above number) to the WAN interface. 
 + 
 +//Enabling this makes SNMP a non-secure protocol//. Theoretically, any device that can "speak" SNMP could query SNMP devices or access Manager data. Thus, for security, you are strongly urged to enter a setting in the //Allowed Remote IP Address// field described below and add an //RO Community string//. 
 + 
 + \\ 
 + 
 +**Allowed Remote IP Address: **the IP address of the PC or other device allowed Remote Access. 
 + 
 + \\ 
 + 
 +**Location:** an optional field for the physical location of the Server. 
 + 
 +(Default: hostname in [[basic-ident|Identification]] menu). 
 + 
 + \\ 
 + 
 +**Contact: **an optional field for contact information for a person to alert. 
 + 
 +FreshTomato does not have an built-in email server.
  
-**Port: **Here, enter the port on which the Manager will poll data from the monitored devices. (Default: 161).+ \\
  
-**Remote Access: **Checking this allows Remote Access of ?+**RO Community: **the Read-Only Community string.
  
-**Allowed Remote IP Address: **In this field, enter the IP address of the PC or other device that is allowed Remote Access.+This string is used to authenticate the devices allowed to query SNMP data from an agent. You are strongly advised to change the default setting for better security. (Default: Public").
  
-**Location:** In this optional field, you can enter the physical location of the Server. (Default: hostname from [[basic-ident|Identification]] menu).+ \\
  
-**Contact: **In this optional fieldyou can enter contact information for person to be alerted.+CurrentlyFreshTomato's SNMP feature does not support RW (Read-Write) community or traps.
  
-**RO Community: **This Read-Only Community password is used to authorize the devices allowed to query the MIB database.\\+ \\ \\
  
  
admin-snmp.1724710940.txt.gz · Last modified: by hogwild

Page Tools

Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki