FreshTomato Wiki

User Tools

Site Tools

Trace:
admin-snmp

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
admin-snmp [2024/08/30 02:59] – -correct innacurate explanations of settings. Thanks petervdM hogwildadmin-snmp [2024/10/21 20:16] (current) – -Clarify risks of enabling Remote Acess hogwild
Line 3: Line 3:
 In this menu you can configure Simple Network Management Protocol settings. In this menu you can configure Simple Network Management Protocol settings.
  
-SNMP is a simple protocol used for network monitoring and management. It allows you to collect and organizate of information about devices on TCP/IP-based networks, and can even allow you to modify that information to change device behavior.+ \\ The Simple Network Management Protocol is used for network monitoring and management. It allows you to collect and organize information about devices on IP networks, and can even allow you to modify that information to change device behavior.
  
-SNMP has a simple client-server architecture. In SNMP, servers (called "managers") collect and process information about network devices. Typically, the manager software runs on a PC or server. Clients are called "agents". Agents run on any type of device which supports them, connected to a TCP/IP network. This can include computers, network equipment, and many other devices types, such as phones, IoT devices, and more.+SNMP has a simple client-server architecture. In SNMP:
  
-SNMP allows one or more Managers to collect management data from the various clients via a regular polling process. It exposes the data in the form of variables in a database, called the Management Information Base (MIB). The MIB describes the system status and configuration of each device. MIB variables can then be remotely queried (and sometimes manipulated) by Manager applications. \\  \\+ \\ 
 + 
 +  * Servers (called "Managers") collect and process information about \\ network devices. Typically, the manager software runs on a PC or server.  
 +  * Clients are called "Agents". Agents run on any device that supports them \\ that are connected to a IP network. This includes computers, network gear, \\ and many other device types, such as phones, \\ IoT devices, and more.  
 +  * FreshTomato acts as a sort of connector between the Manager and \\ the Agents. 
 + 
 + \\ 
 + 
 +SNMP lets one or more Managers collect management data from various clients via a regular polling process. It exposes the data in the form of variables in a database, called the Management Information Base (MIB). The MIB describes the system status and configuration of each device. MIB variables can then be remotely queried (and even manipulated) by Manager applications. \\  \\
  
 {{::admin-snmp.png?633}} {{::admin-snmp.png?633}}
Line 13: Line 21:
  \\  \\
  
-\\ **Enable SNMP**: Checking this enables the SNMP service, allowing the router to start polling for data.+\\ **Enable SNMP**: enables the SNMP service, and allows a Manager program to start polling for data.
  
-**Port: **Here, enter the port on which the Manager will poll data from the monitored devices. (Default: 161).+ \\
  
-**Remote AccessEnabling this **places a rule in the firewall exposing a UDP port (of above number) to the WAN interface.+**Port: **the port number on which the manager polls data from monitored agent devices. (Default: 161).
  
-**Allowed Remote IP Address: **In this field, enter the IP address of the PC or other device that is allowed Remote Access.+ \\
  
-**Location:** In this optional field, you can enter the physical location of the Server. (Default: hostname from [[basic-ident|Identification]] menu).+**Remote Access: **inserts a firewall rule to expose a UDP port (of above number) to the WAN interface.
  
-**Contact: **In this optional field, you can enter contact information for a person to be alerted.+//Enabling this makes SNMP a non-secure protocol//. Theoretically, any device that can "speak" SNMP could query SNMP devices or access Manager data. Thus, for security, you are strongly urged to enter a setting in the //Allowed Remote IP Address// field described below and add an //RO Community string//. 
 + 
 + \\ 
 + 
 +**Allowed Remote IP Address: **the IP address of the PC or other device allowed Remote Access. 
 + 
 + \\ 
 + 
 +**Location:** an optional field for the physical location of the Server. 
 + 
 +(Default: hostname in [[basic-ident|Identification]] menu). 
 + 
 + \\ 
 + 
 +**Contact: **an optional field for contact information for a person to alert. 
 + 
 +FreshTomato does not have an built-in email server. 
 + 
 + \\ 
 + 
 +**RO Community: **the Read-Only Community string. 
 + 
 +This string is used to authenticate the devices allowed to query SNMP data from an agent. You are strongly advised to change the default setting for better security. (Default: Public"). 
 + 
 + \\
  
-**RO Community: **This Read-Only Community password is used to authorize the devices allowed to query the MIB database.+Currently, FreshTomato's SNMP feature does not support a RW (Read-Write) community or traps.
  
  \\ \\  \\ \\
  
  
admin-snmp.1724983161.txt.gz · Last modified: 2024/08/30 02:59 by hogwild

Page Tools

Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki