FreshTomato Wiki

User Tools

Site Tools

Trace:
admin-snmp

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
admin-snmp [2024/08/30 03:15] – -correct more inaccuracies hogwildadmin-snmp [2024/10/21 20:16] (current) – -Clarify risks of enabling Remote Acess hogwild
Line 3: Line 3:
 In this menu you can configure Simple Network Management Protocol settings. In this menu you can configure Simple Network Management Protocol settings.
  
-SNMP is a simple protocol used for network monitoring and management. It allows you to collect and organize information about devices on IP networks, and can even allow you to modify that information to change device behavior.+ \\ The Simple Network Management Protocol is used for network monitoring and management. It allows you to collect and organize information about devices on IP networks, and can even allow you to modify that information to change device behavior.
  
-SNMP has a simple client-server architecture. In SNMP, servers (called "managers") collect and process information about network devices. Typically, the manager software runs on a PC or server. Clients are called "agents". Agents run on any type of device which supports them, connected to a TCP/IP network. This can include computers, network equipment, and many other devices types, such as phones, IoT devices, and more.+SNMP has a simple client-server architecture. In SNMP:
  
-SNMP allows one or more Managers to collect management data from the various clients via a regular polling process. It exposes the data in the form of variables in a database, called the Management Information Base (MIB). The MIB describes the system status and configuration of each device. MIB variables can then be remotely queried (and sometimes manipulated) by Manager applications. \\  \\+ \\ 
 + 
 +  * Servers (called "Managers") collect and process information about \\ network devices. Typically, the manager software runs on a PC or server.  
 +  * Clients are called "Agents". Agents run on any device that supports them \\ that are connected to a IP network. This includes computers, network gear, \\ and many other device types, such as phones, \\ IoT devices, and more.  
 +  * FreshTomato acts as a sort of connector between the Manager and \\ the Agents. 
 + 
 + \\ 
 + 
 +SNMP lets one or more Managers collect management data from various clients via a regular polling process. It exposes the data in the form of variables in a database, called the Management Information Base (MIB). The MIB describes the system status and configuration of each device. MIB variables can then be remotely queried (and even manipulated) by Manager applications. \\  \\
  
 {{::admin-snmp.png?633}} {{::admin-snmp.png?633}}
Line 13: Line 21:
  \\  \\
  
-\\ **Enable SNMP**: Checking this enables the SNMP service, and allows a Manager program to start polling for data.+\\ **Enable SNMP**: enables the SNMP service, and allows a Manager program to start polling for data.
  
-**Port: **Here, enter the port on which the manager polls data from monitored gent devices. (Default: 161).+ \\
  
-**Remote Access: **Enabling this places a rule in the firewall exposing a UDP port (of above number) to the WAN interfaceNote that this makes SNMP a non-secure protocol. Any device that can "speak" SNMP could theoretically (query the SNMP devices or access Manager data?). Thus, for security, you are strongly urged to enter a setting in the //Allowed Remote IP Address// field described below.+**Port: **the port number on which the manager polls data from monitored agent devices. (Default: 161).
  
-**Allowed Remote IP Address: **In this field, enter the IP address of the PC or other device that is allowed Remote Access.+ \\
  
-**Location:** In this optional field, enter the physical location of the Server. (Default: hostname from [[basic-ident|Identification]] menu).+**Remote Access: **inserts a firewall rule to expose a UDP port (of above number) to the WAN interface.
  
-**Contact: **In this optional field, enter contact information for a person to be alerted. FreshTomato does not have an built-in email server.+//Enabling this makes SNMP a non-secure protocol//. Theoretically, any device that can "speak" SNMP could query SNMP devices or access Manager data. Thus, for security, you are strongly urged to enter a setting in the //Allowed Remote IP Address// field described below and add an //RO Community string//. 
 + 
 + \\ 
 + 
 +**Allowed Remote IP Address: **the IP address of the PC or other device allowed Remote Access. 
 + 
 + \\ 
 + 
 +**Location:** an optional field for the physical location of the Server. 
 + 
 +(Default: hostname in [[basic-ident|Identification]] menu). 
 + 
 + \\ 
 + 
 +**Contact: **an optional field for contact information for a person to alert. 
 + 
 +FreshTomato does not have an built-in email server. 
 + 
 + \\ 
 + 
 +**RO Community: **the Read-Only Community string. 
 + 
 +This string is used to authenticate the devices allowed to query SNMP data from an agent. You are strongly advised to change the default setting for better security. (Default: Public"). 
 + 
 + \\
  
-**RO Community: **The Read-Only Community string is used to authenticate the devices allowed to query SNMP data from an agent. You are strongly advised to enter different setting, for security purposes. (Default: Public").+Currently, FreshTomato'SNMP feature does not support RW (Read-Writecommunity or traps.
  
  \\ \\  \\ \\
  
  
admin-snmp.1724984141.txt.gz · Last modified: 2024/08/30 03:15 by hogwild

Page Tools

Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki