SNMP / Syslog Flashcards
What is SNMP ?
SNMP (Simple Network Management Protocol) is a protocol used for monitoring and managing network devices such as routers, switches, servers, printers, and other IP-enabled devices. It enables network administrators to collect and organize information about network performance and troubleshoot issues.
2 main types of devices in SNMP
Managed Devices
Devices being managed using SNMP ex: routers, switches
Network Management Station (NMS)
Devices managing the managed devices / SNMP Server
3 main objectives of SNMP
1) Managed devices can notify the NMS of events
2) The NMS can ask the managed devices for info about their current status
3) The NMS can tell the managed devices to change aspects of their configuration
SNMP Components
NMS
SNMP Application - Provides an interface for the network admin to interact with. Displays alerts, statistics, charts, etc.
SNMP Manager - The software on the NMS that interacts with the managed devices. It recieves notifications, sends requests for information, sends configuration changes, etc.
Managed Device
SNMP Agent - the SNMP software running on the managed devices that interacts with the SNMP manager on the NMS
Management Information Base - the structure that contains the variables that are managed by the SNMP (interface status, traffic throughput, CPU usage, temp, etc)
What is syslog ?
Syslog is a standard protocol used for message logging in computer systems, network devices, and applications. It allows devices to send event messages to a centralized logging server, helping administrators monitor, analyze, and troubleshoot issues.
Syslog message format
Sequence:Time_Stamp: %Facility-Severity-Mnumonic Description
Syslog severity levels
0 Emergency
1 Alert
2 Critical
3 Error
4 Warning
5 Notice
6 Informational
7 Debugging
Syslog Logging Locations
Console Line
VTY Lines
Buffer
External Server
