In network protocols, we usually use SNMP Simple Network Management Protocol. Let's briefly discuss some basic information about this protocol. First, we will introduce the basic overview of this Protocol. The predecessor of SNMP (Simple Network Management Protocol) is the Simple gateway monitoring Protocol (SGMP), which is used to manage communication lines, SGMP has been greatly modified, especially the SMI and MIB that comply with Internet definitions are added: architecture, the improved protocol is the well-known simple SNMP Network Management Protocol. SNMP aims to manage software and hardware platforms produced by many manufacturers on the Internet, therefore, the SNMP Simple Network Management Protocol is greatly affected by the Internet standard network management framework. Now, SNMP has been released to the third version, and its functions have been greatly enhanced and improved 。
Basic Introduction
The SNMP architecture is designed around the following four concepts and objectives: to keep the software cost of the agent as low as possible; to maximize the remote management function, in order to make full use of network resources of the Internet, the architecture must have room for expansion, and maintain the independence of SNMP, it does not rely on specific computer, gateway, and network transmission protocols. In recent improvements, it has added the goal of ensuring the security of the SNMP system 。
Internet access is facing many risks. Web servers may be attacked, and the security of email servers is also worrying, some Hidden vulnerabilities may exist on the network. Some devices on most networks always run the SNMP service. In many cases, these SNMP services are unnecessary, but have not attracted the attention of network administrators 。
According to the SANS Association, SNMP is one of the top ten major threats to security for hosts connected to the Internet. At the same time, SNMP is also one of the most common services on Internet hosts, the SNMP service is usually run on a device located on the edge of the network (A device outside the firewall protection ring), further intensifying the risk of SNMP Simple Network Management Protocol, but this is not the case 。