Home > Others

How to determine whether the SNMP service of the remote host is enabled

Source: Internet
Author: User
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

One thing we have done in recent days: Determine whether the remote host has enabled the SNMP service. At first, I thought this was not a very difficult task, but most of the things in the world would be counterproductive. As we went deeper, this problem began to show her face. (Haha, I 've read more about terrorism novels recently ).


At the beginning, I thought this was a common problem. To further understand this problem, I sent an inquiry message to the remote host through standard SNMP, for example, MIB are sysdesc nodes, such
If the SNMP service is not installed on the host, I get a timeout response. If I use an incorrect community, I will also get
Timeout response. I want to differentiate the two cases.


At first, I think the third-party jar packages for SNMP may have solved this problem, such as snmp4j, a well-received open-source project. However, the applicable API is not found. Fail again
Mail sent to snmp4j after defeat
List sends a mail to ask this question and soon gets a reply: cannot distinguish them (with any SNMP
Entity), because that is behavior is the desired
One. Why? Why? Suddenly I realized that the damn SNMP protocol is UDP (161,162 ). The damn UDP protocol is extremely irresponsible but effective.
Rate protocol, in simple words, is that you only send, UDP port only receive, as to whether to receive, or receive is a wrong packet, it will not tell you, it is not guaranteed that the sent messages will be received (compared with TCP
Protocol, such as three-way handshake ). This means that after you use the wrong community, you cannot expect SNMP to tell you that you will only get a timeout.


Okay, this path failed, but I know the root cause is that SNMP uses the UDP protocol, so start with UDP port detection. Google, I recommend! UDP port detection is troublesome. A foreigner has an article:
Trouble with UDP port scanning,
The lecture is very thorough. The basic principle for UDP port detection is: if a packet is sent to an unenabled UDP port, the system where the port is located will send a port that cannot reach the ICMP packet,
1. This ICMP packet is not forcibly sent and will not be sent by some systems. 2. This message may be confiscated by the firewall of the host. There are several other factors. In short, there is a lot of uncertainty in UDP port detection!


So far, this problem has not been solved, and the Nmap tool is very powerful!

This article only records this unfinished question. If there is any result, continue writing. Later, go to bed ......

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Related Keywords:
get the permalink how to determine if is function how to determine day of week how to determine if website is credible how to determine version of net how to determine where website is hosted null sessions enabled on remote host

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

What's Trending
Top 10 Tags
datastax versions naming convention zookeeper client class definition md5 microsoft sql server 2005 data structures exception handling error handling
Top 10 Keywords
microsoft download center down wordpress address url site address url wordpress address url windows installer 4 0 download 302 not found web address url definition site address url wordpress db2 integer mac os installation step by step pdf abbreviation for return

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More