Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - SNMP AGENT GUIDE REV 1 Manual
  1. Manuals
  2. Brands
  3. Juniper Manuals
  4. Software
  5. SECURITY THREAT RESPONSE MANAGER 2008.2 - SNMP AGENT GUIDE REV...
  6. Manual
Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - SNMP AGENT GUIDE REV 1 Manual

Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - SNMP AGENT GUIDE REV 1 Manual

Snmp agent guide
Hide thumbs
Table of Contents

Advertisement

Quick Links

Download this manual
Security Threat Response Manager
SNMP Agent Guide
Release 2008.2
Juniper Networks, Inc.
1194 North Mathilda Avenue
Sunnyvale, CA 94089
USA
408-745-2000
www.juniper.net
Part Number: 530-025621-01, Revision 1

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the SECURITY THREAT RESPONSE MANAGER 2008.2 - SNMP AGENT GUIDE REV 1 and is the answer not in the manual?

Questions and answers

Related Manuals for Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - SNMP AGENT GUIDE REV 1

Summary of Contents for Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - SNMP AGENT GUIDE REV 1

  • Page 1 Security Threat Response Manager SNMP Agent Guide Release 2008.2 Juniper Networks, Inc. 1194 North Mathilda Avenue Sunnyvale, CA 94089 408-745-2000 www.juniper.net Part Number: 530-025621-01, Revision 1...
  • Page 2 Juniper Networks or their respective owners. All specifications are subject to change without notice. Juniper Networks assumes no responsibility for any inaccuracies in this document or for any obligation to update information in this document. Juniper Networks reserves the right to change, modify, transfer, or otherwise revise this publication without notice.

  • Page 3: Table Of Contents

    ONTENTS BOUT UIDE Conventions Technical Documentation Documentation Feedback Requesting Support SNMP A BOUT THE MBEDDED GENT About the SNMP Agent Accessing the SNMP Agent SNMP-L -MIB SING THE INUX Processor Details Disk Space Details Mount Details System Performance Details Processes Table Details Processor Performance Details Page Details Service Details...
  • Page 4 IP Net to Media Table Details ICMP Table Details TCP Details TCP Connection Details UDP Details UDP Table Details SNMP Details -MIB SING THE ESOURCES System Details Storage Details Device Details Processor Table Details Network Table Details Printer Table Details Disk Storage Details Partition Details File System Details...

  • Page 5: About This Guide

    Information that alerts you to potential personal injury. Technical You can access technical documentation, technical notes, and release notes Documentation directly from the Juniper networks Support Web site at http:// www.juniper.net/support Documentation We encourage you to provide feedback, comments, and suggestions so that we Feedback can improve the documentation.

  • Page 6: Requesting Support

    BOUT UIDE Requesting • Open a support case using the Case Management link at Support or call 1-888-314-JTAC (from the United States, http://www.juniper.net/support/ Canada, or Mexico) or 1-408-745-9500 (from elsewhere). STRM SNMP Agent Guide...

  • Page 7: About The Embedded Snmp Agent

    SNMP BOUT THE MBEDDED GENT The STRM Embedded SNMP Agent is a service that runs on STRM appliances to monitor system performance and usage metrics such as CPU utilization, memory usage, disk space usage, and network interface statistics. The SNMP Agent allows STRM to monitor system health and enables integration with other existing network management products, such as, HP Openview or IBM Tivoli for system health monitoring.
  • Page 8 SNMP A BOUT THE MBEDDED GENT SNMP Console Manager SNMP Agent for Linux Linux System Details Process Details Details relating to HOST-RESOURCES-MIB, RFC-1213-MIB, and SNMP-LINUX-MIB The SNMP Agent gathers all the information from your Linux system pertaining to SNMP-LINUX-MIB, HOST-RESOURCES-MIB, and RFC-1213-MIB and exposes that information using the STRM interface and SNMP managers.

  • Page 9: Using The Snmp-Linux -Mib

    SNMP-L -MIB SING THE INUX The SNMP-Linux-MIB is a pre-defined MIB that retrieves information from your system. This MIB retrieves the following information: Processor Details • Disk Space Details • • Mount Details • System Performance Details • Service Details Boot Log Details •...
  • Page 10 SNMP-L -MIB SING THE INUX Disk Space Details The disk space details includes: Table 2-2 Disk Space Details S.No Disk Space Details File System Type Total Disk Space in MegaBytes Used Space in MegeBytes Percentage of Free Space Percentage of Used Space The Mount Point of the Device For example, sample output may include: Mount Details...
  • Page 11 System Performance Details For example, sample output may include: System The system performance details includes: Performance Table 2-4 System Performance Details Details S.No System Performance Details Description One Minute Load CPU Utilization of the last one minute Five Minute Load CPU Utilization of the last five minutes Fifteen Minute Load CPU Utilization of the last fifteen minutes...

  • Page 12: Processes Table Details

    SNMP-L -MIB SING THE INUX Processes Table The process table details includes: Details Table 2-5 Process Details S.No Process Table Details Description Process ID (PID) Specifies the Process Identification Number. Process Command Specifies the name of the process. Process User Specifies the user that started the process.

  • Page 13: Page Details

    Service Details For example, sample output may include: Page Details The page details includes: Table 2-7 Processor Details S.No Processor Details Description Swap Pages In Specifies the number of swap pages the system has brought in. Swap Pages Out Specifies the number of swap pages the system has brought out.

  • Page 14: Boot Log Details

    SNMP-L -MIB SING THE INUX For example, sample output may include: Boot Log Details The boot log details includes: Table 2-9 Boot Log Details S.No Boot Log Details Time Boot Host Name Process Name Message For example, sample output may include: STRM SNMP Agent...

  • Page 15: Cron Log Details

    Cron Log Details Cron Log Details The boot log details includes: Table 2-10 Cron Log Details S.No Cron Log Details Cron Date Cron Time Cron Host Name Cron User Cron Process Cron Frequency For example, sample output may include: Secure Log Details The secure log details includes: Table 2-11 Secure Log Details S.No...

  • Page 16: Ide Details

    SNMP-L -MIB SING THE INUX For example, sample output may include: IDE Details The IDE details includes: Table 2-12 IDE Details S.No IDE Details Description IDE Cache Specifies the cache size of the IDE. IDE Driver Specifies the driver details of IDE. IDE Model Specifies the model of the IDE devices.

  • Page 17: Pci Details

    PCI Details Table 2-13 Module Details (continued) S.No Module Details Description Module Usage Count Specifies the module usage count. For example, sample output may include: PCI Details The PCI details includes: Table 2-14 PCI Details S.No PCI Details PCI Name PCI Bus PCI Device PCI Function...

  • Page 18: Scsi Details

    SNMP-L -MIB SING THE INUX SCSI Details The SCSI details includes: Table 2-15 SCSI Details S.No SCSI Details SCSI Index SCSI ID SCSI Type SCSI Model SCSI Vendor For example, sample output may include: Slab Details The Slab details includes: Table 2-16 Slab Details S.No Slab Details...
  • Page 19 Slab Details For example, sample output may include: STRM SNMP Agent...

  • Page 21: Urfc1213-Mib

    RFC1213-MIB SING THE The RFC1213-MIB supports network management protocols for TCP/IP-based networks. The SNMP Agent uses RFC1213-MIB, which includes the following nodes: System Details • Interfaces • Address Translation • • IP Details • ICMP Table Details TCP Details • UDP Details •...
  • Page 22 RFC1213-MIB SING THE Table 3-1 System Details (continued) S.No System Details Description SysObjectId Specifies the vendor's authoritative identification of the network management subsystem contained in the entity. This value is allocated in the SMI enterprises subtree (1.3.6.1.4.1) and provides information on the type of system being managed.
  • Page 23 Interfaces Interfaces The interfaces include: Table 3-2 Interface Details S.No Interface Details Description ifNumber Specifies the number of network interfaces (regardless of their current state) present on this system. ifDescr Specifies a description about the interface. This string should include the name of the manufacturer, the product name, and the version of the hardware interface.
  • Page 24 RFC1213-MIB SING THE Table 3-2 Interface Details (continued) S.No Interface Details Description ifInDiscards Specifies the number of inbound packets that were chosen to be discarded even though no errors had been detected to prevent their being deliverable to a higher-layer protocol. One possible reason for discarding such a packet could be to free up buffer space.
  • Page 25 Address Translation For example, sample output may include: Address The address translation details include: Translation Table 3-3 Address Translation Details Address Translation S.No Table Details Description atPhysAddress Specifies the media-dependent physical address. Setting this object to a null string (one of zero length) invalidates the corresponding entry in the atTable object, which disassociates the interface identified with the entry from the associated entry.
  • Page 26 RFC1213-MIB SING THE Table 3-4 IP Details S.No IP Details Description ipForwarding Specifies whether this entity is acting as an IP gateway when forwarding datagrams received by, but not addressed to, this entity. Note that for some managed nodes, this object may take on only a subset of the values possible.
  • Page 27 IP Details Table 3-4 IP Details (continued) S.No IP Details Description ipOutRequests Specifies the total number of IP datagrams that local IP user protocols (including ICMP) supplied to IP address in requests for transmission. Note: This counter does not include any datagrams counted in ipForwDatagrams.

  • Page 28: System Details

    RFC1213-MIB SING THE For example, sample output may include: System Details The systems details includes: Table 3-1 System Details S.No System Details Description SyDescr Specifies a description of the entity. This value should include the full name and version identification of the system's hardware type, software operating-system, and networking software.

  • Page 29: Ip Address Table Details

    IP Details Table 3-1 System Details (continued) S.No System Details Description SysServices Specifies the set of services that this entity offers. The value is a sum. By default, this sum is initially zero (0). Then, for each layer, L, in the range 1 through 7, that this node performs transactions for, 2 raised to (L - 1) is added to the sum.

  • Page 30: Ip Route Table Details

    RFC1213-MIB SING THE Table 3-2 IP Address Table Details (continued) IP Address Table S.No Details Description ipAdEntNetMask Specifies the subnet mask associated with the IP address of this entry. The value of the mask is an IP address with all the network bits set to 1 and all the hosts bits set to 0.
  • Page 31 IP Details Table 3-3 IP Address Table Details (continued) IP Address S.No Table Details Description ipRouteMetric4 Specifies an alternate routing metric for this route. The details of this metric are determined by the routing protocol specified in the route's ipRouteProto value. If this metric is not used, set the value to -1.

  • Page 32: Ip Net To Media Table Details

    RFC1213-MIB SING THE Table 3-3 IP Address Table Details (continued) IP Address S.No Table Details Description ipRouteInfo Specifies a reference to MIB definitions specific to the particular routing protocol that is responsible for this route, as determined by the value specified in the route's ipRouteProto value.

  • Page 33: Icmp Table Details

    ICMP Table Details For example, sample output may include: ICMP Table Details The ICMP table details includes: Table 3-5 ICMP Table Details S.No ICMP Table Details Description icmpInMsgs Specifies the total number of ICMP messages that the entity received. Note: This counter includes all those counted by icmpInErrors.
  • Page 34 RFC1213-MIB SING THE Table 3-5 ICMP Table Details (continued) S.No ICMP Table Details Description icmpInAddrMasks Specifies the number of ICMP Address Mask Request messages received. icmpInAddrMaskReps Specifies the number of ICMP Address Mask Reply messages received. icmpOutMsgs Specifies the total number of ICMP messages that this entity attempted to send.

  • Page 35: Tcp Details

    TCP Details For example, sample output may include: TCP Details The TCP details includes: Table 3-6 TCP Details S.No TCP Table Details Description tcpRtoAlgorithm Specifies the algorithm to determine the timeout value used for retransmitting unacknowledged octets. tcpRtoMin Specifies the minimum value permitted by a TCP implementation for the retransmission timeout, measured in milliseconds.
  • Page 36 RFC1213-MIB SING THE Table 3-6 TCP Details (continued) S.No TCP Table Details Description tcpMaxConn Specifies the limit on the total number of TCP connections the entity can support. In entities where the maximum number of connections is dynamic, set this this object to value -1.

  • Page 37: Tcp Connection Details

    TCP Details For example, sample output may include: TCP Connection The TCP connection details includes: Details Table 3-7 TCP Connection Details TCP Connection S.No Details Description tcpConnState Specifies the state of this TCP connection. The only value that is configurable using a management station is deleteTCB(12).

  • Page 38: Udp Details

    RFC1213-MIB SING THE For example, sample output may include: UDP Details The UDP details includes: Table 3-8 UDP Details S.No UDP Details Description udpInDatagrams Specifies the total number of UDP datagrams delivered to UDP users. udpNoPorts Specifies the total number of received UDP datagrams for which there was no application at the destination port.

  • Page 39: Snmp Details

    SNMP Details Table 3-9 UDP Table Details (continued) UDP Table S.No Details Description udpLocalPort Specifies local port number for this UDP listener. For example, sample output may include: SNMP Details The SNMP details includes: Table 3-10 SNMP Details S.No SNMP Details Description snmpInPkts Specifies the total number of SNMP messages...
  • Page 40 RFC1213-MIB SING THE Table 3-10 SNMP Details (continued) S.No SNMP Details Description snmpInBadValues Specifies the total number of SNMP PDUs that were delivered to the SNMP protocol entity and for which the value of the error-status field is badValue. snmpInReadOnlys Specifies the total number of valid SNMP PDUs that were delivered to the SNMP protocol entity and for which the value of the error-status field is...
  • Page 41 SNMP Details Table 3-10 SNMP Details (continued) S.No SNMP Details Description snmpOutBadValues Specifies the total number of SNMP PDUs that were generated by the SNMP protocol entity and for which the value of the error-status field is badValue. snmpOutGenErrs Specifies the total number of SNMP PDUs that were generated by the SNMP protocol entity and for which the value of the error-status field is genErr.
  • Page 42 RFC1213-MIB SING THE For example, sample output may include: STRM SNMP Agent...

  • Page 43: Using The Host -Resources -Mib

    -MIB SING THE ESOURCES The Host Resources MIB defines objects that are useful for the management of host systems. This MIB provides real-time information about the system, disk storage details, partition details, file system details, processor details, network details, printer details, software running details, and the installed software details based on the following nodes: System Details •...
  • Page 44 -MIB SING THE ESOURCES Table 4-1 System Details (continued) S.No System Details Description HR System Specifies the index of the hrDeviceEntry for the device from Initial Load which this host is configured to load its initial operating Device system configuration. HR System Specifies the object containing the parameters (for example, Initial Load...
  • Page 45 Device Details Table 4-2 Storage Details (continued) S.No Storage Details Description HR Storage Specifies the size of the storage represented by this entry, Size in units of hrStorageAllocationUnits. HR Storage Specifies the amount of the storage represented by this Used entry that is allocated, in units of hrStorageAllocationUnits.
  • Page 46 -MIB SING THE ESOURCES Table 4-3 Device Details (continued) S.No Device Details Description HR Device Specifies a textual description of this device, including the Descr device's manufacturer and revision, and optionally, its serial number. HR Device ID Specifies the product ID for this device. HR Device Specifies the current operational state of the device Status...
  • Page 47 Processor Table Details Processor Table The processor details includes: Details Table 4-4 Processor Table Details Processor S.No Table Details Description HR Processor Specifies the product ID of the firmware associated with the FRW ID processor. HR Processor Specifies the average, over the last minute, of the Load percentage of time that this processor was not idle.
  • Page 48 -MIB SING THE ESOURCES Table 4-6 Printer Table Details (continued) Printer Table S.No Details Description HR Printer Specifies any error conditions detected by the printer. The Detected Error error conditions are encoded as bits in an octet string, with State the following definitions: Condition Bit # hrDeviceStatus lowPaper 0 warning(3)
  • Page 49 Partition Details Table 4-7 Disk Storage Details (continued) Disk Storage S.No Details Description HR Disk Specifies the type of media used in this long-term storage Storage Media device. HR Disk Specifies whether or not the disk media may be removed Storage from the drive.
  • Page 50 -MIB SING THE ESOURCES File System Details The file system table details includes: Table 4-9 File System Table Details Partition Table S.No Details Description HR File System Specifies path name of the root of this file system. mount point HR File System Specifies a description of the name and/or address of the Remote mount server that this file system is mounted from.
  • Page 51 Software Run Details For example, sample output may include: Software Run The software run table details includes: Details Table 4-10 Software Run Table Details Software Run S.No Table Details Description HR Software OS Specifies the value of the hrSWRunIndex for the Index hrSWRunEntry that represents the primary operating system running on this host.
  • Page 52 -MIB SING THE ESOURCES For example, sample output may include: Software Run The software run performance details includes: Performance Table 4-11 Software Run Performance Details Details Software Run Performance S.No Details Description HR Software Specifies the number of centi-seconds of the total system's CPU resources consumed by this process.
  • Page 53 HR Software Installed Table Details For example, sample output may include: HR Software The HR software installed table details includes: Installed Table Table 4-12 HR Software Installed Table Details Details HR Software Installed Table S.No Details Description HR Software Specifies the value of sysUpTime when an entry in the Installed Last hrSWInstalledTable was last added, renamed, or deleted.
  • Page 54 -MIB SING THE ESOURCES For example, sample output may include: STRM SNMP Agent...

  • Page 55: Snmp Overview

    SNMP O VERVIEW This chapter provides an overview of Simple Network Management Protocol (SNMP) including: About SNMP • What is a MIB (Management Information Base)? • • What Are MIB Groups? • Object Identifiers • Scalar and Tabular Objects How an Agent Works •...

  • Page 56: Who Is A Manager

    SNMP O VERVIEW manager using SNMP. A management information exchange can be initiated by the manager (through polling) or by the agent (through a trap). An Agent functions as a device that gathers and sends data about the managed resource in response to a request from a manager.

  • Page 57: What Is A Mib (Management Information Base)

    What is a MIB (Management Information Base)? Object names in this syntax are called object identifiers (object IDs, or OIDs), and are a series of numbers that uniquely identifies an object to an SNMP agent. What is a MIB A Management Information Base (MIB) provides a description for a set of network (Management objects.

  • Page 58: What Are Mib Groups

    SNMP O VERVIEW administrators to know how many sheets of paper were available in the printer without physically moving to the printer. The system administrators would install the Manager in these machines and query the printer agent to obtain this information.

  • Page 59: Mib Data Types Available

    What Are MIB Groups? Q1 Labs(20212) MIB Data types The following table provides the supported MIB data types and constructs: Available Table A-1 SNMP V1 Data Types Data Type Name Description INTEGER Specifies a value whose range may include both positive and negative numbers.
  • Page 60 SNMP O VERVIEW Table A-1 SNMP V1 Data Types (continued) Data Type Name Description OBJECT Specifies a type that has an assigned object identifier value. IDENTIFIER IpAddress Specifies an IPv4 address as a string of 4 octets. NetworkAddress Allows a network address of any type. However, it is now obsolete.
  • Page 61 What Are MIB Groups? Table A-2 SNMP V2 Data Types (continued) Data Type Name Description Unsigned32 Specifies a range including only non-negative integers (0 to 2e31 - 1). For example: Unsigned32 - Same as Unsigned32(0..4294967295) Unsigned32(0..65535) - Corresponds to an unsigned 16 bit int Unsigned32(0..10 | 50 | 65 | 90..100) Gauge32 Specifies a non-negative integer that may increase or decrease,...

  • Page 62: Mib Constructs Available

    SNMP O VERVIEW Table A-2 SNMP V2 Data Types (continued) Data Type Name Description BITS Specifies a collection of labeled bits. It provides a way to label individual bits in an octet (an extension of OCTET STRING type). For example: BITS { 1 (TCP), 2(Netware), 3(NetBIOS) MIB Constructs The following tables describe the supported constructs and the mandatory...

  • Page 63: Supported Textual Conventions

    What Are MIB Groups? Table A-4 Mandatory and Optional Fields (continued) Construct Name Mandatory Fields Optional Fields OBJECT-IDENTITY STATUS REFERENCE (v2 Construct) DESCRIPTION OBJECT-GROUP OBJECTS REFERENCE (v2 Construct) STATUS DESCRIPTION NOTIFICATION- STATUS OBJECTS REFERENCE TYPE DESCRIPTION (v2 Construct) NOTIFICATION- NOTIFICATIONS REFERENCE GROUP STATUS...

  • Page 64: Nodes

    SNMP O VERVIEW Nodes The following list provides the nodes present in SNMPv2-SMI MIB: • org OBJECT IDENTIFIER ::= {iso 3} dod OBJECT IDENTIFIER ::= {org 6} • internet OBJECT IDENTIFIER ::= {dod 1} • directory OBJECT IDENTIFIER ::= {internet 1} •...

  • Page 65: Scalar And Tabular Objects

    Scalar and Tabular Objects Note that this example is a relative OID. An OID may combine both symbolic and numeric representations of individual nodes of the OID tree, for example, gmt.mib-2.1.sysDescr. Absolute OID names must always begin with a dot and specify every node of the OID tree from the top-most node to the specific managed object.

  • Page 66: How An Agent Works

    SNMP O VERVIEW How an Agent An Agent facilitates communication with an SNMP Manager and the device or Works application (managed resource ). The SNMP Manager sends an SNMP PDU to the Agent. This PDU contains an encoded request (such as a request to GET the value, or SET the value, of a specific managed object).

  • Page 67: Specifying Snmp Variables In Get Requests

    Specifying SNMP Variables in GET Requests Specific trap type is a number that further specifies the nature of the event that • generated the trap in the case of traps of generic type 6 (enterpriseSpecific). The interpretation of this code is vendor-specific. Timestamp is the duration between the last re-initialization of the agent that •...
  • Page 68 SNMP O VERVIEW variables (such as, ifInOctets.2 or tcpConnState.179.74.15.126.1192.225.226.126.197.80). To GET and SET SNMP variables, you must specify the OID plus the instance. However, you can use GETNEXT and specify the OID from the MIB (such as, sysDescr), and get the first instance of that type from the SNMP agent. This works for all types of objects.

This manual is also suitable for:

Security threat response manager

Table of Contents