-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 James Neave wrote: <snip> > Question: > > I have lots of remote sites with some "business" ADSL routers that have > SNMP (SNMP v1/v2 agent MIB-II and ADSL Line MIB). Does SNMP work > cross-subnet and is it secure?
SNMP uses IP, so it's routable and can work across the entire internet. There are many versions of snmp, the newer ones can be fairly secure, but it's still not generally something you want to expose to the world. I prohibit all external (internet) access to snmp with firewall rules, allowing only my known data-gathering systems access. I also typically set all communities read-only since I'm mainly monitoring, rather than trying to control things with snmp. Remember, if you're going out across the internet and are not using a VPN, the info in your snmp packets (including the community string, and any responses that might contain sensitive data) will be unencrypted and sniff-able by any systems between your two locations. You have to decide what constitutes an 'acceptable' level of security for your needs. - -- Charles Steinkuehler [EMAIL PROTECTED] -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.0 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFECDRaLywbqEHdNFwRAqLWAKCqvv4Z9FK7tYm01/Te4VS3nxVf/QCfQo/R +i2TkCMLx6FpOM3wNWShCgk= =LHRE -----END PGP SIGNATURE----- ------------------------------------------------------- This SF.Net email is sponsored by xPML, a groundbreaking scripting language that extends applications into web and mobile media. Attend the live webcast and join the prime developer group breaking into this new coding territory! http://sel.as-us.falkag.net/sel?cmd=lnk&kid=110944&bid=241720&dat=121642 ------------------------------------------------------------------------ leaf-user mailing list: [email protected] https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
