Network Monitoring

Syslog

Syslog uses UDP port 514 to send event notification messages across IP networks to event message collectors

//Configure NTP Server
R(config)#service timestamps log uptime     //show the uptime of the router
R(config)#ntp server 10.0.0.5

//Configure Syslog Server
R(config)# logging 10.0.0.6
R(config)# logging trap 4     //notifications for 0-4

//View logs on router
#show logging | include changed state to up
#show logging | begin June 12 22:35

SNMP

SNMP uses UDP, port number 162, to retrieve and send management information.

The SNMP manager is part of a network management system (NMS). The SNMP manager runs SNMP management software. As shown in the figure, the SNMP manager can collect information from an SNMP agent using the “get” action and can change configurations on an agent using the “set” action. In addition, SNMP agents can forward information directly to an NMS using “traps”.

SNMPv1 and SNMPv2c use community strings that control access to the MIB. Community strings are plaintext passwords. SNMP community strings authenticate access to MIB objects.

//SNMP router configuration
R(config)#snmp-server community cisco ro SNMP_ACL
R(config)#snmp-server host 10.0.0.6 version2c cisco     // Specifies the recipient of the SNMP trap operations
R(config)#snmp-server enable traps
R(config)#ip access-list standard SNMP_ACL
R(config-std-nacl)#permit 10.0.0.6

 

 

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s