Ever found yourself wondering, “What exactly is SNMP?”

Well, here’s your crash course.

SNMP stands for Simple Network Management Protocol, and it’s not your average protocol. It’s a powerful tool that facilitates the sharing of information among various devices on a network, regardless of their hardware or software.

Here’s the truth: this protocol is here to stay, regardless of any rumors you may have heard about SNMP alternatives taking over.

Try imagining a world void of SNMP. Your trusty network management tools would be left floundering, wrestling to identify devices, keep a tab on network performance, track changes, and deliver real-time status updates. SNMP, my friend, is like the secret ingredient that makes the magic happen.

Now, let’s not beat around the bush: SNMP has its fair share of quirks. Some versions come with more hitches than others. But, even with its imperfections, SNMP is an irreplaceable tool for effective network management.

Eager to discover more?

In this piece, we’ll cover the basics of SNMP and its role in network management, explore the different versions of SNMP (v2 vs 3 speficially), and reveal how you can use SNMP securely and effectively on your network.

So, stay tuned and let’s demystify the marvels of SNMP together.

๐Ÿ”ฅ Pro Tip: Looking for a deeper dive? Don’t miss out on our Ultimate Guide to SNMP! ๐Ÿ“š๐Ÿ˜„

SNMP architecture

SNMP has a simple architecture based on a client-server model.

  • The servers, called managers, collect and process information about devices on the network.
  • The clients, called agents, are any type of device or device component connected to the network. They can include not just computers, but also network switches, phones, printers, and so on.

Some devices may have multiple device components. For example, a laptop typically contains a wired as well as a wireless network interface.

The no-sweat guide to network topology - Ebook cover

Everything you need to know about network topology

From network layers and components to segmentation to step-by-step instructions for drawing every layer.

SNMP data hierarchy

While the SNMP architecture is simple, the data hierarchy the protocol uses can seem complicated if youโ€™re not familiar with it. Fortunately, itโ€™s relatively simple once you understand the philosophy behind it.

While SNMP primarily operates on a client-server model, it also incorporates event-driven communication through SNMP traps or polling, providing real-time updates about network events to management systems.

To provide flexibility and extensibility, SNMP doesnโ€™t require network devices to exchange data in a rigid format of fixed size. Instead, it uses a tree-like format, under which data is always available for managers to collect.

Multiple tables, referred to as Management Information Bases or MIBs, make up the data tree (or branches, if we stick with the tree metaphor). Each MIB groups together specific types of devices or device components. They have a unique identifying number and string, which can be used interchangeably, similar to how IP addresses and hostnames are used.

Management Information Bases (MIBs) tree diagram

Management Information Bases (MIBs)

Each MIB consists of one or more nodes, which represent individual devices or device components on the network. In turn, each node has a unique Object Identifier, or OID. The OID for a given node is determined by the identifier of the MIB on which it exists combined with the nodeโ€™s identifier within its MIB.

This means OIDs take the form of a set of numbers or strings (again, you can use these interchangeably). An example is:

1.3.6.1.4.868.2.4.1.2.1.1.1.3.3562.3.

Written with strings, that OID would translate to:

iso.org.dod.internet.private.transition.products.chassis.card.slotCpsยญ.
cpsSlotSummary.cpsModuleTable.cpsModuleEntry.cpsModuleModel.3562.3.

Using the OID, a manager can query an agent to find information about a device on the network. For example, if the manager wants to know whether an interface is up, it would first query the interface MIB (called the IF-MIB), then check the OID value that reflects operational status to determine whether the interface is up.

Why use OIDs?

The MIB and OID data hierarchy may seem confusing, but there are several important advantages to a system like this. First off, information can be pulled by the manager without having to send an explicit request for the agent to collect it. That reduces overhead and ensures information about the networkโ€™s status is always readily available.

Secondly, the system also provides an easy, flexible way to organize many devices across a network. It works no matter how large or small the network is, or what kind of devices are on it.

Thirdly, SNMP also makes it possible to collect large amounts of information quickly without clogging the network with traffic. Information about device status is always available in a simple format and is updated in real-time. This means managers can pull it without waiting for the data to be collected or requiring large data transfers.

Last but not least, itโ€™s worth noting that some OID values are vendor-specific, which makes it easy to gain some information about a device based simply on its OID (Auvik now includes extended OID monitor history!). For example, if an OID starts with 1.3.6.1.4.1.9, it applies to a Cisco device. Other vendors have their own OID specifications. (Wireshark, the open-source network scanner, offers a handy OID lookup tool.) The standard OID prefix, which can be used for almost any device that supports SNMP, is 1.3.6.1.2.

SNMP versions

The final important thing to understand about SNMP is that the features available in different versions of the protocol vary widely, especially when it comes to security: SNMP v1, SNMP v2 and SNMP v3.

unlocked lock weak security
Photo Briana Cole on Flickr

SNMPv1

The first version of SNMPโ€”SNMPv1โ€”offers weak security features. Under SNMPv1, managers can authenticate to agents without encryption when requesting information. That means anyone with access to the network could run โ€œsniffingโ€ software to intercept information about the network. It also means an unauthorized device can easily pretend to be a legitimate manager when controlling the network.

As well, SNMPv1 uses certain default credentials, which admins donโ€™t always update, making it easy for unauthorized parties to gain access to sensitive information about the network. Unfortunately, SNMPv1 is still used on a relatively wide basis today because some networks havenโ€™t yet been updated.

SNMPv2

SNMPv2, which appeared in 1993, offered some security enhancements, but it was supplanted in 1998 by SNMPv3. Version three remains the most recent version of the protocol and the most secure.

SNMPv3

SNMPv3 makes data encryption possible. It also allows admins to specify different authentication requirements on a granular basis for managers and agents. This prevents unauthorized authentication and can optionally be used to require encryption for data transfers.

The bottom line is that, while the security issues in SNMPv1 earned SNMP a bad name in some circles, SNMPv2 and especially SNMPv3 solved those problems. The newer versions of SNMP provide an up-to-date, secure way to monitor the network.

Enabling SNMP

If the poor security in SNMPv1 has you worried, fret not. SNMP is not normally enabled by default on devices. That means that, in most cases, admins have to log in and turn it on in order to make SNMP data available. This requirement reduces the risk of running an insecure SNMP version without realizing it.

This also means that to use SNMP to manage your network, you usually have to enable it first.

Back that up!

And once you’ve enabled and taken the time to properly configure SNMP, don’t forget to back it up! Backups are a routine part of any network maintenance checklistโ€”never miss this step! Automation of backups can not only add peace of mind, but will ensure you’ve always got multiple restore points to choose from.


To test Auvikโ€™s remote management features for yourself, sign up for a free 14-day trial and get full access to your network from the comfort of your desk.

Get templates for network assessment reports, presentations, pricing & moreโ€”designed just for MSPs.

Ebook cover - The Ultimate Guide to Selling Managed Network Services
  1. Rafat khan Avatar
    Rafat khan

    Thanks for such easy explanation.very helpful

  2. Rafia Avatar
    Rafia

    Superb

  3. Kiran Avatar
    Kiran

    Very well explained article. Good one

  4. Michal Avatar
    Michal

    very nice article. THX

  5. Salman Avatar
    Salman

    Excellent write-up. I wonder how many networking infrastructures are set up using older versions of SNMP

  6. Miriam Avatar
    Miriam

    Very simple explanation and comprehendible. Bravo!

  7. Harsh Jatav Avatar
    Harsh Jatav

    Very clearly explain and helpful. Thanks.

  8. Chris Magin Avatar
    Chris Magin

    Excellent clear description of a potentially confusing topic. Thank you

  9. Iseaha Avatar
    Iseaha

    This was super, helped me give a straight forward answer to my SNCO lol and I learned something. Thank you

  10. Beginner Avatar
    Beginner

    Now o know what SNMP do and why it exists. Thank you !

  11. SomeRandomGuy Avatar
    SomeRandomGuy

    Thank you very much!

  12. Mr bill Avatar
    Mr bill

    Thank you. I didn’t realize that my HP Network Configuration SNMP Version was v1 and was therefor at risk.

  13. Lawrence Lamprecht Avatar
    Lawrence Lamprecht

    How and where can I get some questions I have answered. I have a strange situation with snmpwalk as shown below.
    in the fist run I do not add any OID and I get no data base.
    In the second run I add the first 5 digits of the OID and I get faadback.
    Why does this happen?
    [root@mail4 ~]# snmpwalk -v1 -c xxxxxxxx 10.0.1.114
    End of MIB
    [root@mail4 ~]# snmpwalk -v1 -c xxxxxxxx 10.0.1.114 1.3.6.1.2
    SNMPv2-MIB::sysDescr = STRING: Axigen Mailserver version 10.3.3.50 (Linux/x64)
    SNMPv2-MIB::sysObjectID = OID: SNMPv2-SMI::enterprises.29463.1
    SNMPv2-MIB::sysUpTime = Timeticks: (2902580904) 335 days, 22:43:29.04
    SNMPv2-MIB::sysContact = STRING:
    SNMPv2-MIB::sysName = STRING: mail7.enem.nl
    SNMPv2-MIB::sysLocation = STRING:
    SNMPv2-MIB::sysServices = INTEGER: 0

    Thanks

  14. AJ Avatar
    AJ

    Hi Dana,

    As many others have expressed, I found this to be an excellent article that covers the basics well and gives an inexperienced user some bearings.

    Have you considered writing an articlethat covers troubleshooting and diagnosis of common issues – particularly the top aspects to check and the tools available?

Leave a Reply

Your email address will not be published. Required fields are marked *