View
99
Download
0
Category
Preview:
Citation preview
Copyright © www.networkel.com
6- Network Monitoring
6.1 Syslog
6.2 SNMP
6.3 Netflow
Copyright © www.networkel.com
6.1 Syslog
Copyright © www.networkel.com
SYSLOG OVERVIEW
• Standard for message logging
• Used for system management and security
auditing as well as general informational,
analysis, and debugging messages.
• Each message is labeled with a facility
code, indicating the software type
generating the message, and assigned a
severity label
Copyright © www.networkel.com
BONUS SLIDE ( PROMOTION OFFER! )
• To get our CCNA 200-125 Full Video Training with %90 discount
click the link below now !
CCNA 200-125 VIDEO TRAINING (GET WITH %90 DISCOUNT)
Copyright © www.networkel.com
SYSLOG SEVERITY LEVELS
Copyright © www.networkel.com
SYSLOG MESSAGE FORMAT
• Timestamp appears only if "service timestamp" command is configured
Copyright © www.networkel.com
SYSLOG SERVER
• Logging to a central syslog
server helps in aggregation of
logs and alerts
• Administrators can easily
navigate the large amount of
data compiled on a syslog
server
Copyright © www.networkel.com
DISPLAYING SYSLOG MESSAGES
Copyright © www.networkel.com
6.2 SNMP
Copyright © www.networkel.com
SNMP OVERVIEW
• Simple Network Management Protocol
• Protocol for collecting and organizing
information about managed devices on
IP networks and for modifying that
information to change device behavior
• Used in network management for
network monitoring
Copyright © www.networkel.com
SNMP OPERATION
• GetRequest : A manager-to-agent request to
retrieve the value of a specific MIB
(Management Information Base ) variable
• GetNextRequest : A manager-to-
agent request to retrieve next instance value
of MIB variable
• SetRequest: A manager-to-agent request to
change the value of a variable or list of
variables
Copyright © www.networkel.com
SNMP OPERATION
• GetResponse : Returns variable
bindings and acknowledgement
from agent to manager
• Trap : Asynchronous notification
from agent to manager. SNMP traps
enable an agent to notify the
management station of significant
events by way of an unsolicited SNMP
message
Copyright © www.networkel.com
SNMP VERSIONS
• SNMPv1 : Initial implementation of the
SNMP protocol.
• SNMPv2 : Revises version 1 and includes
improvements in the areas of
performance, security and confidentiality
• SNMPv3 : Primarily added security and
remote configuration enhancements to
SNMP (authenticates and encrypts
packets )
SNMP
Copyright © www.networkel.com
SNMP COMMUNITY STRING
• Text string that acts as a password.
• Used to authenticate messages that are
sent between the management station and
the device
• Used in SNMPv1 and SNMPv2
Copyright © www.networkel.com
SNMP COMMUNITY STRING TYPES
• RO (Read Only): You can Access to MIB
but can't make any change
• RW (Read Write): You can access to MIB
and you can change it
Copyright © www.networkel.com
CONFIGURING SNMPv3
Copyright © www.networkel.com
VERIFYING SNMPv3 CONFIGURATION
Copyright © www.networkel.com
VERIFYING SNMPv3 CONFIGURATION
Copyright © www.networkel.com
6.3 Netflow
Copyright © www.networkel.com
NETFLOW OVERVIEW
• Feature that was introduced on Cisco
routers that provides the ability to collect
IP network traffic as it enters or exits an
interface
• By analyzing the data provided by
NetFlow, a network administrator can
determine things such as the source and
destination of traffic, class of service, and
the causes of congestion.
Copyright © www.networkel.com
CONFIGURING NETFLOW
Copyright © www.networkel.com
VERIFYING NETFLOW CONFIGURATION
Copyright © www.networkel.com
VERIFYING NETFLOW CONFIGURATION
Copyright © www.networkel.com
BONUS SLIDE ( PROMOTION OFFER! )
• To get our CCNA 200-125 Full Video Training with %90 discount
click the link below now !
CCNA 200-125 VIDEO TRAINING (GET WITH %90 DISCOUNT)
Recommended