[VOIPSEC] SNMP support forEventCorrelation/NetworkManagementSystems

Brian Rosen br at brianrosen.net
Fri Feb 25 16:23:55 CST 2005 

Very few PHONES have SNMP implemented.
Some of the proxy servers do (maybe most).
As usual, SNMPv3 support is spotty, but improving, very slowly.
Almost all the proxy servers are built on something that supports IPSEC.
The only "phones" that can are softclients on PCs.

Brian

> -----Original Message-----
> From: Voipsec-bounces at voipsa.org [mailto:Voipsec-bounces at voipsa.org] On
> Behalf Of Robert Moskowitz
> Sent: Friday, February 25, 2005 3:22 PM
> To: Mark Teicher; Chris at sip1.com; Voipsec at voipsa.org
> Subject: RE: [VOIPSEC] SNMP support
> forEventCorrelation/NetworkManagementSystems
> 
> At 03:02 PM 2/25/2005, Mark Teicher wrote:
> >I agree SNMPV3 has the facilities to protect the content of the message,
> >but most end point devices may not have enough capabilities to provide
> the
> >extra over head to support SNMP v3.
> 
> They are then going to have it for IPsec?
> 
> Odds are they do.  I will talk to the Spectrographics and Symbol gang that
> attend the 802.11 meetings.
> 
> 
> >-----Original Message-----
> >From: Robert Moskowitz <rgm at icsalabs.com>
> >Sent: Feb 25, 2005 1:51 PM
> >To: Chris at sip1.com, 'Mark Teicher' <mht3 at earthlink.net>,
> Voipsec at voipsa.org
> >Subject: RE: [VOIPSEC] SNMP support
> >for  EventCorrelation/NetworkManagementSystems
> >
> >At 11:05 PM 2/23/2005, Christopher A. Martin wrote:
> > >I suspect if they are going to implement SNMP the message is getting
> out
> > >there...
> > >
> > >I would not even consider the alternatives unless there were SSL/TLS or
> SSH
> > >support of some kind to protect the confidentiality of the traps and or
> > >signaling as this can be valuable information to an attacker if it can
> be
> > >gained.
> >
> >SNMPv3 has the facilities to protect the messages.
> >
> >Note since SNMP is NOT over TCP, you can't run it thorugh SSH (Oh how I
> >would love to for other things.  I was talking to TOmmi Lampila at SSH,
> and
> >he said, nope no UDP still).
> >
> >Running UDP through SSL is kind of tricky.  Some of the SSL VPNs do it.
> >
> >Actually, IPsec would make hte most sense.
> >
> >
> >
> >Robert Moskowitz
> >Senior Technical Director
> >ICSA Labs, a division of Cybertrust, Inc.
> >W:      248-968-9809
> >F:      248-968-2824
> >E:      rgm at icsalabs.com
> >
> >There's no limit to what can be accomplished
> >if it doesn't matter who gets the credit
> 
> Robert Moskowitz
> Senior Technical Director
> ICSA Labs, a division of Cybertrust, Inc.
> W:      248-968-9809
> F:      248-968-2824
> E:      rgm at icsalabs.com
> 
> There's no limit to what can be accomplished
> if it doesn't matter who gets the credit
> 
> 
> 
> _______________________________________________
> Voipsec mailing list
> Voipsec at voipsa.org
> http://voipsa.org/mailman/listinfo/voipsec_voipsa.org
>

More information about the Voipsec mailing list