Security Basics mailing list archives

Re: Microsoft SMS SNMP functionality

From: Johan De Meersman <johan () ops skynet be>
Date: Tue, 19 Nov 2002 15:36:13 +0100

johan@tuxera:~$ grep -i snmp /etc/services
snmp            161/udp                         # Simple Net Mgmt Proto
snmp-trap       162/udp         snmptrap        # Traps for SNMP
smux            199/tcp                         # SNMP Unix Multiplexer

just block these ports outgoing on the sms machine, any NT-based windoze
(NT, 2000, XP, ...) has ip filtering in it's advanced tcp/ip settings.


Vachon, Scott wrote:

Our Network Operations group recently noted an increased failure on snmp
queries against our internal routers and switches. After tracking down the
offending IP address, we discovered that our Desktop group had deployed
Microsoft SMS company- wide and it was attempting network discovery by
sending snmp requests to the network equipment. Understanding that there are
some benefits to SMS, we requested they either exclude certain IP ranges
used for network equipment and/or turn off the SNMP functionality of SMS.
They don't want to exclude IP ranges . They also claimed they can not turn
off the SNMP functionality of Microsoft SMS. I "Googled" the hell out of SMS
and also dug through MS Technet, etc..I can not find a definitive answer or
set of steps regarding disabling the snmp component of Microsoft SMS. Can
anyone on the list direct me to a detailed resource or post the steps for
disabling the snmp ? TIA.

Scott Vachon 
Paymentech, LP. 


 
Learn more about Paymentech's payment processing services at www.paymentech.com
THIS MESSAGE IS CONFIDENTIAL.  This e-mail message and any attachments are proprietary and confidential information 
intended only for the use of the recipient(s) named above.  If you are not the intended recipient, you may not print, 
distribute, or copy this message or any attachments.  If you have received this communication in error, please notify 
the sender by return e-mail and delete this message and any attachments from your computer.



-- 
Public GPG key at blackhole.pca.dfn.de .

Attachment: _bin
Description:

Current thread:

Microsoft SMS SNMP functionality Vachon, Scott (Nov 18)
- Re: Microsoft SMS SNMP functionality Johan De Meersman (Nov 21)
- Re: Microsoft SMS SNMP functionality Peter Howard (Nov 21)
- <Possible follow-ups>
- RE: Microsoft SMS SNMP functionality Burleson, Lee (IA) (Nov 22)