tcpdump mailing list archives

RE: Decoding UDP SNMP packets

From: "Allison, Jason (JALLISON)" <JALLISON () arinc com>
Date: Thu, 9 Jan 2003 08:44:55 -0500

Thanks for the response.  If you are versed with snmp_print and asn1_parse I
would be very interested in discussing online or offline how and why things
are done the way they are.  ASN.1 encoding, IMO, seems a bit convoluted and
over-done.  The history behind SNMP, SMI, and the OSI CMIP effort is very
interesting.

Maybe you could link me to a good SNMP book outside of Orielly's, Stevens
TCP/IP series and Rose's "The Open Book".

Thanks in advance,

Jason Allison
Principal Engineer
ARINC Incorporated
Office:  (410) 266-2006
FAX:  (410) 573-3026


-----Original Message-----
From: Juergen Schoenwaelder [mailto:schoenw () ibr cs tu-bs de]
Sent: Thursday, January 09, 2003 4:55 AM
To: JALLISON () arinc com
Cc: tcpdump-workers () tcpdump org
Subject: Re: [tcpdump-workers] Decoding UDP SNMP packets

Allison, Jason (JALLISON) writes:


Jason> I am in the process on writing a sniffer for decoding SNMP
Jason> packets, as our company utilizes a NMS.  I feel I have read a
Jason> good bit on SNMP, ASN.1, SMI, the 400 RFCs on the subject, as
Jason> well as having written a number of pcap sniffing utilities for
Jason> decoding my works proprietary messaging system (ip, udp, tcp,
Jason> etc), but I am feel like all my research in decoding SNMP is
Jason> running me in circles.

Jason> I am hoping there are persons on this list that can discuss
Jason> decoding UDP SNMP packets.  I chose this forum hoping to get a
Jason> developers perspective as well as the snmp-forum () cert org
Jason> mailing list seems to be stalled for the short term.  If there
Jason> is a good starting point for readings on SNMP and its UDP
Jason> packet layout please point me in that direction?

I suggest to get a good SNMP book and to read print-snmp.c to see the
details.

/js

-- 
Juergen Schoenwaelder    <http://www.informatik.uni-osnabrueck.de/schoenw/>

-
This is the TCPDUMP workers list. It is archived at
http://www.tcpdump.org/lists/workers/index.html
To unsubscribe use mailto:tcpdump-workers-request () tcpdump org?body=unsubscribe

Current thread:

Decoding UDP SNMP packets Allison, Jason (JALLISON) (Jan 08)
- Re: Decoding UDP SNMP packets Juergen Schoenwaelder (Jan 09)
- <Possible follow-ups>
- RE: Decoding UDP SNMP packets Allison, Jason (JALLISON) (Jan 09)
  - Re: Decoding UDP SNMP packets Juergen Schoenwaelder (Jan 09)