How Remote Monitoring will work without VPN

Unanswered Question
Aug 15th, 2009

When we are remotely monitoring a Network and all of its devices,can we monitor without having any VPN connection.If means then how the internal private address will be monitored over public network

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Joe Clarke Sat, 08/15/2009 - 12:20

See this thread. I recently threw out some ideas. Ideally, the VPN tunnel is the best method since it provides some security:

http://forum.cisco.com/eforum/servlet/NetProf?page=netprof&forum=Network%20Infrastructure&topic=Network%20Management&topicID=.ee71a02&fromOutline=&CommCmd=MB%3Fcmd%3Ddisplay_location%26location%3D.2cd44d8d

As stated, NAT is another option, but due to the way SNMP interacts with NAT, IP addresses embedded in SNMP PDUs will not be translated. This will certainly cause problems for applications which do discovery.

harisivaji Sat, 08/15/2009 - 12:46

Thanks but i already read this is there any specific document available to monitor networks without VPN

Joe Clarke Sat, 08/15/2009 - 12:57

I don't know of any official guides on the subject. NAT is probably the most common method of such management, and that is simply using static NAT on the gateway device, to redirect the queries to the inside hosts.

Another option, assuming you can put a gateway device such as FreeBSD or Linux server on the external network, is to use net-snmp's proxy agent capabilities to proxy the requests to the inside hosts using alternate community strings.

This guide was written for cacti users, but it applies to anyone who wants this functionality. The key is using net-snmp from http://net-snmp.sourceforge.net to be the SNMP agent on the gateway host.

http://forums.cacti.net/about28175.html

Actions

This Discussion