[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: MIB

To: "Wijnen, Bert (Bert)" <bwijnen@lucent.com>, Juergen Schoenwaelder <schoenw@ibr.cs.tu-bs.de>, Ran Atkinson <rja@inet.org>
Subject: Re: MIB
From: Jon Saperia <saperia@mediaone.net>
Date: Mon, 05 Jun 2000 09:21:10 -0400
CC: <Spencer.Giacalone@predictive.com>, <djoyal@nortelnetworks.com>, <mibs@ops.ietf.org>
Delivery-date: Mon, 05 Jun 2000 06:20:44 -0700
Envelope-to: mibs-data@psg.com
User-Agent: Microsoft-Outlook-Express-Macintosh-Edition/5.02.2022

I am not sure who posted this portion of the thread:

>> VACM isn't available in deployed SNMPv1 implementations.  Most OSPF
>> routers do NOT now implement SNMPv3, so VACM just isn't available
>> (nor is MD5 Auth, which is the real issue here).
>> 

The above claim is not accurate from what I have seen. I did a quick check
of the Cisco page and found better than 50 references to support for SNMPv3
on everything from access routers, to the main line series, to catalyst
machines, to cable routers (they have a whole series of these).

The release notes were for the 12.x IOS series. My point is that while Cisco
is not the only vendor, they have a fairly large footprint :-)

SNMPv3 it is available on many platforms and by the time the MIB Module
under discussion is released in product, I expect that more will be.

I also think Bert had it write in his earlier note. The IETF gives the
facilities for security and should offer ideas about their effective
deployment, the user decides how and if to use them. Is it not possible to
configure the same information with the CLI and not use SSH or Radius or
other measures? Not a good operational practice given the availability of
better solutions. This is the same problem.

/jon

Prev by Date: RE: MIB
Next by Date: RE: MIB
Prev by thread: RE: MIB
Next by thread: RE: MIB
Index(es):
- Date
- Thread