IETF Logo Mail Archive

[dhcwg] Re: DHCP Option for SNMP Notifications

"David T. Perkins" <dperkins@dsperkins.com> Wed, 11 September 2002 21:36 UTC

Received: from www1.ietf.org (ietf.org [132.151.1.19] (may be forged)) by ietf.org (8.9.1a/8.9.1a) with ESMTP id RAA25741 for <dhcwg-archive@odin.ietf.org>; Wed, 11 Sep 2002 17:36:50 -0400 (EDT)
Received: (from mailnull@localhost) by www1.ietf.org (8.11.6/8.11.6) id g8BLc7g12743 for dhcwg-archive@odin.ietf.org; Wed, 11 Sep 2002 17:38:07 -0400
Received: from ietf.org (odin.ietf.org [132.151.1.176]) by www1.ietf.org (8.11.6/8.11.6) with ESMTP id g8BLc7v12740 for <dhcwg-web-archive@optimus.ietf.org>; Wed, 11 Sep 2002 17:38:07 -0400
Received: from www1.ietf.org (ietf.org [132.151.1.19] (may be forged)) by ietf.org (8.9.1a/8.9.1a) with ESMTP id RAA25726 for <dhcwg-web-archive@ietf.org>; Wed, 11 Sep 2002 17:36:20 -0400 (EDT)
Received: from www1.ietf.org (localhost.localdomain [127.0.0.1]) by www1.ietf.org (8.11.6/8.11.6) with ESMTP id g8BLZMv12071; Wed, 11 Sep 2002 17:35:22 -0400
Received: from ietf.org (odin.ietf.org [132.151.1.176]) by www1.ietf.org (8.11.6/8.11.6) with ESMTP id g8BLT5v11753 for <dhcwg@optimus.ietf.org>; Wed, 11 Sep 2002 17:29:05 -0400
Received: from postman.bayarea.net (postman.BAYAREA.NET [205.219.84.13]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id RAA25295 for <dhcwg@ietf.org>; Wed, 11 Sep 2002 17:27:16 -0400 (EDT)
Received: from host.dsperkins.com (shell4.BAYAREA.NET [209.128.82.1]) by postman.bayarea.net (8.9.3/8.9.3) with ESMTP id OAA48352; Wed, 11 Sep 2002 14:28:52 -0700 (PDT) (envelope-from dperkins@dsperkins.com)
Message-Id: <5.1.1.6.2.20020911142157.035df060@127.0.0.1>
X-Sender: dperkins@127.0.0.1
X-Mailer: QUALCOMM Windows Eudora Version 5.1.1
Date: Wed, 11 Sep 2002 14:27:14 -0700
To: Mark Bakke <mbakke@cisco.com>
From: "David T. Perkins" <dperkins@dsperkins.com>
Cc: dhcwg@ietf.org, mibs@ops.ietf.org
In-Reply-To: <3D7FB84C.849C7C64@cisco.com>
References: <5.1.1.6.2.20020911134627.035dd7b0@127.0.0.1>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Subject: [dhcwg] Re: DHCP Option for SNMP Notifications
Sender: dhcwg-admin@ietf.org
Errors-To: dhcwg-admin@ietf.org
X-BeenThere: dhcwg@ietf.org
X-Mailman-Version: 2.0.12
Precedence: bulk
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=unsubscribe>
List-Id: <dhcwg.ietf.org>
List-Post: <mailto:dhcwg@ietf.org>
List-Help: <mailto:dhcwg-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=subscribe>

HI,

So, you are developing a mechanism that works only for
SNMPv1 with no proxy or security. Note that SNMPv1 is
a "not recommended" protocol. It would be much more
valuable to create an approach that worked for SNMPv1,
SNMPv2, and SNMPv3 protocols, that supported security
parameters from the DHCP server and from local persistent
storage, and that allowed a multi-stage boot.

There are security trade-offs that need to be covered.

At 04:40 PM 9/11/2002 -0500, Mark Bakke wrote:
>Hi David-
>
>My assumption was that in this case, we could get away with using
>"public" for the community string, and that any defined traps would
>be enabled (we would only send these when something failed, so
>we shouldn't have to allow the user to configure which ones to
>send).  That would take care of early boot, unless configuring the
>community string was important.  Perhaps this would be enough.
>
>Are there other things that might be important to set for an initial
>boot implementation that only sends traps?
>
>Thanks,
>
>Mark
>
>"David T. Perkins" wrote:
>> 
>> HI,
>> 
>> Mark,
>> 
>> Having only an IP address of a management target is insufficient for
>> achieving your objective. What you need to add depends on how many
>> "stages" that you have for your boot operation, and what you assume
>> can be configured in persistent storage for the device.
>> 
>> At 11:22 AM 9/11/2002 -0500, Mark Bakke wrote:
>> >Hi-
>> >
>> >I needed a method to configure a list of SNMP notification (AKA trap)
>> >hosts for use by diskless workstations booting from a network device.
>> >Since none of the usual SNMP configuration information is available
>> >at this time, I would like to use a DHCP option to provide a list of
>> >IP addresses to which to send notifications when, for instance, booting
>> >from a network device fails for some reason.  This could also be used
>> >to centrally configure the list of SNMP notification hosts, rather than
>> >setting them individually on each machine.
>> >
>> >Anyway, I've submitted a short draft describing the proposed option
>> >as draft-bakke-dhc-snmp-trap-00.txt.  I'll forward the message to
>> >these two groups when the draft is published.  In the mean time, it
>> >is available at:
>> >
>> >ftp://ftpeng.cisco.com/mbakke/ips/dhcp/draft-bakke-dhc-snmp-trap-00.txt
>> >
>> >I'm guessing that these two mailing lists (dhcwg and mibs) are the
>> >correct places to discuss this (please let me know if there's a more
>> >appropriate list).
>> >
>> >Regards,
>> >
>> >Mark A. Bakke
>> >Cisco Systems
>> >mbakke@cisco.com
>> >763.398.1054
>> Regards,
>> /david t. perkins
>
>-- 
>Mark A. Bakke
>Cisco Systems
>mbakke@cisco.com
>763.398.1054 
Regards,
/david t. perkins

_______________________________________________
dhcwg mailing list
dhcwg@ietf.org
https://www1.ietf.org/mailman/listinfo/dhcwg

v2.23.0 | Report a Bug | By Email