SNMP Auditing

GFI LanGuard uses the Simple Network Management Protocol (SNMP)Simple Network Management Protocol is a technology used to monitor network devices such as, routers, hubs and switches. to obtain information, like hardware specifications and operating system version, from network devices, such as servers, computers, printers, hubs, switches, and routers. Through SNMPSimple Network Management Protocol is a protocol for network management. It is used to collect information from network devices, such as servers, printers, hubs, switches, and routers., GFI LanGuard can monitor network performance, audit network usage and detect network faults.

IMPORTANT

GFI LanGuard supports SNMPv1 and SNMPv2c.

SNMPv3 and SNMP over TLS / DTLS are NOT supported.

SNMP Audit tool

This tool identifies weak SNMP community strings by performing a dictionary attack using the values stored in its default dictionary file (snmp–pass.txt).

You can add new community strings to the default dictionary file by using a text editor (for example, notepad.exe).

You can also direct the SNMP Audit tool to use other dictionary files. To achieve this, specify the path to the dictionary file from the Options dialog.

To perform SNMP audits on network targets and identify weak community strings:

1. Launch GFI LanGuard.

2. Click Utilities tab and select SNMP Audit in the left pane under Tools.

3. In the IP of computer running SNMP, specify the IP to reach.

4. From Common Tasks in the left pane, click Edit SNMP Audit options, or use the Options button available in the top-right section of the screen, to edit the default options.

5. Click Retrieve to start the process.