Network Management Lab - lizzy9596/sys-265 GitHub Wiki

Network Management Lab

In this lab, we are going to configure SNMP services on fw01, web01 and ad01. We are going to configure a network monitoring system called nmon01, where we will query our systems for SNMP properties. (from lab)

Lab parts:

  1. Configure snmp
  2. Configure Nmon01
  3. Install snmp Client on nmon01
  4. Install snmpd on web01

Configure SNMP

To start this lab I had to configure my firewall to allow SNMP. I did this by opening pfsense on the wks01 browser. After this I went to "Services" and then "SNMP". Here I enabled SNMP Daemon and did the below SNMP Daemon Setting. Finally, I set the interface binding to LAN. I saved and restarted after,

image

Configure nmon01

I connected nmon01 to the LAN. Then I ran the nmtui command, to configure the network settings and hostname. (below is network settings) image

I then changed the root password using pwwd root. After I created a new admin account and gave it root privileges.

image

After creating the user, I added the PTR and A lookup zone in mgmt01-sys265. To do this I opened the DNS manager for ad01 in server manager and added the below settings.

image

After I disabled ssh on nmon01 in the root account using the command: sudo nano /etc/ssh/sshd_config. I then scrolled down to the Authentication section and replaced #PermitRootLogin with no. I then restarted ssh.

Install and Test SNMP Client on nmon01

After successfully configuring the network and disabling the ssh on the root account, I was able ssh into nmon01 on mgmt. I ran the command 'sudo yum install net-snmp-utils` to install SNMP Client.

image snmpwalk -Os -c SYS265 -v2c FW01-elizabeth system

Install SNMPD on web01

Following similar steps to the configuration of nmon01 I was able to ssh into web01 and install snmpd

{47978D79-99A8-4730-ABBF-F5E55FB412CA}

I was then able to install snmp on web01 using the command sudo yum install net-snmp-utils net-snmp.

After the install I needed to back up my configuration. To do this I first went into the snmpd conf directory by running sudo mv snmpd.conf and then ran sudo mv snmpd.conf snmpd.snmp.conf.backup to backup the file.

I then ran the command sudo nano snmpd.conf to edit the new configuration file. I added the following code. (I ended up editing in vi)

{7B0A1E2D-63C6-42C5-8B4C-A1F2DF17A560}

After I started the snmpd using: systemctl enable snmpd, systemctl start snmpd I then added port 161/udp to the firewall using the command sudo firewall-cmd --zone=public --add-port=161/udp --permanent, and restarted the firewall.

Install SNMP Service on AD01

I was able to install snmp services on AD01 by using the server manager on mgmt01 and navigating to the add roles wizard.

{5A019FC4-BDBF-40F6-9493-7AA1D5BDF4F4}

Install SNMP Tools on MGMT01

I installed the SNMP remote administration tools for MGMT01 by navigating to the tools wizard on server manager. {DA6BAAA8-D253-4FFE-AED7-13D95D5FC1DB}

Enable Remote Management on AD01

I received an error when trying to manage ad01. To resolve this I needed to ssh into ad01 and allow it in the firewall.

To ssh I had difficulties and used the following website resource. I first ran the command Add-WindowsCapability -Online -Name OpenSSH.Server to install OpenSSH and then Add-WindowsCapability -Online -Name OpenSSH.Client to run the client. After I started sshd using Start-Service sshd.

I was then able to ssh into ad01 and run the following command to allow remote management: Set-NetFirewallRule -DisplayGroup "Remote Event Log Management.

SNMP Service Security Properties on AD01

After configuring I was able to, adjust the SNMP service properties on AD01 to add the SYS265 community string and limit queries to those from nmon01.(from lab) {939DAD54-E083-4F4A-9BE0-88F2ACB3E07C}

Capturing snmp packets nmon01->web01