Lab #1 Steps (SYS265) - wAlber47/Tech-Journal GitHub Wiki
Configurations
Create DNS entries for both new machines.
Installing SNMP Client - nmon01
sudo yum install net-snmp-utils will install the clientsnmpwalk -Os SYS265 -v2c fw01-walber system will run the client against a system
Installing SNMP Client - web01
sudo yum install net-snmp-utils will install the client- Make a copy of /etc/snmp/snmpd.conf
- Edit that file to contain:
- com2sec myNetwork 10.0.5.0/24 SYS265
- group myROGroup v2c myNetwork
- view all included .1 80
- access myROGroup "" any noauth exact all none none
- Next, allow port 161/udp through the firewall permanently
- Enable and start the snmpd service
Install Service and Tools
- On ad01, install the SNMP Service Feature
- On mgmt01, install the SNMP Tools Remote Administration Featue
Enable Remote Management
- Invoke a PowerShell session on ad01 from mgmt01
- Run
Set-NetFirewallRule -DisplayGroup "Remote Event Log Mangement" -Enabled True
- Launch Computer Management through Server Manager
SNMP Security Properties
- Navigate to Services -> SNMP Properties
- Add 'SYS265' as an accepted read only community name
- Accept packets from nmon01-walber
- Restart the SNMP service
tcpdump
- Query web01 from nmon01 while running a tcpdump
sudo tcpdump -i ens192 port 161 -c10 -AAA