Security warning – Toshiba Tekbright 700P User Manual

223

Advanced Networking Features

5.375 x 8.375 ver 2.1

can query device settings but not change them through
SNMP. To change settings on the Server Appliance, the
device’s Administration Website should be used.

SNMP can also alert the NMC when a system problem or
specific system state is encountered. This is accomplished
through the use of SNMP traps. The SNMP agent will send a
message to the NMC when specific criteria are met.

The triggering of SNMP agent traps on the server appliance is
tied in to the server’s health monitoring feature. Most of the
information available using the Magnia SG20 health
monitoring system can be viewed using SNMP. Alerts sent
from the Magnia SG20 for health conditions can be sent as
SNMP traps. Generating traps is optional and is not required
to query configuration information.

When SNMP is enabled, port 161 (or a user-defined port) will
automatically be opened in the server appliance’s firewall.
When SNMP is disabled after being enabled, the port will
automatically be closed.

Security Warning

If the server appliance is connected to an external network or
the Internet, turning on the SNMP service can expose your
machine to internal and external threats if not configured
correctly. By default, SNMP is set to “off” and the
community string is not set. Enabling SNMP is not
recommended unless you are familiar with securing an
SNMP enabled machine and/or network, some examples are:

❖

The community string should consist of a long string of
alphanumeric characters.

❖

If SNMP traffic is to be sent outside a secure corporate
environment, make sure it is tunneled in a VPN such as
IPSec.

❖

Blocking Ports 161 and 162 on the corporate external
Internet firewall.