SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

Suggest an Idea...

Fix snmpd.conf to include sysServices

When querying any of our UTM devices running 9.509-3 for iso.org.dod.internet.mgmt.mib-2.system.sysServices _1.3.6.1.2.1.1.7.0_ we receive the error "No Such Instance currently exists at this OID"

This is causing an issue with some network management applications that use the value of sysServices to determine which OSI layers the device supports

At a minimum, the value would need to be "4" to identify the UTM is rulling as a route mode firewall.

# Test on device with unmodified snmpd.conf
snmpget -v 3 -l authPriv -u USER -a SHA -A {Password} -x AES -X {Password} X.X.X.X SNMPv2-MIB::sysServices.0
SNMPv2-MIB::sysServices.0 = No Such Instance currently exists at this OID

# Test on device with modified snmpd.conf
snmpget -v 3 -l authPriv -u USER -a SHA -A {Password} -x AES -X {Password} Z.Z.Z.Z SNMPv2-MIB::sysServices.0
SNMPv2-MIB::sysServices.0 = INTEGER: 4

http://www.net-snmp.org/docs/mibs/SNMPv2-MIB.txt
sysServices OBJECT-TYPE
SYNTAX INTEGER (0..127)
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"A value which indicates the set of services that this
entity may potentially offer. The value is a sum.

This sum initially takes the value zero. Then, for
each layer, L, in the range 1 through 7, that this node
performs transactions for, 2 raised to (L - 1) is added
to the sum. For example, a node which performs only
routing functions would have a value of 4 (2^(3-1)).
In contrast, a node which is a host offering application
services would have a value of 72 (2^(4-1) + 2^(7-1)).
Note that in the context of the Internet suite of
protocols, values should be calculated accordingly:

layer functionality
1 physical (e.g., repeaters)
2 datalink/subnetwork (e.g., bridges)
3 internet (e.g., supports the IP)
4 end-to-end (e.g., supports the TCP)
7 applications (e.g., supports the SMTP)

For systems including OSI protocols, layers 5 and 6
may also be counted."

4 votes
Sign in
(thinking…)
Sign in with: Facebook Google Sophos Features & Ideas Laboratory
Signed in as (Sign out)

We’ll send you updates on this idea

John shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

0 comments

Sign in
(thinking…)
Sign in with: Facebook Google Sophos Features & Ideas Laboratory
Signed in as (Sign out)
Submitting...

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.