Dismiss Notice
Join Physics Forums Today!
The friendliest, high quality science and math community on the planet! Everyone who loves science is here!

SNMP hex dump

  1. Dec 13, 2011 #1
    Can anyone offer any assistance with interpreting a table of hex values for SNMP? I know the column on left is the memory locations and the first 10 bytes are the ethernet header but i can not find any resources that show how to interpret the hex dump.

    I need to identify:

    Community
    PDU type
    OID
    Contents of OID location

    0020 00 7d 00 a1 d3 a5 00 3b d9 39 30 31 02 01 00 04
    0030 06 70 75 62 6c 69 63 a2 24 02 04 66 6a 7f 7b 02
    0040 01 00 02 01 00 30 16 30 14 06 08 2b 06 01 02 01
    0050 01 05 00 04 08 48 50 4c 4a 32 32 30 30
     
  2. jcsd
  3. Dec 13, 2011 #2
  4. Dec 13, 2011 #3

    I like Serena

    User Avatar
    Homework Helper

    Try wireshark, which I recommend to analyze any network traffic or troubleshoot any network problems.
    http://www.wireshark.org/
     
  5. Dec 13, 2011 #4
    This is for classwork i can not use any utilities
     
  6. Dec 13, 2011 #5

    I like Serena

    User Avatar
    Homework Helper

  7. Dec 13, 2011 #6
    Ok i think ive figured some out:

    community = private
    PDU type = response
    and i think OID value is: 1.3.6.22.48.20.6.8.43.6.1.2.1.1



    I dont know what it means by "contents of the OID location"?
     
  8. Dec 13, 2011 #7

    I like Serena

    User Avatar
    Homework Helper

    Hmm, at which address did you find the community?
    And how did you deduce it was private?
     
  9. Dec 13, 2011 #8
    from the link you gave me i have been kind of trying to match up values and what they mean, and i think ive deduced that A4 is the PDU type = response, and the 04 is where i got the community from. I cant find anything about values for the community field so in my string i see a 04 in about same location as the figure i have.

    The OID value i posted has to be wrong actually i think it is 1.3.6.1.2.1.1.5.0.4 because the string near end 06 08 2b 06 01 02 01 01 05 00 04 i think is telling me the value is 8 octets in length starting at 06
     
  10. Dec 13, 2011 #9

    I like Serena

    User Avatar
    Homework Helper

    Umm... the picture I linked to is an example.
    It shows how "private" would be encoded for the community.
    But your hex dump has a different community.....
    It starts with 04 signifying the start of the community.
    It is followed by 06 indicating 6 bytes length ("private" is 7 bytes).

    And where did you find A4?
    I don't see it.

    Btw, here's the page that contains the picture:
    http://www.rane.com/note161.html
     
    Last edited: Dec 13, 2011
  11. Dec 13, 2011 #10
    sorry i meant A2 = response for PDU in the 0030 row

    Is there anywhere i can find a table or listing of how to tell what the community is for different byte lengths? I have searched and i am coming up empty handed thats why i came here for some extra help.

    So from what your saying 04 represents the start of the community and the following value tells how many bytes the community is
     
  12. Dec 13, 2011 #11
    Wait is the community "Public" because public is 6 ascii characters and private is 7 so it makes sense?
     
  13. Dec 13, 2011 #12
    no its public because the 6 characters that follow are ascii for "public" ok i know that is correct.

    Can you help me understand the OID value some more, i know it starts at 06 08 2b going from my educated guess way of thinking i think it is 1.3.6.1.2.1.1.5.0.4 but to be honest it dont make sense because i still have so many values left but the only connection i can make is that in the example you gave me the value after 06 was 0d and there was 13 values left in the data string
     
  14. Dec 14, 2011 #13

    I like Serena

    User Avatar
    Homework Helper

Know someone interested in this topic? Share this thread via Reddit, Google+, Twitter, or Facebook




Similar Discussions: SNMP hex dump
  1. Wikipedia Dumping (Replies: 7)

Loading...