Currently we have no way of managing our devices in the DMZ area. This seems to be a major problem at the moment and hence we are looking at solutions on how we can best do this without compromising security.
We are using solarwinds, openview and ciscoworks for management.
Can I get guidelines on the best and secure option please ?
The current options are :-
1. To enable snmp on the firewalls - In light of number of devices the policy to allow a specific subnet to the snmp server ?
2. To have a separate snmp server in the DMZ and remote console to it to see status of devices.
3. To have a collection station , this can only be done with openview ? Not sure if there are licensing costs associated with this which would make it tricky.
Any advice welcome !
We are using solarwinds, openview and ciscoworks for management.
Can I get guidelines on the best and secure option please ?
The current options are :-
1. To enable snmp on the firewalls - In light of number of devices the policy to allow a specific subnet to the snmp server ?
2. To have a separate snmp server in the DMZ and remote console to it to see status of devices.
3. To have a collection station , this can only be done with openview ? Not sure if there are licensing costs associated with this which would make it tricky.
Any advice welcome !