Like I said, I’ve been working on network baseline
analysis. Beginning problem is that I
don’t have a baseline to begin with, nor do I have any way to examine the
current baseline of the network. So, I’m
at a loss of where to start.
I read one book where a basic baseline can be created by
pinging all available hosts. It’s not
the greatest baseline, but it is the beginning, and it’s better than
nothing. What I’ve got is nothing. So what I did is wrote a batch file using a
FOR loop to ping all devices and print the output to a file. After that, I ran an arp –a and appended that
to the end of the file.
So it’s not the greatest baseline. But it does give me an idea of what standard
network performance should be, at least as far as PING goes. I guess the next part is trying to dump the
information into a webpage or a database so the information can be examined
later and compared to what it has been at various points.
I guess I should probably add the ITILv3 documentation to my
reading list. The only problem is I’m not
definite the ITIL information actually provides information on how to baseline
a network. I understand the basics and
the conceptual theory. It’s a matter of
going out and doing the work. And sorry,
SNMP is not the way to baseline.
Everyone has it turned off due to the insecurities in the system.
Just a quick look at Cisco, and the only encrypted version
they have only supports DES. So the
options are send the data as plaintext, or send it as an algorithm that has
already been replaced due to inherent weakness. 15 years ago, DES was cracked in 22 hours. 15 years ago, I was happy with 400 MHz
processor running 128 Mb of RAM.
In comparison, I’m writing this on a laptop with an Intel Core
i5 running at 2.5 GHz with 4 GB of RAM.
Shot in the dark, but I think a couple of these suckers could crack DES
in a day. And if someone breaches your
network and doesn’t get caught, then what is a day? What is 10 days?
No comments:
Post a Comment