https://community.cisco.com/t5/network-security/which-two-of-the-three-method-allow-you-to-avoid-eavesdropping/m-p/3063878#M147224 <P>Tagir,</P> <P></P> <P>Any such way of management which is encrypted will help in avoiding eavesdropping.</P> <P>a) SSH is encrypted and is a good option, and that is why preferred over telnet.</P> <P>b) OOB depend what kind of management it is, usually it is also using SSL so secure for example, CSM.</P> <P>c) SNMPv3 ideally has the encryption feature, so we can even go for that.</P> <P></P> <P>Overall, I would say it depends from network to network and our requirement to use the correct option.</P> <P></P> <P>-</P> <P>Pulkit</P> Fri, 27 Jan 2017 09:20:02 GMT Pulkit Saxena 2017-01-27T09:20:02Z https://community.cisco.com/t5/network-security/which-two-of-the-three-method-allow-you-to-avoid-eavesdropping/m-p/3063877#M147222 <P>ssh</P> <P>oob</P> <P>snmpv3</P> <P></P> <P></P> <P>I really can not understatnd</P> Tue, 12 Mar 2019 08:50:41 GMT https://community.cisco.com/t5/network-security/which-two-of-the-three-method-allow-you-to-avoid-eavesdropping/m-p/3063877#M147222 Tagir Temirgaliyev 2019-03-12T08:50:41Z https://community.cisco.com/t5/network-security/which-two-of-the-three-method-allow-you-to-avoid-eavesdropping/m-p/3063878#M147224 <P>Tagir,</P> <P></P> <P>Any such way of management which is encrypted will help in avoiding eavesdropping.</P> <P>a) SSH is encrypted and is a good option, and that is why preferred over telnet.</P> <P>b) OOB depend what kind of management it is, usually it is also using SSL so secure for example, CSM.</P> <P>c) SNMPv3 ideally has the encryption feature, so we can even go for that.</P> <P></P> <P>Overall, I would say it depends from network to network and our requirement to use the correct option.</P> <P></P> <P>-</P> <P>Pulkit</P> Fri, 27 Jan 2017 09:20:02 GMT https://community.cisco.com/t5/network-security/which-two-of-the-three-method-allow-you-to-avoid-eavesdropping/m-p/3063878#M147224 Pulkit Saxena 2017-01-27T09:20:02Z https://community.cisco.com/t5/network-security/which-two-of-the-three-method-allow-you-to-avoid-eavesdropping/m-p/3063879#M147227 <P>Thank you Pulkit,</P> <P></P> <P>b) OOB usually (serial) rollower cable from laptop to consol port of device.</P> <P></P> <P><SPAN>I really can not understatnd&nbsp;</SPAN></P> <H1 itemprop="name">which two of the these three methods allow you to avoid eavesdropping traffic when you are managing device</H1> Fri, 27 Jan 2017 11:19:59 GMT https://community.cisco.com/t5/network-security/which-two-of-the-three-method-allow-you-to-avoid-eavesdropping/m-p/3063879#M147227 Tagir Temirgaliyev 2017-01-27T11:19:59Z https://community.cisco.com/t5/network-security/which-two-of-the-three-method-allow-you-to-avoid-eavesdropping/m-p/3063880#M147230 <P>Tagir,</P> <P></P> <P>By OOB, i though you meant third party management devices, however, serial/console is fine as cable is connected directly, between laptop and the device. So no one can sniff in.</P> <P></P> <P>However, it is always good to use management options which are encrypted, like SSH and even SNMPv3.</P> <P></P> <P>Console can always act as the backup option, if in case if we loose remote access.</P> <P></P> <P>-</P> <P>Pulkit</P> <P>Please rate helpful posts.&nbsp;</P> Fri, 27 Jan 2017 11:48:35 GMT https://community.cisco.com/t5/network-security/which-two-of-the-three-method-allow-you-to-avoid-eavesdropping/m-p/3063880#M147230 Pulkit Saxena 2017-01-27T11:48:35Z https://community.cisco.com/t5/network-security/which-two-of-the-three-method-allow-you-to-avoid-eavesdropping/m-p/3063881#M147234 <P>Is it for an exam? I would consider all three answers correct:</P> <UL> <LI>ssh: uses encryption to protect the data</LI> <LI>snmp v3:&nbsp;doesn't encrypt the data by default, but when choosing the "priv" mode, it is also encrypted.</LI> <LI>oob: Using an OOB connection to the device doesn't say anything about the encryption. It still could be unencrypted like telnet. But OOB typically assumes that there is a dedicated network that can't be accessed by the attacker. If you&nbsp;take this&nbsp;assumption as&nbsp;true, you are protected against eavesdropping. But typically you would also&nbsp;use cryptographically protected communication through an OOB-connection.</LI> </UL> Sun, 29 Jan 2017 11:27:30 GMT https://community.cisco.com/t5/network-security/which-two-of-the-three-method-allow-you-to-avoid-eavesdropping/m-p/3063881#M147234 Karsten Iwen 2017-01-29T11:27:30Z