Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
526
Views
0
Helpful
1
Replies

Network Monitoring Server - Location?

jaysoo
Level 1
Level 1

‎03-18-2011 04:41 PM

I was wondering where people generally put their monitoring servers running syslog, snmp, netflow etc. Mine are all on inside networks, but I want to be able to monitor Internet routers and I don't want to permit anything from an outside network to an inside network. In that type of situation do you put your servers on a DMZ or permit the traffic to the inside or what? Thanks.

Labels:
0 Helpful
1 Reply 1

Marvin Rhoads
Hall of Fame
Hall of Fame

‎03-18-2011 06:31 PM

While some caution is good, more isn't always better.

I have typically allowed limited communications from external hosts and devices in to management systems via well defined and understood paths. You can certainly (and probably should) NAT the target and apply the necessary ACLs (with logging that you or your organization actually checks regularly) to ensure that only permitted communications are allowed through your controlled interface.

Hope this helps.

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card