Slashdot Mirror

← Back to Stories (view on slashdot.org)

Goodbye SNMP? Hello, WS-Management

Posted by michael on from the at-least-it-isn't-an-acronym dept.

Laoping writes "News.com has a story about a new Web services management specification designed to simplify network administration across a wide range of devices. A bunch of a big tech companies developed it together (Microsoft, Intel, AMD, Dell and Sun). Microsoft will build support for WS-Management into an update to Windows Server, which is due late next year, and in the version of its Microsoft Operations Manager management software due in 2006. The .PDF release, that makes it clear that it is meant to be a Simple Network Management Protocol killer. Now I am all for a replacement for SNMP, but is this the way go?"

29 of 176 comments (clear)

  1. wonder by COMON$ · · Score: 5, Funny

    hmmm, I wonder if this will catch on as quickly as IPv6 has.....

    --
    CS: It is all sink or swim...oh and did I mention there are sharks in that water?
    1. Re:wonder by NicolaiBSD · · Score: 4, Insightful

      There's no real incentive to move to IPv6, at least not in the western world, as there's plenty of IPv4 address space left. Apart from that there's also the perceived complexity of IPv6 (long hex numbers, so it must be more complicated than shorter decimal numbers).

      If you've worked with SNMP, you know that it is a technically solid solution - low on resources, fast. However, SNMP _is_ complex. Finding OIDs in large MIBs, secure configuration, interpreting data are mostly difficult.

      I give a technically sound, industry standard and less complex alternative for SNMP a good chance for quick adoptation.

    2. Re:wonder by gmack · · Score: 3, Informative

      I disagree.. the specification itself is so complex it's very rare to find someone who implemented it from scratch. That's why whenever there is a SNMP security avisory it tends to affect many vendors.

  2. Why is it that every there's something new.... by Anonymous Coward · · Score: 5, Insightful

    The moron submitting the summary says "goodbye [long established and well entrenched technology]". SNMP has been around for a very, very long time. No matter how much better this is, it will not replace SNMP any time soon.

    Read the article about the 32-bit MCUs a few stories down for yet another example.

  3. this page but without going blind by Anonymous Coward · · Score: 3, Informative

    click

  4. connect the dots by Doc+Ruby · · Score: 4, Informative

    Maybe it will be OK, if it uses persistent HTTP connections, which allow several requests and replies before terminating the transaction. Otherwise the ancient HTTP/1.0 message model is too limited to map all the messaging topology to the spectrum of object management requirements.

    --

    --
    make install -not war

    1. Re:connect the dots by abigor · · Score: 3, Informative

      Did I miss something? I didn't see any mention of HTTP 1.0, which is obsolete. 1.1 is what's far and away in the most common usage, and it allows pipelined requests.

      That said, SOAP isn't necessarily confined to HTTP transport, though of course in all practical reality it is, for now. But there's no tight binding there.

      Anyway, what does the transport have to do with the "spectrum of object management requirements"? Or am I just not understanding your statement?

    2. Re:connect the dots by Black-Man · · Score: 3, Informative

      I agree with the original poster. HTTP/Web Services seems a bad idea as a replacement for SNMP. SNMP is solely the domain of servers... but routers, switches and other network devices. And your laying this additional layer of abstraction onto something that is an extremely critical piece of network management. In other words... just something else that will fail.

      I use Web Services too, within the context of Web Logic. There are so many unknowns and reliability issues under the hood. For simple http requests... no issues... but for something so critical, not yet.

  5. Goodbye SNMP? Hardly. by cablepHreaK · · Score: 5, Insightful

    SNMP is not going anywhere anytime soon, until the major network players adopt WS-Management (that's if they adopt it at all). Looking at the PDF there are some major players missing, Cisco, Juniper, 3Com, HP, to name a few.

  6. War! by nuclear305 · · Score: 4, Funny

    "Microsoft will build support for WS-Management into an update to Windows Server"

    Clearly this is war! SNMP and M$-Management will battle it out for the top market share...oh wait...

  7. but the important question is ... by Triumph+The+Insult+C · · Score: 4, Insightful

    will it be encumbered by patents? looking at the contributors, my guess is yes

    snmp v3 works perfectly fine as it is. let's leave well enough alone

    but, this will probably work out well for intel ... i mean, you'll probably need (by the time it comes out) at least a 3.8Ghz P4 and 2G of RAM

    --
    vodka, straight up, thank you!
    1. Re:but the important question is ... by justins · · Score: 5, Insightful
      snmp v3 works perfectly fine as it is.

      Are you fucking kidding?

      but, this will probably work out well for intel ... i mean, you'll probably need (by the time it comes out) at least a 3.8Ghz P4 and 2G of RAM

      What an amazingly "Score: 5, Insightful" observation. It's almost enough to make a person believe that Intel doesn't sell more chips for networking and embedded applications than they do desktop CPUs. Which they do.
      --
      Now before I get modded down, I be to remind whoever might read this that what I am saying is FACT. - bogaboga
    2. Re:but the important question is ... by bluescreen · · Score: 3, Informative
      "will it be encumbered by patents? looking at the contributors, my guess is yes "

      Insightful? To me insightful would require actually having read the specification.
      If you look at the spec, you'll see the answer to this question.

      "Microsoft, Intel, AMD, Dell, and Sun (collectively, the "Co-Developers") each agree upon request to grant you a license, provided you agree to be bound by such license, under royalty-free and otherwise reasonable, non-discriminatory terms and conditions to their respective patent claims that would necessarily be infringed by an implementation of the Specification and solely to the extent necessary to comply with the Specification."

  8. Cisco? Nortel? by Linegod · · Score: 5, Insightful

    If I don't see Cisco and/or Nortel on the list, it's not going to replace SNMP anytime soon. Correction: _ever_.

    .

    --
    -- I care not for your foolish signatures.
  9. What about WBEM? by bnavarro · · Score: 3, Insightful

    I thought that the open replacement for SNMP was WBEM. Microsoft, in fact, has already implimented this, basically, as WMI, or Windows Management Instrumentation.

    Anyone know why this is suddenly being pushed, and not WBEM?

    1. Re:What about WBEM? by Jah-Wren+Ryel · · Score: 4, Funny

      Anyone know why this is suddenly being pushed, and not WBEM?

      Because it sounds too much like a radio station.

      Announcer: (in professional DJ as God voice) Listen in as the slashdot effects RAHWKS DOWN YOUR ROUTERS...
      with DOUBLE-U BEE EEEE EHM!!!

      --
      When information is power, privacy is freedom.
  10. Re:Goodbye SNMP? Hardly. by Alan+Cox · · Score: 4, Insightful

    Also on the folks churning out billions of tiny little devices. If you've only got 16K of RAM TCP is hard work let along management services while UDP is doable properly on a microcontroller.

  11. but... but... by Anonymous Coward · · Score: 5, Interesting

    The real power of snmp is what you can achieve through scripting it - queries and updates etc.

    That becomes nigh-on impossible with this WS-Management craziness.

    Typical Microsoft - always thinking there is some pleb click-clicking away.

    Imagine you have to change some rmon threshold on 400+ devices, or integrate this with the corporate asset database.
    Now you get the picture.

  12. Ever heard of CIM? by ansonyumo · · Score: 4, Interesting

    CIM is a fine, object-oriented replacement for SNMP, is mature and has XML-based communications over HTTP.

    http://www.dmtf.org/standards/cim/

    Microsoft already has a CIMOM implementation in its WMI service, although it uses DCOM to implement RPCs. Sun also has a CIMOM implementation for Solaris.

    I find it very strange that the WS-Management .PDF doesn't even reference CIM.

    1. Re:Ever heard of CIM? by Ernesto+Alvarez · · Score: 3, Insightful

      CIM is a fine, object-oriented replacement for SNMP, is mature and has XML-based communications over HTTP.


      So what?

      I mean, what that moronic thing of replacing everything with this xml-over-http nonsense?

      Everyone is crazy doing the same thing, except it is now all on tcp port 80. It is even impossible to apply any kind of policy without lots of application level analysis because every moron in the world is using HTTP to do everything.

      SNMP is fine, and if the only thing that those people are trying to do is map SNMP OIDs using fancy representations over tcp/80, they are hardly doing any service to most network administrators out there (myself included).

      It's like everyone is crazy. I hope they do not repeat that SOAP thing (which for every practical reason I've seen is just a fancy way of doing RPC)
      --
      GPG 0x1B479C78
  13. Bandwidth overhead by embeejay · · Score: 3, Interesting

    Using webservices for something like this seems like an enormous bandwidth waste to me. Whatever happened to optimization?

    1. Re:Bandwidth overhead by Anonymous Coward · · Score: 3, Interesting

      Optimization died a sad, sad death a while ago. The IETF has lost its mind and endorsed huge, complicated, design-by-committee protocols (IPSec, which mandates strong crypto in the kernel; IPv6 has been The Next Big Thing for over a decade and has gone through feature bloat the whole time; XMPP uses half-assed uncompressed XML for its network stack, resulting in overheads greater than 100% in many cases; etc.). The Web (and the W3C) brought with it a dramatic change from "Everything runs over a specially crafted protocol" to "Everything runs over HTTP, usually XML+SOAP". Along with that (though somewhat earlier as well) came "The Network Must Be Human Readable In All Cases", which is frankly stupid (maximum 7/8ths efficiency as the high bit goes out the window; note that TELNET and SMTP, for example, are human readable because they date from an era largely before dedicated clients, as opposed to now).

      For some reason, usually while chanting "Moore's Law", CS has voluntarily shed most of the systems concepts that it ever espoused, and along with it most of the thoughts that, maybe, things should be both elegant and efficient. At CMU (with its widely praised CS department), for example, most CS majors are introduced to assembler in the most painful way imaginable - instead of having the beauty of the processor design and architecture explained, they are forced to carry out buffer overflow attacks on provided code and to wade through reams of assembler to reverse engineer compiled code. Not exactly a beautiful introduction to the topic.

      It has become acceptable to chew up an ever increasing amount of resources to accomplish nothing that could not be done before. Usually it's coupled with talk of "it's easier", though I can't say I find the appeal of XML as a data exchange format (config files are fine; humans need to read those, sometimes). The effort (time and memory usage) to serialize and deserialize XML is orders of magnitude larger than a container designed for the context [contrast TCP/IP & BLOAT - yes, it's an RFC].

      \rant{off}

  14. The 'gotcha' by Tenebrious1 · · Score: 4, Funny

    To ensure interoperability of devices and to enable any one console to manage any device, there will now be the standard default login "BILL" and password of "MOMONEY" for all devices. Users are not advised to change any passwords otherwise universal control will not be achieved.

    --
    -- If god wanted me to have a sig, he'd have given me a sense of humor.
  15. I'm not sold by KidSock · · Score: 4, Interesting

    I don't mean to pooh pooh this idea just because it's somewhat Windows specific but the only real advantage I see to this over snmp is that the delivery modes are more sophisticated and the data can be organized hierarchally. So why not just add builtin event notification to snmp? Otherwise using XML for something that should be a low-cost service seems wrong to me. System monitoring should be as small and SIMPLE as possible to reduce the possibility for exploits as it will likely be running with a high level of anonymous access on almost every workstation, server, and router in the organization. The whole thing smells of XML pixie dust designed to drive up requirements and thus sell servers and new software to go with. If you have a problem with snmp then fix it. Don't reinvent it with techniques that are expensive in clock cyles and exploits.

    1. Re:I'm not sold by nightfire-unique · · Score: 5, Informative
      I don't mean to pooh pooh this idea just because it's somewhat Windows specific but the only real advantage I see to this over snmp is that the delivery modes are more sophisticated and the data can be organized hierarchally.

      The SNMP MIB tree is hierarchical. For example, the "version" parameter of NET-SNMP can be found by querying:

      ucdavis.version.versionTag

      Furthermore, these names have corresponding OID numbers, which are universally unique.

      So why not just add builtin event notification to snmp?

      What, like SNMP traps?

      Come on.. this stuff ain't new. :)

      --
      A government is a body of people notably ungoverned - AC
  16. They still have work to do... by LodCrappo · · Score: 4, Funny

    This new protocol simply cannot be adopted until it's fully acronymic... I mean come on, SNMP and WBEM and even CIM have been fully acronymous for some time now, and this WS-Management thing still has an entire word spelled out in the name? That won't fly in my shop, no sir.

    --
    -Lod
  17. Jabber instead by hey · · Score: 3, Interesting

    I wonder if you could use XMPP (Jabber) to monitor devices. Each device connects to the server like a person IMing. It can easily send a message when something bad/good happens. You can have a roster (buddy list) of the devices you want to monitor.

  18. What about JMX by ghost1911 · · Score: 3, Informative

    Nobody else seemed to mention this yet so I thought I'd point out that Sun seems to be contradicting their latest monitoring framework:

    JMX

    By going along with this new specification. Network Management, monitoring, and other SNMP-like operations in Java are moving to the JMX or java media extension framework. In Java 5, the VM has JMX hooks built in for monitoring and control. Alas, I have to agree that SNMP is tired and old, but it still is in place in a lot of environments (and in routers, firewalls, and other hardware appliances) and is really easy to interface and use. I doubt this will catch on very quickly...

    --
    .: 2+2 = PI SQRT(1+N) :. All together now, what is n?
  19. snmp v3... by bani · · Score: 5, Insightful

    snmp v3 works perfectly fine as it is. let's leave well enough alone

    considering most vendors are still using v1 or v2, that should be 'lets leave snmp v3 alone' :)

    to be perfectly honest, SNMP is anything but simple. the only thing simple about it is the protocol itself. it then got buried under avalanches of proprietary MIBs, all partially overlapping yet all mutually incompatible. some only partially documented (or not documented at all). not only that, the insistence of vendors using funky proprietary data types (or worse, strings) when existing datatypes would work perfectly fine.

    what was needed imo was a MIB guideline and 'retarded implementation' verification. to ensure vendors didn't create obfuscated and spaghettified MIBs.