>>>>> "Henk" == Henk Uijterwaal <[email protected]> writes:
Henk> How can this be arranged? My CPE has remote access to the
Henk> config i/f but I obviously don't want this to be open to the
Henk> world, so I put a password on it and can fix things even if
Henk> I'm away from home (assuming that there is basic
Henk> connectivity). I wouldn't mind giving a password to my ISP in
So, we need for the ISP to get read access to the configuration
information and state. This seems like a job for SNMP read-only with
community string "public".
Some extra security might be that there is a DHCP option/IPv6CP from the
ISP which tells your device the IP address where their queries are
coming from.
Henk> I don't think the average user will actually check the
Henk> configuration menus before calling the helpdesk. Besides
Henk> that, if you have no connectivity, what else can one do but
Henk> check the configuration over the phone? My experience with
Henk> friends and family with computer problems is that they always
Henk> claim that "they didn't touch a thing" but in practice, they
Henk> often did, so checking the config of the device is an useful
Henk> thing to do.
If the ISP has a backup of the configuration that was working (via the
read-only interface), and the device can minimally work after a reset
running-config-to-factory-default, then a comparison could occur.
What matters here is that the reset-to-factory-defaults does not destroy
the previously saved configuration, but rather moves it aside, yet
leaves it accessible to SNMP.
(And then there is the other cfg stuff, the one starts with Y, I think,
and netconf too...?)
--
] He who is tired of Weird Al is tired of life! | firewalls [
] Michael Richardson, Sandelman Software Works, Ottawa, ON |net architect[
] [email protected] http://www.sandelman.ottawa.on.ca/ |device driver[
Kyoto Plus: watch the video <http://www.youtube.com/watch?v=kzx1ycLXQSE>
then sign the petition.
_______________________________________________
homenet mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/homenet
