https://community.hpe.com/t5/server-management-systems/security-concern/m-p/3729895#M18353 Physical: Specifies that the computer manages any physical TCP/IP devices, such as a hard disk partition or a repeater. <BR /><BR /><BR />Applications: Specifies whether this computer uses any programs that send data by using TCP/IP, such as electronic mail. <BR /><BR />Datalink and subnetwork: Specifies whether this computer manages a TCP/IP subnetwork or datalink, such as a bridge. <BR /><BR />Internet: Specifies whether this computer acts as an IP gateway (router). <BR /><BR />End-to-end: Specifies whether this computer acts as an IP host. <BR /><BR /><BR />NOTE: If you have installed additional TCP/IP network devices, such as a switch or a router, you should view the following RFC 1213 Web site for additional information:<BR /><BR /><BR />IF you want more info go to Microsoft web site<BR /><A href="http://support.microsoft.com/default.aspx?scid=kb;en-us;q315154&amp;sd=tech" target="_blank">http://support.microsoft.com/default.aspx?scid=kb;en-us;q315154&amp;sd=tech</A><BR />or<BR /><A href="http://support.microsoft.com/default.aspx?scid=kb;en-us;324263" target="_blank">http://support.microsoft.com/default.aspx?scid=kb;en-us;324263</A> Mon, 13 Feb 2006 10:51:56 GMT Daniel Leblanc 2006-02-13T10:51:56Z https://community.hpe.com/t5/server-management-systems/security-concern/m-p/3729894#M18352 Hi,<BR /><BR />I am using both Win2K and Windows 2003 for my managed system. Under Services, SNMP Properties, Agent tab. There are options for <BR /><BR />Physical<BR />Applications<BR />Datalink and subnetwork<BR />Internet<BR />End-to-end<BR /><BR />What are they and whether we need them ? Thanks. <BR /><BR />My purpose is for security reason, and will tick only the bare minimum. Pls see attached file. <BR /><BR />Thanks. Sun, 12 Feb 2006 20:31:07 GMT https://community.hpe.com/t5/server-management-systems/security-concern/m-p/3729894#M18352 Mike Ng 2006-02-12T20:31:07Z https://community.hpe.com/t5/server-management-systems/security-concern/m-p/3729895#M18353 Physical: Specifies that the computer manages any physical TCP/IP devices, such as a hard disk partition or a repeater. <BR /><BR /><BR />Applications: Specifies whether this computer uses any programs that send data by using TCP/IP, such as electronic mail. <BR /><BR />Datalink and subnetwork: Specifies whether this computer manages a TCP/IP subnetwork or datalink, such as a bridge. <BR /><BR />Internet: Specifies whether this computer acts as an IP gateway (router). <BR /><BR />End-to-end: Specifies whether this computer acts as an IP host. <BR /><BR /><BR />NOTE: If you have installed additional TCP/IP network devices, such as a switch or a router, you should view the following RFC 1213 Web site for additional information:<BR /><BR /><BR />IF you want more info go to Microsoft web site<BR /><A href="http://support.microsoft.com/default.aspx?scid=kb;en-us;q315154&amp;sd=tech" target="_blank">http://support.microsoft.com/default.aspx?scid=kb;en-us;q315154&amp;sd=tech</A><BR />or<BR /><A href="http://support.microsoft.com/default.aspx?scid=kb;en-us;324263" target="_blank">http://support.microsoft.com/default.aspx?scid=kb;en-us;324263</A> Mon, 13 Feb 2006 10:51:56 GMT https://community.hpe.com/t5/server-management-systems/security-concern/m-p/3729895#M18353 Daniel Leblanc 2006-02-13T10:51:56Z https://community.hpe.com/t5/server-management-systems/security-concern/m-p/3729896#M18354 Thanks, Daniel.<BR /><BR />Let say, INTERNET is checked (specifies whether this computer acts as an IP gateway (router). <BR /><BR />With this option checked, all TCP/IP traffic can make use of this server to pass thru traffic, which is what we do not want as it impact performance and for security concern (hacking). <BR /><BR />Can u give insight into this few option. Thanks. <BR /><BR /><BR /><BR /><BR /> Mon, 13 Feb 2006 20:23:11 GMT https://community.hpe.com/t5/server-management-systems/security-concern/m-p/3729896#M18354 Mike Ng 2006-02-13T20:23:11Z https://community.hpe.com/t5/server-management-systems/security-concern/m-p/3729897#M18355 Is this setting not just to specify that this is what the device does, as opposed to actually configuring it as a router/gateway? Tue, 14 Feb 2006 03:20:17 GMT https://community.hpe.com/t5/server-management-systems/security-concern/m-p/3729897#M18355 Craig McK 2006-02-14T03:20:17Z https://community.hpe.com/t5/server-management-systems/security-concern/m-p/3729898#M18356 Look we all check this items,but we uses SNMP+IPsec(using KerberoseV5 incryption), so ever goes over 161/162 port is secure. Tue, 14 Feb 2006 10:11:55 GMT https://community.hpe.com/t5/server-management-systems/security-concern/m-p/3729898#M18356 Daniel Leblanc 2006-02-14T10:11:55Z