This may be (is) a newbie question but I'm trying to understand how the Dude communicates to try and minimise potential security issues.
I'm running Dude from a CHR. All devices added to the Dude have Secure Mode ticked. Trying to understand what this Secure Mode protects and what it does not.
1. If we add a remote Mikrotik Router to the Device list with Secure Mode ticked, does this mean all communication (probes, etc) between the Dude and that router is secure ? What about SNMP ? Does the Dude interrogate the Mikrotik Router's SNMP via the secure link or via the WAN interface ?
2. If we setup the remote Mikrotik Router (call it Router A) as an Agent, do all probes to devices at the remote network (behind Router A) that uses Router A as the Agent occur only across a secure link (ie. is encrypted) ? What about if we enable SNMP 1 and 2 (if SNMP 3 is not available) on the remote devices behind Router A ? Is the SNMP information going from the remote devices to the Dude encrypted over the Secure Mode link ?
All Routers and the Dude Server have their Winbox and web ports (and any service ports I require) restricted to my IP address only using Filter Rules. All other services are disabled. SNMP Port on all remote routers is restricted to the Dude's IP address only. Is there anything else to consider to prevent information leakage or is the answer to the above questions that information between the routers and the Dude is not encrypted and may be visibly intercepted ?