980 likes | 1.35k Views
NATO Advanced Networking Workshop. S4.2 Contemporary Network Management rkrueger@cisco.com September 18 th , 2001. Sigma Systems. Buying a Network Management System should be easy…. ISO Architecture for Network Management. Configuration Management. Fault Management.
E N D
NATO Advanced Networking Workshop S4.2 Contemporary Network Management rkrueger@cisco.com September 18th, 2001
Sigma Systems Buying a Network Management System should be easy…
ISO Architecture for Network Management Configuration Management Fault Management Security Management Performance Management Accounting Management
S E C U R I T Y Network Life Cycle Planning & Organizing Analyzing Changes MONITORING Design Implement
TMN Open Reference Architecture Partner Customer Interface Fulfillment Assurance Billing Cisco • Workflow • Process workflow • Applicationintegration OrderHandling ProblemResolution Perf./SLAReporting Invoicingand Rating Sales Customer Care • Data • CIM/DEN Model • Caching/state • Repository ServiceCreation ServiceInventory ServiceProvisioning ServiceQuality MediationAggregation Integration Bus • Security • Author/authent • RADIUS, Kerberos, TACACS+, PKI Service Product Development and Maintenance NetworkPlanning ElementManagement NetworkProvisioning MaintenanceRestoration NetworkMonitoring • Location • Location • Registration • Naming Network and Systems Management • IP Address Mgmt • DNS • DHCP • Address mgmt. Plug-and-Play, Configuration, Policy, Instrumentation Cisco Network Devices Programmable and Physical Network Layers Network Services
Agenda • Motivation for Network Management • Evolution of Basic Technologies • Designing for Network Management • Best Practices • Policy Management • Summary and Recommended Reading
Network Management Challenge • 80% say managing your network is significantly more important than 18 months before • Why? • Your business relies more on the network • Your network is more complex than before • Your network is more visible than ever before • You can’t hire and keep enough good people
IT Organization Challenge Network Management Service Management Facilitate High Reliability Leverage the Organizational Resources Minimize Transmission Costs • Identifying opportunities to use Information Technology to help the corporation better compete • E-Commerce • Extranets & VPNs • VoIP Utility Strategic Asset
Evolution of Network Management Network Traffic and Network Technology Growth Network Resources (Support Staff, $$) • Networks are increasing in scale and complexity—there is a clear need for management functionality • Management Technologies evolve along with the technologies and services deployed in networks Time
xmlCIM xmlCIM Management Intranet Heterogeneous Management Servers Device ID
Agenda • Motivation for Network Management • Evolution of Basic Technologies • Designing for Network Management • Best Practices • Policy Management • Summary and Recommended Reading
Telnet Telnet ILMI MIB SNMP Agent IP NTP MIB—RMON 1 and 2 SNMP Agent IP IP Syslog MIB SNMP Agent Telnet CDP CDP IP IP Syslog Telnet CDP Get, GetNext, Set, GetBulk NTP IP NTP Responses, SNMP Traps MIB SNMP Agent Mini-RMON RMON-MIB CISCO-STACK-MIB BRIDGE-MIB ... Syslog Syslog Message Syslog SNMP Traps/RMON IP Connectivity CDP or ILMI Network Time Protocol Telnet Network Management Technology Basics SNMP Manager (CW 2000)
CatOS CatIOS IOS facility severity level timestamp system log message The Syslog Facility Console Messages RS-232 console (optional) syslog 514/udp Syslog Server config logfile Very basic reporting mechanism Text messages over UDP
SNMP AGENT Management Entity SNMP The Management Entity, Agents, and Protocol SNMP Manageable Device Network Management Station IP Network Get Request, Get-Next Request Get-Bulk Request Set Request Get Response Trap! 1000s of Defined Objects • Management entity collects data by generating requests; this causes in-band traffic coexisting with production traffic • Agents are information storehouses of object definitions provided in many Management Information Bases (MIBs) • SNMP protocol is used to transport the information requests SNMP v1, SNMP v2
Community String Version SNMP PDU UDP Header Port 161 Protocol Number UDP (17) SNMP Message IP Header C R C Frame Header Packet Payload Frame Payload SNMPUnderstanding Community Strings • SNMP Protocol Data Units (PDUs) are processed as per the access policy indicated by the community string • Community strings are clear text and provide a trivial authentication mechanism • Avoid using the well known defaults: • Read-only agent access: public • Read-write agent access: private
MIBs: Management Information Bases • A MIB defines the variables that reside in a managed node • Defined according to SMI (Structure of Management Information) rules • Each managed object is described using an object identifier defined in the SMI • MIB I • 114 standard objects • Objects included are considered essential for either fault or configuration management • MIB II • Extends MIB I • 185 objects defined • Other standard MIBs • RMON, host, router, ... • Proprietary vendor MIBs • Extensions to standard MIBs 1000s of Manageable Objects Defined Following Rules Set Out in the SMI Standards SNMP AGENT
. . . ISO (1) Organization (3) DOD (6) Internet (1) Directory (1) Management (2) Private (4) Experimental (3) Enterprise (1) MIB-2 (1) Sun (42) Proteon (1) TCP (6) System (1) Apple (63) Interfaces (2) UDP (7) IBM (2) Microsoft (311) Cisco (9) Address Translation (3) EGP (8) HP (11) IP (4) CMOT (9) Wellfleet (18) ICMP (5) Unassigned (9118) Transmission (10) SNMP (11) Internet Activities Board (IAB) Administered Vendor Administered MIBsObject Identifiers SNMP AGENT • Hierarchically structured • Each object uniquely identified OID for System 1.3.6.1.2.1.1
Mnemonic What’s in a MIB? How to Encode and Interpret this Variable sysUpTime OBJECT-TYPE SYNTAX TimeTicks MAX-ACCESS read-only STATUS current DESCRIPTION "The time (in hundredths of a second) since the network management portion of the system was last re-initialized." ::= { system 3 } Parent OID
Traps and Informs Trap Inform Acknowledgement
SNMP Version Differences Version 1 Version 2c Version 3 Informs No Yes Yes RMON/Event Yes* No Yes* Authentication Community Community Users Privacy No No Yes IOS/CATOS Supported Supported Supported NMS Support Ubiquitous Pretty Good Limited
Example Tool using SNMP MIB Polling • Monitors traffic load on network links based on SNMP statistics • Generates real-time HTML traffic reports • Monitor any SNMP variable you choose
Traffic Management for Multiservice Networks VoIP ERP Multimedia VPN Web/URL Low Latency Low Bandwidth Latency Tolerant Bursty Bandwidth Network Must Provide Each Application With Different Service Level Characteristics Simultaneously
1 iso probeConfig .3 org .19 usrHistory .6 dod alMatrix .18 alHost .1 internet .17 nlMatrix .16 nlHost .2 mgmt .15 addressMap .14 RMON-2 (RFC-2021) protocolDist .1 mib-2 .13 protocolDir .12 .16 RMON .11 RMON 1 . 3 . 6 . 1 . 2 . 1 . 16 … iso.org.dod.internet.mgmt.mib-2.rmon ... .1 .2 statistics .3 history .4 alarm RMON-1 (RFC-1757) .5 hosts .6 hostTopN .7 matrix .8 filter .9 capture Token Ring (RFC-1513) .10 events tokenRing Remote Monitoring MIB
Example Tool using RMON Data • Collects RMON data from intermediate devices • Analyzes data for performance metrics Netscout NGenius
NBARNetwork Based Application Recognition • SW Feature in Routers • Analyzes Data Portion of packets to identify applications • Supports QoS deployment
Service Assurance Agent Regional Aggregation Corp. HQ/Data Center SA Agent Retail Branch SA Agent SA Agent SA Agent Field Office SA Agent SA Agent Retail Branch • Synthetic traffic for various protocols • Session Level Probe mechanism • Generates availability and threshold traps • Collects statistics SA Agent Field Office
Service Assurance Agent Operation Types Increasing Service Value Voice Jitter Packet Loss Path Echo DLSw DNS/ DHCP HTTP Latency Latency TCP UDP ICMP IOS-Based Service Assurance Agent Supports IP Precedence!!
TCP protocols only (1.0) Based upon well-known destination port Default protocols: Response Time ART MIB Functionality Application Level Response Time Client Latency Server Latency C S Network Flight Time AOL NNTP COMPUSRV NOTESTCP Identify Application DLSW_RD ORACLSQL Example: FTP REALAUD DLSW_WR DNS_TCP SMTP Packet Level Measurement SEQ 101 DOOM SNA_TCP SOCKET FTP-CTRL ACK 101 FTP-DATA SQLNET_N SEQ 102 SUNRPC_T HTTP SEQ 103 SEQ 104 TELNET HTTPS NB_DGM_T XWINDOW ACK 104 NB_NS_T SEQ 105 NB_SSN_T NEWS_TCP ACK 105
Web accessible For monitoring application and web flows from anywhere, anytime URL visibility For control of your site Proactive management Alarm on responsiveness of the site or your mission critical applications Seamless real-time and historical Current statistics with look back capability ART MIB Example of Reporting
NetFlow Defined • Flows are defined by 7 keys: • Source Address • Destination Address • Source Port • Destination Port • Layer 3 Protocol • TOS byte (DSCP) • Input Interface • Flows are unidirectional • Flows are enabled on a per input-interface basis • Flows can beconfigured “on-demand” or continuous Flow Data Exported to Management Application
NetFlow Data Record per Flow • Packet Count • Byte Count • Source IP Address • Destination IP Address • Source Prefix Mask • Destination Prefix Mask • Source AS Number • Destination AS Number Usage Routingand Peering • Input Interface • Output Interface Device Interface • Type of Service • TCP Flags • Protocol • Source TCP/UDP Port • Destination TCP/UDP Port QoS Application • Number of Flows • Flow Size Distribution Usage • Start Timestamp • End Timestamp • Call Duration • Next Hop Address • Lost Datagrams Time Stamp
NetFlow Related Applications Network Planning RMONProbe Accounting/Billing Flow Profiling Network Monitoring NetFlow/ Data Export Flow Collectors Management Application End-User Information
Evolution of Data Exchange Standards • SQL interfaces subject to schema redefinition • XML makes it easier to exchange data between computer systems • Organizations rarely use a standardized set of tools • Need to define a common data model! • Structured data can be exchanged without APIs
Output HTML SQL Visio ASCII System Policy (DEN) Apps User MOF Parser and Editor Core QoS (DEN) Logical Network (DEN) Physical (DEN) IPSec (DEN) Device CIM Components DEN LDAP Mappings CIM Schema v2.4 CIM Schema v2.3 CIM Schema v2.2 CIM Schema v2.1 CIM Specification V2.0 CIM Specification v2.1 CIM Specification v2.2 Meta Model ExtensionSchema
Transporting CIM: XML! • XML = eXtensible Markup Language • Over HTTP, XML enables access toCIM objects • Enables mixed vendor, distributed server environments! <XML>CIM Data</XML> HTTP/HTTPS
XML Components • What makes up XML? • XML document • XML interpreter or parser • Document Type Definition (DTD)
CIM Example: Inventory Data CIM CIM //////////////////////////////////////////////////////// // Device: nmcpw1601.cisco.com //////////////////////////////////////////////////////// instance of DEN_NetworkElement { DeviceId = "133"; CommonName = "nmcpw1601"; DNSName = "cisco.com"; Description = "";
Agenda • Motivation for Network Management • Evolution of Basic Technologies • Designing for Network Management • Best Practices • Policy Management • Summary and Recommended Reading
Designing for Management Redundant Infrastructure 10.1.100.15 • High availability management • Completely separates management from user data • Management link is in separate subnet, VLAN, and switch • Higher assurance for management data delivery during congestion or convergence SNMP Manager 10.1.100.13 10.1.100.12 10.1.100.14 10.1.100.10 10.1.100.11
Management Station Performance • How fast is fast, and how slow is slow? • Check Browsers, Virus Scan Options, Java Releases…. • Customize Views • Server CPU, Client RAM (and CPU) • Be aware of the number of managed devices • Be aware of the number of functions • Don’t ask for information you won’t look at!
Integration and Growth Issues CW2000 • What happens when you need to run more applications? • Is the OS supported? • CPU or memory constraints? • Conflicting databases? • Conflicting ports used? • Multi-user access? Service Mgmt DNS / DHCP CiscoSecure HP NMM Customer Specific MRTG QoS Policy Manager CiscoWorks Blue Cisco Voice Manager
Site B Site A Site C Centralized Network Management Architecture Central NMS Centralized Database NMS Queries Enterprise Network
Site B Site A Site C Hierarchical Network Management Architecture Server NMS Central DB NMS Communication Client NMS Client NMS ClientNMS Local Query LocalQuery Local Query Enterprise Network
Peer NMS Local DBC Local DBC Local DBC Local DBC Site A Site B Site C Distributed Network Management Architecture Peer NMS NMS Communication Peer NMS Peer NMS Local Query LocalQuery Local Query Enterprise Network
Motif/NT Desktop Web Browser Event List Infoive View Event List WWW Server Impact Info Server Reporter Jeld Internal actions CNM View Trouble Ticket External actions Automations G G G G Info Server Actions Triggers RDBMS DE-DUPLICATION M M M M M M M M Logfiles DB ASCII (TL1) SNMP CMIP Fusion NTSM FW-1 ISM API Micromuse NetCool Architecture
Integration Bus/ Middleware / Northbound APIs Intelligent Network Services DNS Billing Srv DHCP Directory Fault Mgr Qos policy Provisioning Authorization Authntication Bandwidth Integration BUS/Middleware Services Network Elements & Intelligent Agents … Internet OSS Integrated Mgmt Applications Element Management and Network Management Framework
Agenda • Motivation for Network Management • Evolution of Basic Technologies • Designing for Network Management • Best Practices • Policy Management • Summary and Recommended Reading
Monitor Critical Links – forget the rest Remote Offices • Define key infrastructure aggregation ports ( ) • Setup statistics collection (RMON) • Monitor “away” from the core • Enable traps for link failure and thresholds • Monitor for performance and fault conditions Servers Corp Network
NTP helps correlate information NTP • Defined in RFC 1305 • Used to synchronize system clocks on network devices with an authoritative time source • Essential for manual troubleshooting via Syslog • Client/Server unicast or multicast options