Managing IPNGN Networks
Upcoming SlideShare
Loading in...5
×
 

Managing IPNGN Networks

on

  • 652 views

 

Statistics

Views

Total Views
652
Slideshare-icon Views on SlideShare
652
Embed Views
0

Actions

Likes
0
Downloads
9
Comments
0

0 Embeds 0

No embeds

Accessibility

Categories

Upload Details

Uploaded via as Adobe PDF

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment

    Managing IPNGN Networks Managing IPNGN Networks Presentation Transcript

    • Dirk Anteunis9-10 Ekim 2012
    • Cisco Prime Data Center Network Manager Cisco Prime Collaboration Manager Cisco Prime Security Manager VXI Collaboration Management ConfigEngine …© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 2
    • • Ekim[Turkish] = Oktober[Flemish] • Prime[Cisco speak] = Network Management [English] • Cisco Prime something = Cisco Network Management something • There are ±60 something and 20 NMS products without ‘Prime’© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 3
    • For Your Reference • Business & Operational Analytics Prime AnalyticsAnalytics Cisco Workplace / Cloud Portal • Unified self-service portal • Business process automation, workflowService Prime Order Management • Customer impact databaseManagement Prime Service Inventory • Service catalog, complex workflow Prime Provisioning Prime Central • Central point of access for network information and control Prime Network • IP element and network management • Optical transport network managementElement & Prime Optical • Network performance management & reportingNetwork Prime Performance Manager • Visibility into application performance on the networkManagement Prime Network Analysis Module • Aggregate Network Analysis Module information Prime Assurance Manager • Assurance for TelePresence and Tandberg sessions Prime Collaboration Manager • IPAM, DNS and DHCP Servers Prime Network Registrar • Authentication, Authorization, Accounting Prime Access Registrar • Residential/SOHO equipment activationInfrastructure Prime Premises • Subscriber policy and data management for SP Wi-Fi Prime Service Manager for SP Wi-Fi • Subscriber charging, policy and data management for BNG Prime Service Manager for BNG
    • For Your Reference• Prime Infrastructure • Prime Data Center Network Manager Prime LMS (DCNM) Prime NCS• Prime Network Analysis Module (NAM) • Prime Collaboration NAM-3 Cat 6500 Blade CUOM, CUPM, CUSM, CUSSM 2300 Series Appliance Collaboration Manager (for TelePresence) NAM for Nexus 1100 Series NAM for ISR G2 SRE NAM for WAAS VB• Prime Security Manager© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 5
    • • Change Management• Visibility• Deployment support© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 6
    • © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 7
    • Wherewould you prefer to walk ?
    • r1#sh run event manager applet email_hsrp_state_change... router bgp 12 action 1.0 info type routername no synchronization action 1.1 cli command "enable" bgp log-neighbor-changes action 1.2 cli command "del /force flash:hsrp_state_change" action 1.3 cli network 137.1.200.0 mask 255.255.255.0 command "show standby | append hsrp_state_change" neighbor 137.1.200.2 remote-as 12 action 1.4 cli command "show standby brief | append hsrp_state_change" no auto-summary ……...+ IOS 12.4(19)+
    • • Reliable & known hardware • Reliable & known OS • Well-known configuration • Efficient processes© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 10
    • The biggest part of IT budget is maintenance & operations increasing compliance growth challenges regulatory standards new services corporate/it policies critical business technology rules applications complexity expertise global networks high productivity network applications requirements web services scarce expertiseResult: many IT initiatives are delivered late
    • • 70-85% of problems are related to change 50-60% of problems cause downtime Many changes introduce vulnerabilities when errors are made – particularly in network infrastructure Rate of change – and complexity – is accelerating • labor costs are growing at 10% a year, outpacing overall IT services budget growth Between 5-10% of total budget spend on Security and Compliance Driving most companies to off shoring, which increases complexity • Increasing pressure to be keep the infrastructure compliant Sarbanes-Oxley, Basel II, PCI, ISO, NERC, DISA, FISMA, HIPAA, etc.© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 12
    • • What do you have?• How is it configured? Mostly‘tribal knowledge’• What changed & who changed it?• Who is impacted? Again ‘tribal knowledge’ seems the only source• Are you compliant? Only 1 in 10 companies can effectively measure compliance with best practices edicted by Sarbanes-Oxley, HIPAA…
    • © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 14
    • • Similar to a doctor treating a patient, similar to managing national health• Because we want to achieve a goal• Steps: 1) Observe or Monitor 2) Interfere; i.e. change the behaviour 3) Measure; similar to Monitor, but more precise data 4) Report; produce intelligible info for others© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 15
    • © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 16
    • • Why Network Management Systems ?• Enable owners of (Cisco) Kit to save on spending €€ while managing the kit - €€ Manual mgmt - €€ IT assisted mgmt
    • • Operations Support Systems help Service Providers to make €€ from (Cisco) Kit• Typical operational issues are taken care of also, these form substantial differences between service providers. OSS + €€
    • © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 19
    • For Your Reference• Archive and Versioning of Configuration Files • Rollback Configuration Files from NMS to Device  Fetch & store all the configurations on network  Update the configuration on a device in the network devices.  Ability to specify which configurations to download.  Store multiple versions of configurations.  Ability to specify options like reboot, write mem etc.  Job based. for periodic archival  Job based.  Detect changes done outside the PI server and archive the change• Compare Configuration Files  View configurations  Compare configurations between versions of same or different devices  Reporting configuration mismatches
    • Configuration Restore Configuration Change LogConfiguration Comparison
    • Import Analyze Distribute
    • Support for over 500 Cisco device families Data Center Routers, Switches, Firewalls, Service Blades, Access Points; Data (Nexus 7000 Series) Center, Campus, Branch Nexus Nexus Nexus 7000 5000 1000 Enterprise CampusDay-one device support initiative & WAN Edge (Cisco Catalyst switches Cisco 7x00, ASR 1000 and 10000 Series) Ensures all new platforms are supported the day they ship (recent examples; Nexus, ISR-G2, 2k-S, 3k-X) Cisco Cisco 6500 Cisco Cisco Cisco 4500 Cisco 2960 3560/ ASR1000 7600 3750 Enterprise Branch (Integrated Services Routers) Cisco8 Cisco Cisco Cisco 00 1800 2800 3800
    • • Monthly Device Driver Pack updates to keep current with HW releases• Over 300 variations of all main Cisco device families covering access, aggregation, edge, and core• Over 150 variations of third-party devices from DragonWave, RAD, Alcatel-Lucent, Huawei and Juniper products. Routers: Edge, Core and Service Switches: Metro switches, DC switches, Routers: gateways: Cisco 800, 1600, 1700, 1800, Catalyst 1900, CAT2900, 1900, 2500, 2600, 2800, 2900, Cisco 12000, XR12000, CRS, CAT3500XL, CAT3550, ME3400, ME3400E, 3600, 3700, 3800, 3900, 4700, ASR1000, ASR9000, ASR901, CAT3560, CAT3750, CAT4000, CAT3750ME, ME3600X, 7200, 7300, 7400, 7500, 7600, MWR2941, UBR7200, CAT4500, CAT4900, CAT5000, ME3800X, ME4900, 10000 series UBR10000 series CAT6500(CatOS) Nexus5000, Nexus7000, CAT6500(IOS) series ACE4700, AS5800, AS5300, ASA5500, SCE series Support for All Major Cisco Device Families and OS Changes
    • INTELLIGENT NETWORK ARCHITECTURE Prime Infrastructure Borderless Data Center Collaboration Prime Collaboration TelePresence SP Integration Lifecycle Connect CloudCisco PrimeManagement Data Center Network System Unified Compute Mgr Collaboration Apps Unified Access End-to-end lifecycle management Management of virtual resources Lifecycle & Policy Unified Fabric Unified Comms End-to-end lifecycle management Connected Industries - Design, Deploy, Operate, Admin •Network, Compute, Storage - Design, Deploy, Operate, Admin Assurance Network Analysis Module Customer Collaboration Application/ end-user visibility Rich instrumentation for application Assurance - Monitor, Troubleshoot, Remediate troubleshooting Voice/video/telepresence visibility NetFlow Generation Appliance - Monitor, Troubleshoot, Remediate Compliance Secure-X Visibility of Data Center applications Regulatory and best practices and services - Monitor, Report, Remediate Secure Access Threat Defense App Visibility & Control Cloud Sec Smart Services OS / ASICs IPv6 SDN/API Systems Test
    • © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 29
    • •SlotsMany discovery tools available •Modules •Serial Number •.... Etc
    • VRF 7 6 1 CFM PWDevice Configuration Configuration Objects Logical Model
    • NMS can investigate device configuration and represent it in its user interface
    • show mpls forwarding-table Local Outgoing Prefix Bytes tag Outgoing Next Hop tag tag or VC or Tunnel Id switched interface 200 Pop tag 10.10.3.0/24 0 Se0/0 point2point 201 Pop tag 10.10.1.0/24 0 Se0/0 point2point 202 20 10.10.2.0/24 0 Se0/0 point2point 203 21 10.10.4.0/24 0 Se0/0 point2point 204 16 10.10.5.0/24 0 Se0/0 point2point 205 23 11.11.1.1/32 0 Se0/0 point2point 206 Pop tag [T] 11.11.3.1/32 0 Tu0 point2point Leveraging device instrumentation© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 35
    • CLI and MIBs show lacp bundle Bundle-Ether 17 Bundle-Ether17 Bandwidth (Kbps) Min active Max active Effective Available MAC address Links B/W (Kbps) Links ---------- ---------- -c -------------- snmpwalk ----- .1.2.840.10006.300.43.1.1.1.1 public -v1 172.23.104.23 ---------- ----- 20000000 20000000 4000.0000.0001 1 1 8 iso.2.840.10006.300.43.1.1.1.1.2.12 = Hex-STRING: 40 00 00 00 00 01 Port State Flags Port ID Key System-ID iso.2.840.10006.300.43.1.1.1.1.3.12 = INTEGER: 32768 ------------ ----- ----- -------------- ------Hex-STRING: 00 24 98 EA C3 FC iso.2.840.10006.300.43.1.1.1.1.4.12 = ------------------- Te0/1/0/2 iso.2.840.10006.300.43.1.1.1.1.5.12 = INTEGER: 1 00-24-98-ea 4p AF 0x8000, 0x0001 0x0011 0x8000, PEER 4iso.2.840.10006.300.43.1.1.1.1.6.12 = INTEGER: 1700-24-f7-1a AF 0x8000, 0x0001 0x0011 0x8000, Te0/1/0/3 4iso.2.840.10006.300.43.1.1.1.1.7.12 = INTEGER: 1700-24-98-ea AF 0x8000, 0x0002 0x0011 0x8000, PEER 4iso.2.840.10006.300.43.1.1.1.1.8.12 = Hex-STRING:00-24-f7-1a 5C EC AF 0x8000, 0x0002 0x0011 0x8000, 00 24 F7 1A iso.2.840.10006.300.43.1.1.1.1.9.12 = INTEGER: 32768 iso.2.840.10006.300.43.1.1.1.1.10.12 = INTEGER: 17 iso.2.840.10006.300.43.1.1.1.1.11.12 = INTEGER: 65535© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 36
    • Nested hierarchy© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 37
    • Logical Topology© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 38
    • VPWS VPLS L3VPN
    • Virtual Routing and Forwarding Access Circuit Customer Edge© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 40
    • PE2#sh ip vrf Name Default RD Interfaces Cust3VPN 100:3 Serial0/2 .... PE3#sh ip vrf Name Default RD Interfaces Cust3VPN 100:3 FastEthernet0/1 ....© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 41
    • PE2#sh ip vrf detail Cust3VPN VRF Cust3VPN; default RD 100:3; default VPNID <not set> Interfaces: Serial0/2 Connected addresses are not in global routing table Export VPN route-target communities RT:100:3 Import VPN route-target communities RT:100:3 No import route-map No export route-map© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 42
    • © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 43
    • Locally significant VLANtags Primary and alternate ports for REP segments© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 44
    • EVC Potential UNI© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 45
    • VLAN Manipulation Access VLAN terminating on the EVC© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 46
    • PW Tunnel supporting the VPLS© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 47
    • © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 48
    • Out-of-the-box default settings quickly isolate network problemsContextual dashboardsCentralized alarm browserTroubleshooting workflowNAM integration
    • Cisco® Unified Communications Manager Cluster Cisco Catalyst® NetFlow Data Export 6500 NAM Cisco NAM on SRE Si Si Si Cisco 7200 Series Inter-Branch Cisco WAAS Traffic Campus Cisco NAM Appliance WAN Application ServersCisco Nexus® 1000V NetFlow Data Export Cisco NAM on SRE - VM VM VM VM Cisco 7200 Series Branch Office-to-Data CenterCisco Prime™ NAM Cisco WAAS Cisco WAAS Traffic on Nexus 1010 Data Center Remote Locations
    • Application Troubleshooting Traffic Analysis Performance Visibility• Application response time • Applications, host, conversations, • Advanced filters, packet capture, analysis DSCP and QoS, and VLAN decoder, and error scan• Voice quality analysis • Per-application and per-user • Port and interface statistics details• URL monitoring Cisco 2800, 2900, 3800, and 3900 Series ISRs Cisco Nexus® 1010 Virtual Services Cisco WAAS Appliances Appliance Cisco Catalyst® Cisco® 7600 Cisco Catalyst Cisco Nexus 6500 Series Series Routers 4000 Series Switches 7000 Series Switches
    • Filter by Site, Host, VLAN, Data Source, Data Export Descriptive Summaryor Time Range Reporting Time Interval Zoom and Pan to Select Time Range Host Conversation Details
    • © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 57
    • Partner/Cisco Warehouse 3 Bare delivery 4 Staging, testing1 Substantial 5 Production NMS/OSS Planning and Service Config Design Enterprise IT – or – Service Provider 2 Order Cisco.com + internal systems Cisco Manufacturing
    • SP Warehouse drop ship to 4 3 Initial customer Service Config1 Customer places 5 Production NMS/OSS an order Service Config 2 - Unconfigured - custom configured Enterprise IT – or – Service Provider Cisco.com + internal systems Cisco Manufacturing
    • • Highlight key Cisco technologies and solutions• Simplify technology and solution adoption• Centrally organizes Day 1-to-n management tasks • Contextual status & monitoring dashboards • Readiness assessment and remediation • Instructional configuration workflowsWork Center Configuration Monitoring & ReportingEnergyWise Large-scale switch configuration Power consumption, Cost savings, policy Manage EW domains and policies compliance, alarms & eventsIdentity Large-scale Identity deployment ACS integration: Auth success failure trends, user Day-N configuration changes info, login statsSmart Install Centrally manage Smart Install Directors Smart Install-specific LMS job management Manage client switch configuration and sw imagesAuto Smartports Large-scale ASP deployment and day-N configuration Auto Smartports-specific LMS job management changes Event/trigger management MAC-based group configuration
    • provide (SUPPLY) verb [T] to give someone something that they need provider noun [C] someone who provides something http://dictionary.cambridge.org/• It’s possible to organise this by paper (4 copies min.)• It’s possible to organise this by phone• It’s possible to execute this with mouse clicks
    • Remember• Design• Assign• Activate• Audit
    • • Create CarrierE (ELINE) Service• met1-7609-agg1 GE1/0/4• met3-3400-acc10 GE0/9© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 64
    • • met3-3400-acc10 GE0/9• FlexUNI© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 65
    • • SR in Requested State• Configlet Preview© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 66
    • © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 67
    • For Your Reference • Business & Operational Analytics Prime AnalyticsAnalytics Cisco Workplace / Cloud Portal • Unified self-service portal • Business process automation, workflowService Prime Order Management • Customer impact databaseManagement Prime Service Inventory • Service catalog, complex workflow Prime Provisioning Prime Central • Central point of access for network information and control Prime Network • IP element and network management • Optical transport network managementElement & Prime Optical • Network performance management & reportingNetwork Prime Performance Manager • Visibility into application performance on the networkManagement Prime Network Analysis Module • Aggregate Network Analysis Module information Prime Assurance Manager • Assurance for TelePresence and Tandberg sessions Prime Collaboration Manager • IPAM, DNS and DHCP Servers Prime Network Registrar • Authentication, Authorization, Accounting Prime Access Registrar • Residential/SOHO equipment activationInfrastructure Prime Premises • Subscriber policy and data management for SP Wi-Fi Prime Service Manager for SP Wi-Fi • Subscriber charging, policy and data management for BNG Prime Service Manager for BNG
    • For Your Reference• Prime Infrastructure • Prime Data Center Network Manager Prime LMS (DCNM) Prime NCS• Prime Network Analysis Module (NAM) • Prime Collaboration NAM-3 Cat 6500 Blade CUOM, CUPM, CUSM, CUSSM 2300 Series Appliance Collaboration Manager (for TelePresence) NAM for Nexus 1100 Series NAM for ISR G2 SRE NAM for WAAS VB• Prime Security Manager© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 69
    • © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 70
    • Thank you.
    • Cisco has made good progress with consolidating the networkmanagement options at the edge of the network for managing wiredand wireless components. Enterprises should review thefunctionality in Prime NCS and Prime LMS before making a singledecision and if needed, wait for the consolidation of bothapplications into a single solution. - Gartner Unified Access MQReport“Cisco Prime Infrastructure has enabled our IT dept to become aknowledge base of whats on our network. Prime has simplifiedmanagement of both the wired and wireless network. This in turnhas given us time to use reporting tools and educate our users abouttheir impact on our network. Our management capabilities arelight years ahead of where they were before Prime.” – Bill Bowser,Telecommunications Manager, Sheetz