Network Management Deployment for LANs and WANs

Document Sample
Network Management Deployment for LANs and WANs Powered By Docstoc
					                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.   1




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                              1
                                    Network Management Deployment
                                          for LANs and WANs
                                                                                          Session NCM -206




                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                      3




                            Agenda



                                        I                Device Technology
                                        II               Designing the Network
                                        III              Understanding Management Tools
                                        IV               Application Workflow Examples



                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                      4




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                 2
                                                                                            Part I
                                                        Management Technology Required in Devices




                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                        5




                            Network Management
                            Technology Basics
                                                                                                                Telnet              Telnet
                                                                                                   MIB                    ILMI     IP    NTP
                                                   IP      MIB—RMON 1 and 2                                       IP
                                                                                                SNMP Agent
                                                              SNMP Agent
                                                                                                  Syslog                            MIB
                              Telnet                                                      CDP                            CDP     SNMP Agent
                                                 IP                                                        IP
                                                                                                                                  Syslog
                                                                                                         CDP      Telnet
                                                                 Get, GetNext, Set, GetBulk                IP      NTP
                      NTP
                                                                Responses, SNMP Traps                  MIB                 RMON-MIB
                                                                                                    SNMP Agent             CISCO-STACK-MIB
                              SNMP                                                                  Mini-RMON              BRIDGE-MIB
                             Manager                                                                                       ...
                            (CW 2000)                                     Syslog Message                 Syslog



                                                                                                Syslog
                                  IP                                       SNMP                                  Network             CDP or
                              Connectivity                              Traps/RMON              Telnet         Time Protocol          ILMI
                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                        6




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                                                   3
                            Configuring IP


                                                                                            CatOS CatIOS IOS

                                        NOTE: Mgt Interface Not in VLAN 1                                  Router Example of Loopback w/host Route
                                   set interface sc0 900 <IP_Addr> <Mask>                                  interface Loopback0
                                                                                                           ip address 172.20.18.154 255.255.255.255

                                                                                                               ATM Example of Internal LEC Config
                                                                                                            interface ATM2/0/0
                                                                                                            ip address <IP_Addr> <Mask>
                                                                                                            lane client ethernet core-mgt



                                       • Syntax differs between IOS and catalyst OS devices
                                       • Recommend using loopback interface for routers
                                                    Provides a ‘well known’ management IP address
                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                               7




                            SNMP
                            The Management Entity, Agents, and Protocol
                                                                                                                                     SNMP
                                  Network
                                                                                                                                   Manageable
                                 Management
                                                                                                                                     Device
                                   Station                                                    IP Network



                                                                                    Get Request, Get-Next Request
                                                                                          Get-Bulk Request                 SNMP
                                                                                            Set Request
                                                   Management                                                              AGENT      1000s of
                                                                                                                                      Defined Objects
                                                      Entity
                                                                                           Get Response

                                                                                               Trap !
                                                                                          SNMP v1, SNMP v2
                                  • Management entity collects data by generating requests; this
                                    causes in-band traffic coexisting with production traffic
                                  • Agents are information storehouses of object definitions
                                    provided in many Management Information Bases (MIBs)
                                  • SNMP protocol is used to transport the information requests
                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                               8




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                                                          4
                            SNMP
                            Understanding Community Strings

                                                                                              Community
                                                                                 Version                                    SNMP PDU
                                                                                                String



                                                                                   Protocol        UDP          Port         SNMP
                                                           IP                                                                          C
                               Frame                                               Number         Header        161         Message
                                                         Header                    UDP (17)                                            R
                               Header                                                                      Packet Payload
                                                                                                                                       C
                                                                                              Frame Payload


                                            • SNMP Protocol Data Units (PDUs) are processed as per the
                                              access policy indicated by the community string
                                            • Community strings are clear text and provide a trivial
                                              authentication mechanism
                                            • Avoid using the well known defaults:
                                                         Read-only agent access: public
                                                         Read-write agent access: private
                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                        9




                            Configuring SNMP


                                                                                      CatOS CatIOS IOS


                       set snmp community read -only <text>                                       snmp -server community <text> RO
                       set snmp community read -write <text>                                      snmp -server community <text> RW
                       set snmp community read -write-all <text>                                  snmp -server enable traps
                       set snmp trap <IP_Addr> <comm_string>                                      snmp -server host <IP_Addr> traps <comm_string>
                       set snmp trap enable all                                                   snmp -server trap -source loopback0
                       set snmp rmon enable


                                         • Configuration syntax operating system (OS) dependant
                                         • CatOS’ agent has two write access policies
                                                      Read-write—partial configuration access
                                                      Read-write-all—full configuration access

                                         • CatOS’s agent has defaults—change them!
                      NCM-206
                                                      R/O = public • R/W = private • R/W/A = secret
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                        10




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                                                    5
                            Remote Monitoring MIB

                                     Mini-RMON on Catalyst Switches Is a Sub-set of RMON



                                          Group                                                      Description
                                      Statistics                    Detailed Basic Interface Traffic Statistics
                                         History                    Short and Long term Statistics Sampling
                                         Alarm                      Sampling and Testing Objects for Threshold Conditions
                                            Host                    Host Based Traffic Statistics Based on L2 Addressing
                                      HostTopN                      Ranked Statistics from Host Group
                                          Matrix                    Host-pair Conversation Statistics
                                         Filter                     Configuration of Packet Selection Criterion
                                        Capture                     Access to Stored Packets that Meet Filter Criterion
                                           Event                    Action to Log, Issue Trap/notification Triggered by
                                                                    Alarm Group
                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                                11




                            The Syslog Facility

                                                                                                          Console
                                                                                          RS-232         Messages
                                     CatOS CatIOS IOS
                                                                                                   console
                                                                                                         (optional)
                                       syslog
                                                                          facility severity level timestamp system log message
                                      514/udp
                                                                  Syslog Server                         Severity Level        Description

                                                                                                                 0             Emergencies
                                                                     logfile               config                1             Alerts
                                                                                                                 2             Critical
                                                                                                                 3             Errors
                                                                                                                 4             Warnings
                               CatOS Syslog Default Level
                                                                                                                 5             Notifications
                                                                                                                 6             Informational
                                        IOS Syslog Default Level                                                 7             Debugging

                      NCM-206                                                                          Level Required by Resource Manager Essentials
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                                12




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                                                            6
                            Configuring Syslog


                                                                                          CatOS CatIOS IOS


                                    set logging server <IP_Addr>                                   logging on
                                    set logging server level 6                                     logging <hostname | IP_Addr>
                                    set logging server facility local7                             logging facility local7
                                    set logging level all 6 default                                logging trap informational
                                    set logging timestamp                                          logging source-interface loopback0
                                    set logging enable                                             service timestamps log datetime


                                        • Syntax differs between IOS and catalyst OS devices
                                        • Message textual format differs between IOS and catalyst
                                          OS devices
                                        • Resource manager essentials requirement
                                                     Logging level informational (6)
                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                 13




                            Configuring Telnet


                                                                                          CatOS CatIOS IOS


                                   set password <passwd>                                           enable password <passwd>
                                   set enablepass <passwd>                                         line tty 0 4
                                                                                                         password <passwd>
                                                                                                         login [local/tacas]


                               • Syntax differs between IOS and catalyst OS devices
                               • Catalyst switches have telnet enabled but no
                                 console/telnet or enable passwords by default—add them
                               • IOS devices do not have telnet enabled
                                            Enable for management support
                                            Secure with TACAS+
                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                 14




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                                             7
                            Configuring CDP and ILMI


                                                                                          CatOS CatIOS IOS

                                                              Global                                                Global
                                  set cdp [enable/disable]                                         cdp run

                                                            Per Port                                            Per Interface
                                  set cdp [enable/disable] <mod/port>                              cdp enable

                                                                                                         ILMI Setup for ATM Interface
                                                                                                   atm pvc 2 0 16 ilmi




                                 • Syntax differs between IOS and catalyst OS devices
                                 • CDP enabled by default on most interfaces

                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                 15




                            Configuring NTP


                                                                                          CatOS CatIOS IOS


                                   set ntp client enable                                           ntp server <IP_Addr>
                                   set ntp server <IP_Addr>                                        ntp source Loopback0
                                   set ntp timezone PST –8
                                                                                                   ntp update-calendar
                                   set summertime enable PST
                                                                                                   clock timezone PST –8
                                                                                                   clock summer -time PDT recurring



                                 • Syntax differs between IOS and catalyst OS devices
                                 • Configure NTP on management server
                                 • Time synchronization important for proper syslog,
                                   traps, and monitoring correlation
                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                 16




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                                             8
                            Additional Configuration


                                                   CatIOS IOS                                                  CatOS

                              • Cisco IOS device                                                • Catalyst switch
                                           Hostname and SNMP                                        System name,
                                           contact, location,                                       contact, location
                                           chassis-id
                                                                                                    User login authorization
                                           User login authorization                                 local or TACACS
                                           local or TACACS+
                                                                                                    Mini-RMON statistics,
                                           SNMP access lists                                        history, alarms,
                                                                                                    and events
                                           RMON alarms and
                                           events (statistics and                                   VTP domain name
                                           history if available)
                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                         17




                            Technologies Used by
                            CiscoWorks Products
                                        Application                              Traffic Flow     Service(s)     TCP/UDP Port
                                                                                                                   Number
                                RME                                                                 SNMP           UDP 161
                                Inventory Manager
                                RME                                                                 Telnet         TCP 23
                                Config Manager                                                      TFTP           UDP 69
                                                                                                    SNMP           UDP 161
                                RME                                                                 Telnet         TCP 23
                                Software Image                                                      TFTP           UDP 69
                                Manager                                                             SNMP           UDP 161
                                RME                                                                Syslog          UDP 514
                                Change Audit Svs
                                RME                                                                 Telnet         TCP 23
                                Avail. Manager                                                      SNMP           UDP 161
                                                                                                    ICMP               N/A
                                RME                                                                Syslog          UDP 514
                                Syslog Analyzer
                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                         18




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                                     9
                            Technologies Used by
                            CiscoWorks Products
                         Application                                            Traffic Flow     Service(s)   TCP/UDP Port
                                                                                                                Number
                         Campus Manager                                                             SNMP        UDP 161


                         Device Fault Manager                                                       SNMP        UDP 161
                                                                                                SNMP Traps      UDP 162
                         Real Time Monitor                                                          SNMP        UDP 161
                                                                                                SNMP Traps    UDP 162/395
                         Internet Performance                                                       SNMP        UDP 161
                         Monitor
                         ACL Manager                                                                Telnet      TCP 23
                                                                                                    TFTP        UDP 69
                         CiscoView                                                                  SNMP        UDP 161




                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                      19




                                                                                          Part II
                                                                Designing the Network for Management




                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                      20




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                                  10
                            Designing for Management
                            General Guidelines


                               • Design for management
                                 from the start, not as
                                 an afterthought
                               • Avoid end-to-end VLANs
                               • Build a reliable data
                                 transport
                               • Monitor critical links,
                                 forget the rest


                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                          21




                            Designing for Management
                            Bridging = Problems
                                                                                                       End to End
                                • Avoid bridging VLANs end-to-end
                                                                                                   Management VLANs
                                             All devices in
                                             one subnet
                                             Large spanning                                                             VLAN 1
                                             tree domain
                                             Spanning tree meltdowns                      Bridge
                                             Broadcast storms

                                • Create a routed network for                             Bridge
                                  your management traffic                                                               VLAN 1

                                             Separate IP subnet for each
                                             managed area
                                             Focus on reliability and simplicity
                                                                                                   Problematic Design
                                             Simple as possible, but no simpler


                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                          22




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                                      11
                            Designing for Management
                            No Trunking in Access Layer

                               • Only 1 IP subnet in each
                                 access switch                                               10.1.110.10        10.1.120.10       10.1.130.10

                               • Management and user data                                    VLAN 100           VLAN 200          VLAN 300
                                 share same VLAN
                               • Management interface provides
                                 in-band monitoring point for
                                 data path                                                         10.1.110.8                  10.1.110.9

                               • Distribution L2 management is
                                 lowest data VLAN (VLAN 100)                                  L3                                          L3
                                                                                              10.1.110.2                            10.1.110.3
                               • Distribution L3 management
                                 source-interface = VLAN100                               Loopback0                                 Loopback0
                               • Core L3 management source-                                 10.1.50.3                                 10.1.50.4
                                 interface = Loopback0
                                                                                                                      Catalyst 5000 with L3
                                                                                          Distribution Layer =                       or

                      NCM-206
                                                                                                                      Catalyst 6000 with L3
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                           23




                            Designing for Management
                            Trunking in Access Layer

                                                                                                                VLAN 100
                                  • Avoid using VLAN 1 for
                                    management traffic; think                                 10.1.100.12        10.1.100.13       10.1.100.14
                                    of it as the “control plane”
                                  • Management interface in
                                    same VLAN for all switches
                                    in VTP domain                                                      10.1.100.10      10.1.100.11
                                  • Management and user data
                                    on different VLANs                                       L3                  HSRP                     L3
                                  • Provide reliable,                                        10.1.100.2         10.1.100.1         10.1.100.3
                                    redundant transport                                      vlan100                                   vlan100

                                  • Layer 3 module management
                                    source-interface = VLAN100

                                                                                                                      Catalyst 5000 with L3
                                                                                           Distribution Layer =                      or

                      NCM-206
                                                                                                                      Catalyst 6000 with L3
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                           24




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                                                       12
                            Designing for Management
                            VTP Management Domains
                                                                                                         Regional Offices

                              • Create a unique domain name                                Portland          LA          Chicago
                                for each group of switch
                                clusters
                              • Domain name should be
                                geographical
                              • VTP domain names assist for
                                end station location and                                            SJ-10
                                container mapping
                              • VTP server requirement
                                removed in campus manager 3.1                                            Corp Network
                              • VLANs can be created on
                                transparent mode switches                                           Linc-4                    VM-1



                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                               25




                            Designing for Management
                            Redundant Infrastructure

                                                                                                         10.1.100.15
                              • High availability management
                              • Completely separates                                                                     SNMP Manager
                                management from
                                user data                                                 10.1.100.12    10.1.100.13    10.1.100.14

                              • Management link is in
                                separate subnet, VLAN,
                                and switch
                                                                                               10.1.100.10      10.1.100.11
                              • Higher assurance for
                                management data delivery
                                during congestion or
                                convergence



                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                               26




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                                           13
                            Designing for Management
                            Terminal Servers
                                                                                               Regional Offices   Modem
                               • Out of band
                               • Failsafe access
                               • Console connection                                                               Telnet

                                 only, no SNMP
                               • Connect to redundant
                                 infrastructure
                               • Secure AUX ports
                                 when using modem
                                                                                                                  Terminal
                                                                                                                   Server
                                                                                               Corp Network
                      NCM-206                                                                                     Serial Cable
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                      27




                            Designing for Management
                            Critical Links
                                                                                                         Remote Offices
                              • Define key infrastructure
                                aggregation ports ( )
                                           Automate using CDP, trunk state,
                                           router port
                                           Manual for server ports

                              • Setup statistics collection
                                (RMON)
                              • Monitor “away” from the core
                              • Enable traps for link failure
                                and thresholds                                            Servers
                              • Monitor for performance and
                                fault conditions

                                                                                              Corp Network
                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                      28




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                                  14
                            What Data to Collect
                                    • Port level statistics—utilization, collisions, fragments, etc…
                                                 Collect via miniRMON or ifIndex port MIBs
                                                 Basic physical stats good for usage trending and baselining
                                                 Useful anywhere in the network
                                                 Not necessary for all user ports

                                    • Detailed physical, network, and application layer data
                                                 Collect via RMON 1 and 2 from hardware probe
                                                 Detailed L2-L7 stats for understanding traffic breakdown
                                                 Valuable for WAN aggregation links
                                                 Valuable for LAN aggregation links
                                                        Building to building, distribution to core, server farm to core

                                    • What collection interval?
                                                 Short for troubleshooting (5–30 sec) “realtime”
                                                 Long for monitoring and trending (5 min–15 min) “logged”
                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                      29




                            WAN Probe Deployment
                                                                                                       Frame Relay
                              • Choose WAN aggregation points
                                                                                                               0
                                for probe deployment                                                       I 10
                                                                                                        DLCDLCI 200
                              • Probe uses tap concept to
                                                                                                        DLC
                                connect in-line between router                                             I 30
                                                                                                                0
                                interface and WAN circuit or
                                CSU/DSU
                              • Multi-port probes can monitor                                WAN Probe
                                multiple physical connections                               RMON 1 and 2
                              • One agent can monitor statistics                             • Statistics on DLCI and CIR
                                per PVC from a central location
                                                                                               Per-
                                                                                             • Per-PVC statistics:
                              • Provides physical, network, and
                                application layer data collection                                 Utilization and packet rates
                                and packet capture—no impact
                                to router or link performance                                     FECNs, BECNs
                                                                                                  Protocol usage and
                                                                                                  conversation matrix
                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                      30




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                                  15
                            LAN Probe Deployment
                          • Choose LAN                                                                              • Host and conversations for
                                                                                                                    • Host and conversations for
                            aggregation points for                                                SwitchProbe         link, network and
                                                                                                                      link, network and
                                                                                                                      application layers
                                                                                                                      application layers
                            probe deployment
                                                                                                                    • Address translation
                                                                                                                    • Address translation
                                       Server farm to core                                                          • Per VLAN monitoring (SMON)
                                                                                                                    • Per VLAN monitoring (SMON)
                                                                                           Tap
                                       Distribution to core                                                         • Packet Filter/capture
                                                                                                                    • Packet Filter/capture
                                                                                           Box
                                                                                                                    • Protocol distribution
                                                                                                                    • Protocol distribution
                                       Building to building                                        RMON 1 and 2
                                                                                                                    • User history
                                                                                                                    • User history
                          • Connection options                                            Trunk
                                       Tap a trunk link                                                                           SwitchProbe
                                       Span ports or VLANs to                                           LAN Switch
                                       Probe or NAM

                          • One agent can see all                                                                        SPAN
                            VLAN utilization and                                                                         Port
                                                                                          Per Port mini-RMON:                       RMON 1 & 2
                            drill down per VLAN
                            if taped or spanning                                          Statistics   History
                            a trunk link                                                  Alarms       Events
                                                                                                 NAM   RMON 1 & 2

                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                          31




                            NAM vs. External Probe?

                                  • Network Analysis Module (Catalyst 5000 and 6000)
                                               Integrated solution for fast Ethernet speeds
                                               Ideal for monitoring access or distribution layer
                                               Saves additional rack space
                                               Can simultaneously monitor multiple VLANs or ports

                                  • Switch probe (standalone)
                                               Best choice for gigabit Ethernet speeds
                                               Ideal for monitoring high speed core backbones
                                               Flexible stand alone device when mobility required
                                               Optional features needed

                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                          32




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                                                      16
                            SPAN and RSPAN Feature
                             • SPAN
                                          Copies packets from source                                            Rx/Tx
                                          ports/VLANs to destination ports
                                                                                                                            Probe
                             • RSPAN
                                                                                                 Destination     A
                                          Allows spanning of remote
                                          ports/VLANs                                                                        NAM
                                          User specified RSPAN                                                      Intermediate
                                          VLAN created                                                     B
                                          Output ACL can be applied to
                                          RSPAN VLAN for filtering
                                          and QoS                                                    C          D       Source

                                          Utilizes VTP pruning to prevent
                                          unwanted flooding
                                          RSPAN requires catalyst 6000                               Rx        Rx/Tx

                                          Trunking must be enabled switch
                                          to switch in most cases for       SPAN Source = Port, Multiple Ports, VLAN
                                          RSPAN                           in/out/both Packets can be Specified per Port
                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                             33




                                                                                          Part III
                                                                      Understanding Management Tools




                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                             34




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                                         17
                            What Is the NMS?


                          “                 A set of tools for controlling a complex data
                                         network to maximize its efficiency and productivity.


                                                 Fault
                                                                                          Troubleshooting for problem discovery,
                                                                                          isolation, and resolution
                                                                                                                                  ”
                                                                                          Collect utilization and performance data,
                                       Performance                                        analyze data, set utilization thresholds

                                                                                          Finding, configuring, and maintaining
                                      Configuration                                       network devices

                                                                                          Logging user access and data
                               Accounting                     Security                    traffic for billing; providing secure
                                                                                          access to the network
                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                               35




                            CiscoWorks2000 Solutions



                                                      • Understanding key processes
                                                      • Sizing the hardware
                                                      • Deployment guidelines
                                                      • Integration and growth



                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                               36




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                                           18
                            LAN Management Solution 2.0


                                      CD One 4th Ed                     Resource            Campus             Real -Time Monitor    Content
                                                                        Manager            Manager 3.1                 1.2             Flow
                                                                      Essentials 3.3                                                Manager 1.2



                                                                            Device
                                                                            Device             Topology          RMON Traffic
                                                                                                                  RMON Traffic
                                  CiscoWorks2000
                                  CiscoWorks2000                                                                                     Server
                                                                                                                                      Server
                                                                          Inventory,
                                                                          Inventory,           Services,           Monitoring
                                                                                                                   Monitoring
                               Server, CiscoView and
                               Server, CiscoView and                                                                                  Load
                                                                                                                                       Load
                                                                       Configuration and
                                                                       Configuration and     Path Analysis,           and
                                                                                                                      and
                                 Integration Utility
                                  Integration Utility                                                                               Balancing
                                                                                                                                    Balancing
                                                                        Software Mgmt
                                                                        Software Mgmt      and User Tracking    Troubleshooting
                                                                                                                Troubleshooting




                                                       Device Fault
                                                       Device Fault
                           Device                      Management
                                                       Management
                            Fault
                         Manager 1.1

                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                           37




                            Routed WAN Management Solution 1.1


                                      CD One 4th Ed                     Resource           Internetwork        Real -Time Monitor      ACL
                                                                        Manager            Performance                 1.2          Manager 1.3
                                                                      Essentials 3.3        Monitor 2.3



                                                                           Device
                                                                            Device                               RMON Traffic
                                                                                                                  RMON Traffic      ACLs Mgmt
                                                                                                                                    ACLs Mgmt
                                  CiscoWorks2000
                                  CiscoWorks2000                         Inventory,
                                                                         Inventory,         Path Analysis,         Monitoring
                                                                                                                   Monitoring       Templates,
                                                                                                                                     Templates,
                               Server, CiscoView and
                               Server, CiscoView and                  Configuration and
                                                                      Configuration and    Troubleshooting            and
                                                                                                                      and           Deployment
                                                                                                                                    Deployment
                                 Integration Utility
                                  Integration Utility                  Software Mgmt
                                                                       Software Mgmt                            Troubleshooting
                                                                                                                Troubleshooting




                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                           38




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                                                       19
                            Common Management Foundation
                            Architecture
                                   LMS • RWAN                     LMS • RWAN              LMS            LMS         LMS • RWAN+         RWAN            RWAN


                               Resource
                                Resource                                                             Content
                                                                                                     Content        Device
                                                                                                                     Device                        Internetwork
                                                                                                                                                   Internetwork
                                                                 Real-Time
                                                                 Real-Time       Campus
                                                                                 Campus                                              ACL
                                                                                                                                      ACL
                                Manager
                                Manager                                                               Flow
                                                                                                       Flow           Fault
                                                                                                                      Fault                        Performance
                                                                                                                                                   Performance
                                                                  Monitor
                                                                  Monitor        Manager
                                                                                 Manager                                            Manager
                                                                                                                                    Manager
                               Essentials
                               Essentials                                                            Manager
                                                                                                     Manager        Manager
                                                                                                                    Manager                           Monitor
                                                                                                                                                      Monitor

                                                                                                               Internal Interface
                                    Common to LMS • RWAN • SMS • VMS • CVM • …                                                                  Network Devices



                                   CD-One (Common Management Foundation) SNMP
                                                                                                                                    syslog
                                                           NETWORK
                                        CORBA Event Bus




                                                                                   ANI (Asynchronous Network Interface)
                                                           SERVICES                           Network Device Discovery             telnet
                                                           SYSTEM                         Database Engine, Job Management,
                                                                                                                                                  Customer
                                                                                                          Event Distribution
                                                           SERVICES                                                                                Partner
                                                                                                                                   CIM/XML        Interface
                                                           RUNTIME             Desktop, Web Services, Security, Process                                           CCO
                                                           SERVICES                                  Management, Help                             Cisco
                                                                                                                                                Management




                                                                                                                               HT BA
                                                                                                                                CO
                                                                                                                                                Connection




                                                                                                                                 ML
                                                                                                                                  R
                                                                                                                                                Web Browser
                      NCM-206                                                                                                                   User Interface
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                                               39




                            Automatic Network Discovery

                                • Start at seed IP address
                                • Determine type of device and begin                                                                     CDP
                                  collecting SNMP data
                                                                                                                                    C              B
                                • Retrieve CDP/ILMI neighbor tables
                                                                                                                                                                 ILMI
                                                          IP address                                                               CDP
                                                          Type of device
                                                                                                                                     A
                                                          Port                                                                                                    D
                                                                                                                          Seed                    ILMI
                                • Attempt to talk to IP address
                                  of all neighbors
                                • Continues until all neighbors
                                  have been tried
                                • Constructs the map with accurate
                                  connectivity info including                                                            CiscoWorks
                                  trunking status                                                                        2000 Server

                      NCM-206
                                                                                                               Discovery Available When ANI Is Running
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                                               40




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                                                                           20
                            Change Audit Service
                          1       Changes to CLI
                                                                           2       Changes from CiscoWorks2000         Change Audit
                                                                                  Periodic Scans or Scheduled Jobs       Reports

                                      AAA                                                     Configuration
                                                                                                Manager
                                                                                     Inventory           Software
                                      All                                             Manager            Manager
                                    Syslog
                                    Events


                                    Syslog
                                   Analyzer                                                   Change Audit
                                                                    Managed                    Database
                                                                     Syslog
                                                                     Events

                                   Syslog
                                  Database                                                     Inventory
                                                                                               Database

                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                    41




                            Discovering End Stations
                                                                                                                     • Forwarding tables
                                                                                                                          MAC address
                                                     CiscoWorks 2000
                                                          Server                               2       Switches           VLAN
                                                                                                                          Port
                          Network                                                                                    • ARP tables
                           Device                  1                                             3                        Subnets
                          Database                                                                                        IP address
                                                                                                        Routers
                                                                                                                     • DNS Service
                                                                                                 4                        DNS names
                                                                      6                   5                          • IP Phones
                                                                                                                          Phone number
                                                                                                                          Phone type
                                                                                                          DNS        • Login names
                                                                                                         Servers          Unix (ruserd)
                                                                                                                          Windows NT 4.0
                                                NT PDC     Call Manager                                                   PDC
                                                NetWare                                                                   Novell NDS 5.0
                                                 Unix Building the User Tracking Database
                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                    42




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                                                21
                            User Tracking Table




                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                        43




                            Fault Analysis
                                                           Events                                                Notifications
                                                                                          DFM Analysis Engine                   Monitoring
                                                                                                                                 Console

                                                           Traps and Polls                                      Symptoms and
                                                                                                Important?      Compounds
                                                                                              No        Yes

                                                                                                                        File Notifier
                                                                                              No        Yes
                                                              Traps and Polls                                                  Trap Notifier
                                                                                                Correlate?




                                                                                                                 E-mail
                                                                                                                 Notifier

                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                        44




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                                                    22
                            System Elements Monitored

                                                                                      Routers             Switches               Hubs              Exception
                                   Connectivity
                                                              IP polling                                                                          Operational
                                                         SNMP polling                                                                             Operational
                                                 Excessive Restarts                                                                               Operational
                                   Environmental
                                                            Temp state                                                                            Temperature
                                                         Relative temp                                                                            Temperature
                                                         Voltage state                                                                            Power Supply
                                                     Relative voltage                                                                             Power Supply
                                                               Fan state                                                                          Temperature
                                                 Power supply state                                                                               Power Supply
                                   Processor & Memory
                                               Backplane utilization                                                                               Resource
                                                         Free memory                                                                               Resource
                                             Memory buffer misses                                                                                  Resource
                                          Memory buffer utilization                                                                                Resource
                                            Memory fragmentation                                                                                   Resource
                                                Processor utilization                                                                              Resource
                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                                                   45




                            Port and Interface Elements Monitored
                                                     ‘Managed’ Switch                                ‘Managed’ IP Addressable Interfaces
                                                       Port Groups
                                                   Ethernet            ATM            Ethernet   ATM            TR          Others      Dial on      Backup
                                                                                                 Serial        FDDI                     Demand

                               Broadcasts

                                 Collisions
                                                                                                                                                                 Performance
                                                                                                                                                                  Exception




                                  Discards

                                      Errors

                                     Queue
                                     Drops
                                 Utilization

                                      Port
                                  Flapping
                                                                                                                                                                 Operational
                                                                                                                                                                  Exception




                                   Backup
                                  Activated
                                 Maximum
                                   Uptime
                               Oper Down

                                                                                                                     default DFM settings, can be changed by admin
                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                                                   46




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                                                                               23
                            Internet Performance Monitor
                            Top Level Architecture

                                                                            (SA)                  Scheduled
                                                                          Service                 Operation
                                                                         Assurance
                                                                           Agent                                      SNA Mainframe,
                     Access to IPM Server                                                                             Cisco IOS Router,
                     • IPM Client                                                                                      or any IP Host



                                                                                             Si




                                                                                                               Configure
                                                                                                                 SAA
                                                                                                                           IPM Server
                                                             Configure IPM



                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                 47




                            Internet Performance Monitor
                            Low Level Architecture

                                          Source Router
                                        (Cisco IOS Device)



                                 SA Agent
                                                                                                                 Possible Targets
                                                                                          Synthetic                  • IP Host
                                 Collectors’
                                                                RTTMon                    Traffic
                                 Schedules
                                                                  MIB                     Operation             • IOS Device (SAA
                                                                                          (TCP Connect,             Responder)
                                                                                          UDP, Voice Packet,
                                                                                          DNS, DHCP, etc.)       • IBM Mainframe

                         IPM Server
                         Extracts Data                                             IPM Server
                         Using SNMP                                                Configures
                                                                                   Collectors via SNMP
                         Every Hour
                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                 48




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                                             24
                            SAA Synthetic Operations

                                          ICMP
                                        Echo, Path                                                           UDP
                                          Echo
                                                                                              Voice
                          TCP                                    DLSw+                                             DNS/
                                                                                              Jitter                                     SSCP-
                         Connect                                                                                   DHCP                   LU
                                                                                                                                        LU0, LU2



                                                                  IP                                   UDP                SNA


                                                                                               IOS-based
                                 ToS                                                       Service Assurance
                                                                                                 Agent

                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                            49




                            Bundle Scaling
                            Maximum Supported Devices
                                                                                    LMS 2.0 and RWAN 1.1

                                                                                          Topology                  2,000 Devices
                                                     Campus
                                                                                          User Tracking             30,000 End stations


                                                                                          Availability              1,000 Devices
                                                                                          Syslog Messages           150,000 per Day

                                                          RME                             Config Management         5,000 Devices
                                                                                          Inventory                 5,000 Devices


                                                                                          Standalone                30,000 Ports
                                                                                                                    3,000 Trunk Ports

                                                          DFM                             With LMS                  15,000 Ports
                                                                                                                    1,500 Trunk Ports



                                         NOTE—All Numbers Assume the Recommended Server is Used
                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                            50




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                                                        25
                            Bundle Scaling
                            Maximum Supported Devices
                                                                                                   RWAN 1.1

                                                                                           Number of ACLs Is Critical Performance Limit
                                          ACL Manager                                      Customer with ACLs 700+ Lines
                                                                                                  20 Min to Download Using Telnet
                                                                                                  10 Sec to Download Using Tftp



                                                     IPM                                            1,000 End-to-End Tests



                                                                                            Standalone                               500 Interfaces
                                     Real Time Monitor
                                                                                            With LMS                                 TBD—Testing

                                         NOTE—All Numbers Assume the Recommended Server is Used
                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                                         51




                            LMS 2.0 Bundle Server Sizing
                            Solaris and NT
                         Small Scale Network (up to 200)—System Recommendations
                            OS        # of Devices                    CPU                  RAM       SWAP                Hard Disk
                                      (ANI + RME)                                                                                            Test Environment
                          NT                200             PIII - 500Mhz - SP            512 MB     1 GB            6 GB (NTFS)
                         Solaris            200             U60 - 450Mhz - SP             512 MB     1 GB               6 GB                  ANI Discovery
                                                                                                                                            DFM at Bundle Max
                         Medium Scale Network (200-500)—System Recommendations
                             OS          # of Devices                       CPU                    RAM          SWAP         Hard Disk       Syslog Messages
                                         (ANI + RME)
                            NT                500                 PIII - 550Mhz - MP               1 GB         1.5 GB     9 GB (NTFS)           1/second
                           Solaris            500                 U60 - 450Mhz - MP                1 GB         1.5 GB        9 GB
                                                                                                                                            Inventory Collection
                        Large Scale Network (500-1000)—System Recommendations                                                                     Weekly
                           OS        # of Devices                   CPU                    RAM       SWAP            Hard Disk
                                     (ANI + RME)                                                                                              Config Archive
                           NT            1000              PIII - 700Mhz - MP             1.5 GB     2 GB           9 GB (NTFS)
                         Solaris          1000             U60 - 450Mhz - MP              1.5 GB     2 GB                9 GB
                                                                                                                                                 Weekly

                                                                                                                                              UT End Stations
                        VERY Large Scale Network (1K-2K)—System Recommendations                                                                   20,000
                           OS         # of Devices                  CPU                    RAM        SWAP               Hard Disk
                                      (ANI + RME)
                           NT             2000                     P IV                   2 GB       2.5-3 GB      15-20 GB (NTFS)
                                                                                                                                                 HPOV
                                                           PIII - 900Mhz - MP                                                                Daemons Running
                         Solaris           2000            U60 - 450Mhz - MP               2 GB      2.5-3 GB            15 -20 GB

                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                                         52




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                                                                     26
                            Campus Bundle Server Sizing
                            HPUX and AIX

                      Small Scale Network (up to 200)—System Recommendations
                             OS          # of Devices                        CPU            RAM     SWAP     Hard Disk      Test Environment
                                         (ANI + RME)
                           HPUX                 200               J2240 - 200Mhz - SP      256 MB   1.5 GB      6 GB        Availability Poller
                            AIX                 200                IBM 150 w/604e -        256 MB    1 GB       6 GB          250 Devices
                                                                     250Mhz - SP
                                                                                                                            Syslog Messages
                       Medium Scale Network (200-500)—System Recommendations                                                    1/second
                              OS         # of Devices                      CPU             RAM      SWAP     Hard Disk
                                         (ANI + RME)                                                                       Inventory Collection
                           HPUX                 500               J5000 - 200Mhz -        512 MB    1.5 GB     9 GB              Weekly
                                                                        MP
                             AIX                500               IBM 150 w/604e -        512 MB    1 GB       9 GB          Config Archive
                                                                    250Mhz - MP                                                 Weekly
                          Large Scale Network (500-1000)—System Recommendations
                               OS         # of Devices                      CPU            RAM      SWAP     Hard Disk
                                                                                                                            UT End Stations
                                          (ANI + RME)                                                                           10,000
                            HPUX               1000                J5000 - 440Mhz -       512 GB    1.5 GB     9 GB
                                                                         MP                                                    HPOV
                              AIX              1000                IBM 150 w/604e -       512 GB    1.5 GB     9 GB        Daemons Running
                                                                     375Mhz - MP

                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                           53




                            Deployment
                            Networks < 2000 Devices

                               • Campus topology hierarchy
                                            VTP and ATM domains (auto)
                                                                                                                           2,000 Devices
                                            L2 Edge View (auto)                                                          30,000 End Users
                               • RME groupings
                                            Custom views
                                            Product families

                               • Auto sync of devices                                                                     LMS Bundle
                                            Campus manager auto discovers network                                        NMS Platform
                                            New devices scheduled to update
                                            RME inventory
                                            Credential changes from RME back to
                                            campus manager



                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                           54




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                                                       27
                            Deployment
                            Networks > 2000 Devices
                                                                       Deploy Localized LMS Servers
                                                     • Partition network into groups of 2,000 devices
                                                                  Limit discovery by IP ranges
                                                                  Limit discovery by VTP domains

                                                     • Deploy localized LMS bundles
                                                                  1 per network partition

                                                     • Forward syslog messages to main NMS


                                                          2,000 Devices                     2,000 Devices       2,000 Devices
                                                        30,000 End Users                  30,000 End Users    30,000 End Users




                                                         Partition 1—North                Partition 2—Central Partition 3—South
                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                           55




                            Deployment
                            Networks > 2000 Devices

                                                                Deploy Centralized RME Server

                                 • For customers who need a centralized RME function
                                              Provides single reporting server for inventory, configs, changes, software
                                              distribution, bulk changes, etc.

                                 • Supports up to 5,000 devices
                                              1 per network partition

                                 • Forward data from localized installs
                                              Syslog messages—use remote syslog analyzer collector
                                              Discovered devices from campus manager auto-discovery

                                 • Synchronize device credentials between local and central
                                              SNMP community string changes


                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                           56




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                                       28
                            Deployment
                            Networks > 2000 Devices
                                                                                      Partition Discovery by:
                                                                                            • VTP Domain
                                                                                            • IP Address Range

                                           2,000 Devices                                                           2,000 Devices
                                         30,000 End Users                                                        30,000 End Users


                                                                                          Up to 5,000 Devices
                                                               SAC                                                         SAC

                                            “Local”                                                                “Local”
                                          LMS Bundle                                                             LMS Bundle
                                                            g
                                                      ardin
                                                  Forw                              SNM
                                           Syslog         tion                          P Cr
                                                  chroniza       “Central RME”
                                                                                            eden
                                                                                                tials
                                         evice Syn                                                    Upda
                                                                                                          te
                                        D             Essentials Inventory, Config, Syslog
                                                                                      (No Availability)
                                                                               Platform Integration for NMS
                       SAC = Remote Syslog Analyzer Collector                       (CiscoView, Device Center)
                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                             57




                            Limitations

                                        • No distributed reporting model
                                                     Localized LMS bundles are “autonomous”
                                                     No distributed reporting for multiple RME servers
                                                     (If you have more than 5,000 devices)

                                        • Inclusive layer 2 map slow/unusable for large
                                          networks close to 2,000 devices
                                                     Use Layer 2 Edge View map
                                                     Use sub-maps for VTP or ATM domains
                                                     Use “switch cloud” sub-maps from layer 2 Edge View



                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                             58




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                                         29
                            GUI Performance

                                 • Human engineering issue—how fast is
                                   fast, and how slow is slow?
                                 • Explorer generally outperforms Netscape
                                 • Customize device views
                                 • Server CPU, client RAM (and CPU)
                                 • Tradeoff lower number of devices per
                                   server for better GUI performance?

                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                           59




                            Integration and Growth Issues
                                                                                                                RWAN
                         • What happens when
                                                                                            Network Registrar          SMS
                           you need to run more
                           applications?
                                      Is the OS supported?
                                                                                          CiscoSecure                     LMS
                                      CPU or memory
                                      constraints?                                          Customer
                                                                                                                          MRTG
                                                                                             Specific
                                      Conflicting databases?
                                      Conflicting ports used?
                                      Multi-user access?                                    QoS Policy Manager       CiscoWorks
                                                                                                                         Blue
                                                                                                           Cisco Voice
                                                                                                            Manager
                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                           60




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                                       30
                            Integration Model
                            The Management Intranet
                                                                    servers                                         end stations
                                                                                          network
                           Combined Data
                           becomes Very
                             Valuable
                                                                                                                                   Distributed
                                                                                                                                    Systems
                             Web Links and                                                                                   Reduced Single
                             Data Exchange                                         CIM/XML               CIM/XML             OS Dependency
                              and Retrieval




                      NCM-206                                                       Web Browser Is Main Interface
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                          61




                            Customer Application Integration:
                            Easy Addition of Homegrown Tools


                                                                                             Acme Operations Center


                                                                                             Help Desk
                                                                                            CiscoWorks




                                                                                                                                   Customer
                                                                                                                                   Developed
                                                                                                                                   Application
                          Customer
                          Application Links


                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                          62




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                                                      31
                                                                                          Part IV
                                                                         Application Workflow Examples




                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                  63




                            Problem and Resolution Examples




                                                             • Application response time
                                                             • Voice connectivity
                                                             • Software upgrades




                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                  64




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                              32
                            Application Response Time
                                                                                                                 Remote User
                                                                                                                 Remote User
                               • Problem
                                            Mobile user in Chicago
                                                                                                     Regional Offices
                                            experiencing slow or no
                                            response from corp. web                       Portland
                                                                                          Portland      LA
                                                                                                        LA       Chicago
                                                                                                                 Chicago
                                            server in San Jose

                               • Solution Steps
                                            Find user and server location
                                            and info on network
                                                                                               SJ-10
                                                                                               SJ-10
                                            Check connection settings
                                            Verify VLAN associations                                 Corp Network
                                                                                                                           WWW Servers
                                                                                                                           WWW Servers

                                            Find network path                                  Linc-4               VM-1
                                                                                               Linc-4               VM-1
                                            Check utilization
                                            Check response history

                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                              65




                            Locate User and Server
                                                                                                                Remote User
                                                                                                                Remote User
                          1—Query User Tracking for Location of User and Server

                                                                                                     Regional Offices

                                                                                          Portland
                                                                                          Portland      LA
                                                                                                        LA      Chicago
                                                                                                                Chicago




                                                                                               SJ-10
                                                                                               SJ-10


                                                                                                                           WWW Servers
                                                                                                                           WWW Servers
                           2—User Tracking Shows IP Addr, Switch, Port, VLAN, etc… Corp Network




                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                              66




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                                          33
                            Check Port Integrity and Usage
                                                                                                                                  Remote User
                                                                                                                                  Remote User
                                   1—Examine CiscoView GUI to Determine Port Integrity

                                                                                                                       Regional Offices

                                                                                                            Portland
                                                                                                            Portland      LA
                                                                                                                          LA      Chicago
                                                                                                                                  Chicago




                                                                                                                 SJ-10
                                                                                                                 SJ-10


                                                                                                                                          WWW Servers
                                                                                                                                          WWW Servers
                                                                                                                       Corp Network




                                       2—Realtime
                                        Utilization                                       3—Port Settings
                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                           67




                            Verify VLAN and L2 Forwarding Path
                                                                                                                                  Remote User
                                                                                                                                  Remote User
                                     1—Use Campus Manager to Show VLAN
                                      Inclusion, Spanning Tree Forwarding
                                             States, and Root Bridge                                                   Regional Offices

                                                                                                            Portland
                                                                                                            Portland      LA
                                                                                                                          LA      Chicago
                                                                                                                                  Chicago




                                                                                                                 SJ-10
                                                                                                                 SJ-10


                                                                                                                                          WWW Servers
                                                                                                                                          WWW Servers
                                                                                                                       Corp Network




                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                           68




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                                                        34
                            Determine Network Path
                                 1—Trace L2 and L3 Path Using Path Trace                                                 Remote User
                                                                                                                         Remote User



                                                                                                              Regional Offices

                                                                                                   Portland
                                                                                                   Portland      LA
                                                                                                                 LA      Chicago
                                                                                                                         Chicago




                                                                                                        SJ-10
                                                                                                        SJ-10


                                                                                                                                 WWW Servers
                                                                                                                                 WWW Servers
                                                                                                              Corp Network




                                                                                          2—Determines L2 Port by Port
                                                                                          Connections in Addition to L3
                                                                                          “Trace Route”
                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                  69




                            Check WAN Utilization
                                                                                                                         Remote User
                                                                                                                         Remote User



                                                                                                              Regional Offices

                                                                                                   Portland
                                                                                                   Portland      LA
                                                                                                                 LA      Chicago
                                                                                                                         Chicago




                                                                                                        SJ-10
                                                                                                        SJ-10

                                     1—Compare Traffic per DLCI
                                                                                                                                 WWW Servers
                                                                                                                                 WWW Servers
                                                                                                              Corp Network
                                            2—Examine Usage History for
                                                  Specific DLCI
                                                                                                          Use Real Time Monitor
                                              3—Determine Network Protocol Traffic                           and WAN Probe

                                                4—Determine Application Protocol Traffic
                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                  70




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                                               35
                            Analyze End to End and Per Hop
                            Response History
                                1—Analyze Latency for Specific Path Using                                       Remote User
                                                                                                                Remote User
                                  IPM (Internet Performance Monitor)
                                                                                                     Regional Offices

                                                                                          Portland
                                                                                          Portland      LA
                                                                                                        LA      Chicago
                                                                                                                Chicago




                                                                                               SJ-10
                                                                                               SJ-10


                                                                                                                           WWW Servers
                                                                                                                           WWW Servers
                                                                                                     Corp Network



                                                                                              2—Drill Down to Latency,
                                                                                               Errors, and Completion
                                                                                               Summary for Individual
                                                                                                 Routers along Path
                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                            71




                            IP Phone Connectivity
                                                                                                                        IP Phone
                                                                                                                        IP Phone
                                                                                              IP Phone
                                                                                              IP Phone


                                                                                                        Regional Offices

                                                                                            Portland
                                                                                            Portland       LA
                                                                                                           LA       Chicago
                                                                                                                    Chicago
                                 • Problem
                                              How to do this for IP phones
                                 • Solution steps
                                                                                                  SJ-10
                                                                                                  SJ-10
                                              Similar to last example, but
                                              you need to find phones and
                                              trace the path between them                               Corp Network




                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                            72




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                                         36
                            Check Phone
                            Configuration and Status
                               1—Use Campus Manager to Check SNMP                                                         IP Phone
                                                                                                                          IP Phone
                                                                                                 IP Phone
                                                                                                 IP Phone
                             Status of Call Manager and Link to Interface to
                                     Verify Phones Are Configured
                                                                                                           Regional Offices

                                                                                                Portland
                                                                                                Portland      LA
                                                                                                              LA      Chicago
                                                                                                                      Chicago




                                                                                                     SJ-10
                                                                                                     SJ-10



                                                                                                           Corp Network




                      NCM-206
                                                            2—Use User Tracking to Check Status of Phone and
                                                                          Determine Location
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                              73




                            Call Lookup and Trace
                                1—Use Path Trace to Find Call                                    IP Phone
                                                                                                                          IP Phone
                                                                                                                          IP Phone
                                                                                                 IP Phone


                                                                                                           Regional Offices

                                                                                                Portland
                                                                                                Portland      LA
                                                                                                              LA      Chicago
                                                                                                                      Chicago




                                                                                                     SJ-10
                                                                                                     SJ-10



                                                                                                           Corp Network




                                                                                             2—Trace L2 and L3 Path
                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                              74




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                                          37
                            Controlled Software Upgrade
                                                                                                                Remote User
                                                                                                                Remote User
                               • Problem
                                            Upgrade required on all remote                           Regional Offices

                                            site routers to support new                   Portland
                                                                                          Portland      LA
                                                                                                        LA      Chicago
                                                                                                                Chicago
                                            features

                               • Solution steps
                                            Locate applicable devices
                                                                                               SJ-10
                                                                                               SJ-10
                                            Check device resources
                                            against image requirements
                                                                                                                           WWW Servers
                                                                                                                           WWW Servers
                                                                                                     Corp Network
                                            Download image from Cisco
                                                                                               Linc-4
                                                                                               Linc-4               VM-1
                                                                                                                    VM-1
                                            Schedule and deploy job
                                            Verify and check for failures


                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                            75




                            Device Location


                                                                                                          Regional Offices

                                                                                              Portland
                                                                                              Portland         LA
                                                                                                               LA       Chicago
                                                                                                                        Chicago




                                                                                                       SJ-10
                                                                                                       SJ-10


                                                                                                          Corp Network




                             Resource Manager Essentials Allows You to Select
                                Multiple Devices from the Existing Inventory
                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                            76




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                                         38
                            Image Selection and Verification


                                                                                                     Regional Offices

                                                                                          Portland
                                                                                          Portland      LA
                                                                                                        LA      Chicago
                                                                                                                Chicago



                                       Select Appropriate Image and Download
                                               if Necessary from CCO


                                                                                               SJ-10
                                                                                               SJ-10



                                                                                                     Corp Network




                                        Image Is Checked Against Device Resources

                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                   77




                            Specify Job Details and Download
                                          RME Job Control Allows Customization
                                            of Software Deployment Options

                                                                                                     Regional Offices

                                                                                          Portland
                                                                                          Portland      LA
                                                                                                        LA      Chicago
                                                                                                                Chicago




                                                                                               SJ-10
                                                                                               SJ-10



                                                                                                     Corp Network




                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                   78




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                               39
                            Job Verification
                                       RME Provides Job Work Order Detail with
                                       Success and Failure Indication per Device

                                                                                                                        Regional Offices

                                                                                                             Portland
                                                                                                             Portland      LA
                                                                                                                           LA      Chicago
                                                                                                                                   Chicago




                                                                                                                  SJ-10
                                                                                                                  SJ-10



                                                                                                                        Corp Network




                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                      79




                                    Network Management Deployment
                                          for LANs and WANs
                                                                                          Session NCM -206




                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                                                      80




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                                                  40
                                                         Please Complete Your
                                                            Evaluation Form
                                                                                          Session NCM -206




                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                      81




                      NCM-206
                      3142_05_2001_c_X © 2001, Cisco Systems, Inc. All rights reserved.                      82




Copyright © 1998, Cisco Systems, Inc. All rights reserved. Printed in USA.
0979_05F9_c1.scr                                                                                                  41