kaplan school of information systems and technology network management unit 7 course name –...
TRANSCRIPT
KAPLAN SCHOOL OF INFORMATION SYSTEMS AND TECHNOLOGY
Network ManagementNetwork ManagementUnit 7Unit 7
Course Name – IT475-01 Network ManagementInstructor – Jan McDanolds, MS, Security+Contact Information: AIM – JMcDanolds Email – [email protected] Hours: Tuesday, 7:00 PM ET or Wednesday, 8:00 PM ET
UNIT 6 REVIEW
What was covered in Unit 6Chapter 10 – Simple Network Management Protocol (SNMP)
Management software used to configure, interrogate, monitor and control and arbitrary network element or service.
“Building an element management system as an application that runs over TCP/IP lowers cost, permits universal accessibility, and allows more complex functionality than a traditional CLI.”
Chapter 11 – Flow Data and Flow Analysis (NetFlow)To assess traffic origins and destinations, how protocols are used and the details of communication between individual applications.
NetFlow – invented by Cisco Systems and now a standard, version 9 defines a flow to be unidirectional and exports fine-grained information that allows a manager to control the sets of fields that are exported.
UNIT 6 REVIEW
When network elements talk to us…
Quick Quiz on SNMP and NetFlow#1 Quick definition of Get, Trap, MIB
#2 Why is data aggregation important for MIBs?
#3 NetFlow offers network administrators a view of traffic. What other details can it show and how is it transported?
UNIT 7
Chapters 12 and 13
Chapter 12 – Routing and Traffic EngineeringBasic routing is easy, but most networks are anything but basic.“Although automated routing protocols handle small cases well, routing remains one of the most difficult aspects of management in a large network.”
Chapter 13 – Management Scripting“Scripting provides an especially useful way to eliminate repetitive management tasks; a stand-alone script can be created that automatically propagates a management command to each network element in a set.”
UNIT 7
Routing BasicsCisco’s definition:
“Routing is the act of moving information across an internetwork from a source to a destination. Along the way, at least one intermediate node typically is encountered.
Routing is often contrasted with bridging, which might seem to accomplish precisely the same thing to the casual observer. The primary difference between the two is that bridging occurs at Layer 2 (the link layer) of the OSI reference model, whereas routing occurs at Layer 3 (the network layer). This distinction provides routing and bridging with different information to use in the process of moving information from source to destination, so the two functions accomplish their tasks in different ways.”
UNIT 7
Routing Basics (cont.)Routing is a tool to control forwarding. Routing protocols and configurations determine the shortest paths by using metrics. Shortest paths are calculated using metrics such as number of hops, latency, jitter, throughput and redundancy. Routing tables store current routing information.
UNIT 7
Types and Scope of Routing
Unicast vs Multicast Routing – most are unicast due to complexity to manage multicast traffic
IPv4 vs IPv6 Routing – companies moving slowly to next-generation Internet addressing schemehttps://www.arin.net/knowledge/ipv6_info_center.html
Interior vs Exterior Routing – IGP, EGP, etc.BGP, RIP, OSPF, IGRP, EIGRP and IS-IS
UNIT 7
Use of Routing Metrics to Enforce Policy
Routing protocols – general approaches:Manual overrideControl of routing exchangeControl of metrics
“To control path selection, a manager can configure routing metrics to have higher or lower values than the actual cost. If metrics are chosen carefully, routing protocols will select a backup route when a failure occurs.”
UNIT 7
Quality of Service
Cisco definition: “Quality of Service (QoS) refers to the capability of a network to provide better service to selected network traffic over various technologies, including Frame Relay, Asynchronous Transfer Mode (ATM), Ethernet and 802.1 networks, SONET, and IP-routed networks that may use any or all of these underlying technologies. The primary goal of QoS is to provide priority including dedicated bandwidth, controlled jitter and latency (required by some real-time and interactive traffic), and improved loss characteristics. Also important is making sure that providing priority for one or more flows does not make other flows fail.”
Three aspects: characteristics of paths, anticipation of congestion, and effect of route changes.
Increase in voice and video traffic which require consistent throughput.
UNIT 7
Traffic Engineering
Multi-Protocol Label Switching (MPLS) – allows a manager to map traffic into a set of flows and specify a path through the network for each flow.
UNIT 7
Traffic Engineering
MPLS operation provides a “tunnel” because the packet follows a predetermined path to the end.
UNIT 7
Management of RoutingRouting Problems:
Asymmetric routesNonoptimal routesRouting loopsDark addresses and black holdsSubnet ambiguitySlow convergenceRoute flappingRedundant path failureBGP Wedgies
Global Nature of Routing – routing is not a “per-device” endeavor. Initial configuration and continuous operation impact management and require coordination across multiple elements.
UNIT 7
Chapter 13 – Management Scripting
Scripting – first step in automation of network management.
“The scope and generality of a system or service that relies on configuration is limited to the designer’s ability to anticipate future network environments and ways the product will be used.”
What happens when a device (router, switch, etc.) receives an upgrade from the manufacturer? Current configuration?
Scripting lowers the cost of creating and modifying software, but also results in lower performance.
UNIT 7
Expect Expect is a tool for automating interactive applications such as telnet, ftp, passwd, fsck, rlogin, tip, etc. Expect really makes this stuff trivial. Expect is also useful for testing these same applications. And by adding Tk, you can wrap interactive applications in X11 GUIs.
http://www.nist.gov/el/msid/expect.cfmhttp://sourceforge.net/projects/expect/Expect home pagehttp://expect.sourceforge.net/http://expect.sourceforge.net/FAQ.html
Automate Everything, Using Expect, Hak5 1023.1 (boring up until 5 minutes in – but shows the use of Expect with Linux)http://www.youtube.com/watch?v=dlwqyMW5H5I
UNIT 7
Scripting Examples
Textbook shows examples of Expect, etc.
Microsoft’s scripting centerhttp://technet.microsoft.com/en-us/scriptcenter/bb410849
Web Field TripUse PowerShell to Perform Offline Analysis of Security Logshttp://blogs.technet.com/b/heyscriptingguy/archive/2012/05/29/use-powershell-to-perform-offline-analysis-of-security-logs.aspx
UNIT 7
Unit 7 Readings
Chapter 12 and Chapter 13In Automated Network Management Systems
UNIT 7
Unit 7 Assignments
Download the chapters from Doc SharingRead the chapters and do the researchPost to Discussion (three topics)Attend Seminar or do alternate essayComplete the Assignment