smart network application
TRANSCRIPT
Aaron Wu
Release 2.2.5
Smart Network Application
• Brand new network level monitoring and management tool for Cisco SMB switching network.
• Directly embedded in Cisco SMB switches. No installation or separate server required.
• Fluid user interface can be accessed by browser on any 550X, 350X and 350 series switches in the network.
• Manages the new generation Cisco SMB switches (550X, 350X, 350 and 250 series). Also discovers the old generation switches (500, 300 and 200 series) with limited functionality.
• Topology discovery, device explorer, connection explorer, syslog view, device authorization control, statistics, and services including configuration and image management.
What is Smart Network Application (SNA)?
SNA – OverviewTopology view displays the
discovered device. Drag and drop
the device to arrange its position.
Property panel displays
related information when
device(s) and connection(s)
are selected.
Overlay changes what additional
information is displayed over the
topology map.
Expand the + sign to check
endpoint devices like IP phones
Orange badge shows the number
of new syslogs received from this
device
SNA – OverviewChange of device position and
custom tags can be saved and
will be available for next log-in
Search devices by IP, MAC, name,
and tag. Then device(s) can be
selected to apply services or tags.
Global view of all notification
(syslog) across all devices
SNA – VLAN Membership Overlay
VLAN membership overlay
shows which devices and
connections belong to a VLAN
Both network devices and
endpoint devices are shown with
the circle of shade
SNA – Spanning Tree Overlay
Spanning Tree overlay help to
quickly identify blocked
connection
Dotted line shows the connection
is blocked in spanning tree
topology
SNA – Link Utilization Overlay
Link utilization visualize the highly
used connection with orange or
red color
Orange color denotes between
70% and 90% utilization; Red
color denotes >90% utilization
SNA – PoE Overlay
PoE overlay displays which
switch is supplying PoE power
and which endpoint device is
using PoE power.
Lightning sign denotes PoE PSE.
Shaded endpoint device is a PoE
powered device.
SNA – Property Panel
When a device is selected,
property panel will display
information about the device
Recent notification (syslog)
from the device
Custom tags can be added on top
of the automatically applied ones
Click the cogwheel to explore
device on port level or cross
launch device GUI
Configure services and check
statistics
When multiple devices are
selected, services and tags can
be applied to all selected devices.
Relevant options will also be
displayed when connection or
endpoint device is selected
SNA – Device Explorer – Ports and LAGs
Basic information for the ports
Select port(s) to view
status and services
available
Switch between overlays and
port/lag
Additional information is
displayed based on what overlay
is chosen.
SNA – Device Explorer – Clients
View all the client devices that
support CDP/LLDP – IP Phones,
wireless AP, etc.
Check and device ID and which
port it’s connected to.
SNA – Device Explorer – Notification
Filter and view recent notification
(syslog) on the device Clear the notification counter and
badge
SNA – Cross-launch Device UI
Device UI can be launched from
SNA for advanced configurations
SNA – Connection Explorer
Select interface(s) or device(s) to
view basic information and
available services
Change overlay to view different
information on the connection
diagram
SNA – Statistics – PoE Consumption
Check switch PoE consumption
overtime. – help to uncover
energy saving opportunities.
SNA – Statistics – PoE Consumption
Check PoE consumption
overtime at port level.
SNA – Statistics – Port Utilization
Check port bandwidth utilization
at port level (Tx and Rx)
SNA – Statistics – Traffic (Bytes)
Find out exactly how much traffic
was transmitted and received
• Services are configurations that can be activated on multiple SNA-capable devices or interfaces, simultaneously.
• Device level services can be launched from the device property panel in the topology view.
• Interface level services can be launched from either device explorer or connection explorer.
• You can also use the settings from one of the devices or interfaces as the settings for all other devices or interfaces in the selection.
Services
SNA – Service (NTP Server)
Select which devices to apply the
service
Configuration and operational
changes are presented as
Service in SNA.
Switch to other services
Copy setting from this device and
apply to other devices
Cross-launch device UI
SNA – Service (Radius)
SNA – Service (DNS Configuration)
SNA – Service (Syslog)
SNA – Service (File Management)
Firmware upgrade and
configuration update can be
applied to multiple devices
Devices will be automatically
rebooted if this option is chosen
SNA – Service (VLAN membership)
VLAN membership service can be
launched from device explorer by
selecting one or more interfaces
It can also be launched from
connection explorer to apply a
VLAN to both sides of a connection
Select the switch port mode –
access or trunk
x
Choose existing VLAN or create
new VLAN
Copy VLAN setting from this port
and apply to the other ports
SNA – Service (Power Management Policy)
Create power schedule and
define off schedule behavior.
Select ports to apply the
schedule setting
SNA – Service (Power Management Setting)
Power management setting service
is launched from device explorer
Enable or disable PoE and choose
power priority
x
Power schedule and behavior can
also be applied here
Select the interfaces to apply the
service
• Use the Device Authorization Control (DAC) feature to configure a list of authorized client devices in the network. Unauthorized devices are not allowed to access the network.
• DAC activates an embedded RADIUS server (RADIUS host server) on one of the SNA devices and enable 802.1x features on SNA devices in the network to authenticate to the embedded RADIUS server.
• Device authorization is done via MAC authentication.
Device Authorization Control (DAC)
DAC – Overview
Enable DAC and edit DAC server
and client roles
DAC whitelist / blacklist
management
DAC – Define DAC server
Set a switch as DAC server –
embedded RADIUS server
DAC – Define DAC client
Set a switch as DAC client –
where auth control is enforced
Select ports on which auth
control will be enforced
DAC – Manage DAC lists
Devices on DAC enabled ports need
to be assigned to blacklist or whitelist
Whitelisted devices now have
access to the network
Devices in pending status do not
have access to network
Manually add device MAC
addresses are also possible
• Managing the network instead of individual devices.
• Streamline the routine monitoring and configuration tasks.
• Lower skill set requirement and operational cost.
• Directly embedded in Cisco SMB switches.
The Benefits Are Clear