Quidview Network Management System

1
Quidview Network Management System
Li Xiaohui 2005-11-11
Huawei-3Com Technology Co., Ltd
2
Quidview Version Upgrades
Quidview V2R3
Quidview V3R1
SNMPc
Network Management Frame (NMF)
Device Manager (DM)
Quidview Router Management
Quidview Switch Management
Network Configuration Center (NCC)
Available Dec-2005
New!
Branch Intelligent Management System (BIMS)IPSec
VPN Service Monitor (VSM) IPSec VPN Deployment
Manager (VDM)
NCC
IPSec VPN VSM
IPSec VPN VDM
DM
BIMS
NMF
3
Quidview Network Architecture
?
Quidview V3R1
Network Management Frame (NMF)
Performance Management
Server Management
Device Management(DM)
Network Configuration Center (NCC)
Topology Management
Fault Management
United Management
Device from other Vendors
Devices from Huwei-3Com
4
Quidview Position

• Unified management of full series network
  products (router, switch, security voice
  products) from Huawei Huawei-3Com
• Adopts convenient modular structure, including
  NMF, DM, NCC and further service modules for user
  choice variety
• Overall network solution by interoperating
  closely with devices features
• Enable unified Multi-vendor networks management
  by integration with 3rd general NMS (HP OpenView,
  etc.)

5
Network Management Framework-Topology Mgmt.

• Network Unified Topology View
• Fast Navigation Tree
• Real time network status by polling refreshing

Topology Auto Discovery
6
Network Management Framework-Topology Mgmt.
ConnectionStatus Display

• Display running alarming information in
  real-time
• Device status can be viewed directly by topology
  may
• Multicolor differentiates different alarm level
  device status

DeviceStatus Display
Clear Topology Map
7
Network Management Framework-Topology Mgmt.
User-Defined Topology meets practical requirements

• Drag / pull device icon freely to form a topology
  map
• Flexible customized topology with add / delete /
  modify edit action
• Clearly display network level / relationship for
  variety nodes icon selection
• Display link status

User-Defined Topology Map
8
Network Management Framework-Fault Mgmt.

• Alarm Discovery Alarm Report Periodically
  polling devices Configuration file check
  Performance Monitoring
• Alarm Report Alarm indicator/ sound / E-mail,
  SMS, other NMS forwarding
• Alarm Recovery Alarm locating, system
  pre-installation recovery recommendation
• Experience Share valuable maintenance experience
  storage

NotifyAdministrator
Quidview
Locate Solve Problem
Accumulate Experience
Periodical Polling
Alarm Report
Alarmrepository
9
Network Management Framework-Fault Mgmt.
Alarm Real Time Display

• Multi Alarm Methods
• Alarm Display in real time
• Alarm record query
• Visual Audio Alarm with external alarm
  indicator
• Remote alarm forwarding Email / SMS / other NMS

Visual Audio Alarm
Acquire network status anytime, anywhere!
Remote Alarm Forwarding
10
Network Management Framework-Fault Mgmt.
I need these kinds of alarm.
User A
Alarm Filtering
I need these kinds of alarm.
User B

• User can set alarm display filtering to query the
  alarm that concerns the user.
• Filter template saves the user search condition
  setting.

11
Network Management Framework-Fault Mgmt.

• Fast locate activate node, board interface
  in topology and navigation tree
• Locate alarm on device to fast solve problem
• Input auto matching, fuzzy inquiry function to
  help locate alarm

Fast Alarm Locating
12
Network Management Framework-Fault Mgmt.

• Save share troubleshooting experience in alarm
  repository
• Prompt corresponding alarm repository
• System predefined alarm repository

Alarmrepository
13
Network Management Framework-Fault Mgmt.

• Shield intermittent alarm
• Shield repeated alarm

Alarm Report
Alarm Display
Alarm Receive
Alarm Storage
Correlation Analysis
Alarm correlation analyzes all reported alarm
efficiently, suppressing alarm storm.
14
Network Management Framework-Performance Mgmt.

• Multiple diagram format to display performance
  date with threshold value.
• Provide packet loss/error rate, bandwidth
  utilization, etc. performance collection
  template.
• Support real time performance monitor
• Over threshold value alarm
• Provide historic data analysis

15
Network Management Framework-Performance Mgmt.
Default performance data collection template
TOP N Format
View report directly on device
16
Network Management Framework Server Recourse
Monitor
User Requirement Server is as important as LSW
Router in network!
Key Feature

• Monitor CPU, Memory resource
• Support hard disk
• Support running process
• Support service monitor

17
Network Management Framework Security Mgmt

• User/User Group Management
• Setting Device Management Privilege
• Setting Administrator operation Privilege
• Network Client ACL

18
Network Management Framework Security Mgmt.
I can only manage office A

• Effective Secure Management is ideal for large
  scale network management
• Multi-Client
• Service classification
• Privilege classification such as operation right,
  and application right
• Reduce Total own of Cost

Quidview
Office A
Administrator A
I can only manage office B
Office B
Administrator B
19
Network Management Framework Security Mgmt.
Administrator operation log
Admin operation Log

• Log different user operation
• Monitor audit user operation

User Operation Log
Record trace and audit Network Administrator
operation.
20
Network Configuration Center-Device upgrade
Management
Key Feature
Requirements Currently device configuration
upgrades is by manual work with high expense.

• Check current software version and auto-upgrade
  device software
• support device soft backup in batch
• support device software upgrades in batch

21
Network Configuration Center-Device
Configuration Management
Requirements
70 network problems were caused by
mis-configuration. Effective management of
configuration file enables recovery from network
failure.
Key Feature

• Auto/manual backup of network device
  configuration file
• Operation like modification/comparison/baseline
  of configuration file
• Monitor modification of configuration file send
  alarm automatically

22
Device Management

• Full series of router switch management
• Intuitive panel display of basic device
  information, power/ports/interface status
• Integrate configuration wizard of device port /
  RMON monitor

23
Device Management Cluster Management

• Centralized management, configuration,
  maintenance for many devices
• Automatic discovery cluster device topology and
  dynamic refresh
• Save IP address resource
• Batch refreshment / configuration / recovery of
  configuration file
• Monitor devices interconnection and traffic
  status in cluster

169.0.0.1
Cluster
24
Device Management unauthorized MAC/IP locating
Quidview
Quidview

• Fast unauthorized interface locating
• Fast isolation of dangerous user
• Ensure network security

I know the illegal user location, I will isolate
him.
Alarm Broadcast stormSource MAC is xxxxxxxxxxxx
here are IP collision. What should I do?
unauthorized user
legal user
25
Device Management fast user information
collection

• Enable quick user information locating in case of
  abnormal traffic flow from switch ports
• Port (MAC IP Host Name) relationship to
  trace to problem source

Its MAC is XXXX
Quidview
Quidview
Abnormal traffic flow from10.153.89.1 Switch
Ethernet 0/2 port. Let me check it!
unauthorized user
Network Administrator
26
Device Management Traffic Real Time Monitor
Display Device, Port, CPU, etc performance
figure. Everything is under control!
27
Device Management Intelligent Performance
Monitor

• Device with imbedded intelligent RMON agent
  actively monitor performance data needing complex
  calculation, like interface utilization.
• When performance figure exceeds threshold, Alarm
  is produced and sent to Network administrator by
  Email, SMS in time.

Quidview
Trap
SMS
Calculation
Email
Ingress Packet Egress Packet
Interface Utilization
Interface Bandwidth
28
IPSec VPN Service Deployment Manager

• Practical VPN network assignment oriented
• Predefined/default parameter template helps to
  simplify otherwise complex / error-prone task
• VPN network domain device management
• VPN network tunnel management
• IKE Security Proposal management
• IPSec Security Proposal management
• Network Security Property Configuration
• Negotiation Mode Main Mode/Aggressive Mode
• ID password
• NAT Traversal
• ISAKMP SA lifetime
• PFS (Perfect Forward Secrecy) feature setting
• Keepalive packet send interval/Keepalive packet
  wait timeout

29
IPSec VPN Service Monitor
Proactive effective monitor VPN tunnel
guarantees rational VPN service development and
helps network administrator to plan whole network
optimization.

• IPSec VPN Topology View
• At A Glance of VPN
• Realtime Monitoring
• Monitor Task Management
• Data Browsing
• Device Performance Monitoring
• Browsing Tunnel
• Support Delete Operation Task Management

30
VSM Which kinds of data to be monitored?

• CPU Memory usage
• Device alarm information critical / major alarm
  increment
• IPSec Global information Number of Active IKE
  tunnels / Active IPSec tunnels / Active IPSec SA
• IPSec Traffic Statistics
• receiving sending rate of all IPSec tunnels
  (packets/s)
• number of inbound packets on all IPSec tunnels
• number of outbound packets discarded on all IPSec
  tunnels
• discarding rate of inbound packets on all IPSec
  tunnels ()
• discarding rate of outbound packets on all IPSec
  tunnels ()
• IPSec exception Statistics
• number of local initialization failed IKE tunnels
• number of remote initialization failed IKE
  tunnels
• inbound authentication failures on all IPSec
  tunnels
• inbound decryption errors on all IPSec tunnels

31
Enterprise Requirements for Brach Management
Headquarters
SNMP NMS
ISP
NAT
Leased Line
Firewall
DHCP
LAN
ADSL
Dynamic IP
Branch Node 2
Branch Node N
Branch Node 1
Leased Line
ADSL
LAN
SNMP
32
BIMS System Design Architecture

• BIMS addresses the need of effective management
  and central monitoring of typical branch device.
• BIMS consolidates NMF capability and enable
  Quidview whole network management.
• BIMS will decrease management costs and increase
  efficiency especially for large quantity network
  edge devices with relatively similar services.

Pre deployed device configuration
NAT Gateway
Web Server
Firewall

• Adopting HTTP as BIMS interface
• Intelligent devices actively access Server
• Central management of operating system,
  configuration file
• Professional Web server ensures system security
  and scalability
• Easy-to-use GUI

33
BIMS Main Features

• Upgrades Management
• Correlate devices with files
• Operating system software compatibilitycheck
• Configuration Verification
• Configuration file effective methods setting
• Historic configuration file backup
• Monitor upgrades progress
• Save device upgrades record
• Trace configuration change
• Lock device configuration
• Security Management
• System Operator Management
• Operation Log
• Log interaction between devices and BIMS server
• HTTPS encryption

• Device Management
• Add/deletion device
• Device group management
• Monitor interaction between device BIMS
• File Management
• Add/Delete file
• File group management
• View/Edit configuration file content
• Configuration files comparison

Device addition
Basic Information
Monitor Upgrade Progress
34
Auto-Config BIMS Solution - 1
Headquarters
BIMS Server

• Auto-Config configure interfaces and service.
• DHCP Server and DHCP Relay allocate IP address
  for edge routers.
• BIMS delivers appropriate configuration file.

DHCP
BIMS
DHCP Server
BIMS
DHCP Relay
DHCP Server
DHCP Relay
Auto-Config Initialize configuration
35
Auto-Config BIMS Solution - 2
BIMS Server
Headquarters

• Initialize deployment automatically
• Central management of operating system
  configuration file
• Decrease maintenance cost
• Easy-to-use GUI

BIMS Server configuration system software
center
DHCP Server
AR 18-2x3x
AR 18-2x/3x
Auto-Config Initialize configuration
PPP
Router A
Router B
Router C
Branch C
Branch A
Branch B
36
Network Management Solution- Typical Enterprises
Management Solution
Network Management System (NMS)

• Intuitive topology shows practical networking
  environment
• Discover potential failure by performance alarm
  management
• Monitor important Server performance
• Display key issue by filter TopN performance
  figure

Enterprise Network Cost Analysis Pie Chart
Effective Management TCO Decrease
Network Configuration Center (NCC)

• Reduce user configuration expense
• Simplify configuration operation by task
  orientated method

• Fulfill specific device management with extended
  features

37
Network Management Solution- Multi Vendor
Solution

• NMS from device vendors focus on management of
  its own devices with better support for private
  MIBs
• Professional General NMS provide better software
  integration for multi vendor management
• Integration of these 2 NMSs satisfy user
  requirements

Quidview Ciscoworks integrate in HP Openview
NNM
Devices from Huwei-3Com
Device from other Vendors
38
Multi-vendor Equipment Network Management Solution

• Auto discovery of other vendor devices with
  different intuitive icons identification.
• Support performance monitoring on other vendor
  device, including interface traffic flow,
  utilization
• Basic configuration management on other vendor
  devices
• Receive display alarm information from other
  vendor devices

39
Quidview Unique Highlight-1

• Discovering Topology
• Management of equipments through the device WEB
  network management
• Baseline operation of network equipment
  configuration files, supports the configuration
  files modification alarm
• Warning/Alarm rank redefinition. User can define
  the alarm rank according to practical needs
• Recovery suggestion for every alarm to conduct
  administrator to troubleshoot

40
Quidview Unique Highlight-2

• User-defined performance threshold with display
  of comparison diagram between threshold and the
  real traffic value
• Server PC management such as providing the CPU
  and memory utilization TCP, UDP port utilization
  as well as display hard disk utilization hardware
  configuration information
• Batch software upgrades as well as single device
  fast and easy upgrade
• Device alarm statistic information

41
QA
Thank You!
QuidView Market representative Li Xiaohui,
lixiaohui_at_huawei-3com.com