RIEEW 2007 C i s c o m e e t s T U D r e s d e n Device Manageability I ns tr u m entatio n ( DMI ) O ver view [ D r e s d e n 200701 1 7] B r u n o K l a u s e r C o n s u l t i n g En g i n e e r N M S / O S S Eu r o p e a n M a r k e t s b k l a u s e r @ c i s c o. c o m 1

M Device Manageability Instrumentation Categories of DMI Device Instrumentation - Fa u l t - Co n f i g u r a t i o n - Ac c o u n t i n g - Pe r f o r m a n c e - Se c u r i t y ed iation at N etw ork L evel - Fa u l t - Co n f i g u r a t i o n - Ac c o u n t i n g - Pe r f o r m a n c e - Se c u r i t y A ctive N etw ork A b straction 2

PP M mm OO Device Manageability Instrumentation F eatu re R ic h n ess is H u ge: Ex am p l e MP L S C u s tom er P rem is e E th ernet E th ernet C u s tom er Ac c es s P L S / I P Ac c es s P rem is e Aggregation Aggregation C ore Cisco Device Manageability Instrumentation (DMI) (only subset shown here, as relevant for MPLS) Fa u l t Co n f i g u r a t i o n Pe r f o r m a n c e Ac c o u n t i n g LL ii nn kk mm oo nn ii tt oo rr ii nn g g && rr ee mm oo tt ee ff aa uu ll t t ii nn dd ii cc aa tt ii oo nn CC oo nn tt ii nn uu ii tt y y CC hh ee cc kk LL 22 PP ii nn g g TT rr aa cc e e AA II SS MM PP LL S S OO AA M M LL SS PP PP ii nn g g LL SS P P TT rr aa cc e e VV CC CC VV II P P OO AA M M PP ii nn g g TT rr aa cc e e BB FF D D II SS G G pp ee r r SS ee ss ss ii oo nn EE mm bb ee dd dd ee dd EE vv ee nn t t MM aa nn aa gg ee rr TT II B B OO II D D bb aa ss ee dd tt rr ii gg gg ee rr s s ee vv ee nn tt s s oo r r SS NN MM SS ee t t II EE TT F F DD II SS MM OO NN PP RR SS II OO NN II B B OO II DD ee xx pp rr ee ss ss ii oo n n bb aa ss ee d d tt rr ii gg gg ee rr s s II EE TT F F DD II SS MM OO NN...... 802.3ah 802.1 ag,,,,,,, EEM EV EN -M,, EX ES -M, MM I I (( ss ee rr vv ii cc ee pp aa rr aa mm ee tt ee r r && ss tt aa tt uu ss ss ii gg nn aa ll ii nn g g )) I I (( EE nn hh aa nn cc ee dd DD ee vv ii cc e e II nn tt ee rr ff aa cc e e CC LL I I PP ee rr l l II EE TT F F NN ee tt cc oo nn f f )) KK RR OO N N cc oo mm mm aa nn d d ss cc hh ee dd uu ll ee rr CC oo nn ff ii g g CC gg e e ll oo gg gg ii nn gg aa nn d d nn oo tt ii ff ii cc aa tt ii oo nn ss CC oo nn ff ii g g RR ee pp ll e e dd RR oo ll ll bb kk DD ii ff f f cc oo nn tt ee xx t t dd ii ff f f uu tt ii ll ii tt yy MM II B B PP ee rr ss ii ss tt ee nn cc ee.... E-L E-D,,, han ac an ac. II P P SS LL A A dd ee ll aa y y, jj ii tt tt ee r r, pp aa cc kk ee tt -l oo ss s s, MM PP LL S S hh ee aa ll tt hh - oo nn ii tt oo rr ii nn g g, aa nn dd vv aa nn cc ee d d oo bb jj ee cc t t tt rr aa cc kk ii nn gg CC BB QQ oo S S MM II B B (( CC ll aa ss ss bb aa ss ee d d QQ oo S S )) NN BB AA RR RR MM OO NN ER M M EE mm bb ee dd dd ee dd RR ee ss oo uu rr cc e e MM aa nn aa gg ee rr GG OO LL D D GG ee nn ee rr ii cc nn ll ii nn e e DD ii aa gg nn oo ss ii ss...... FF ll ee xx ii bb ll e e NN ee tt FF ll oo w w II EE TT F F II PP FF II XX BB GG P P PP oo ll ii cc y y AA cc cc oo uu nn tt ii nn g g ii nn cc ll uu dd ee s s AA S S ii nn ff oo rr mm aa tt ii oo nn PP ee rr ii oo dd ii c c MM II B B BB uu ll k k DD at a CC oo ll ll ee cc tt ii oo n n an d d TT rr an ss ff ee rr...... Se c u r i t y AA uu tt o o SS ee cc uu rr e e oo nn ee oo uu cc hh dd ee vv ii cc e e hh aa rr dd ee nn ii nn gg LL DD P P AA uu tt mm ee ss ss aa gg ee aa uu tt hh ee nn tt ii cc aa tt ii oo nn RR oo uu tt ii nn g g AA uu tt MM DD 55 aa uu tt hh ee nn tt ii cc aa tt ii oo n n BB GG P P OO SS PP FF...... -t h h,, See: w w w. c i s c o. c o m / g o / i n s t r u m en t a t i o n (n e w w h i t e p a p e r ) 3

M Device Manageability Instrumentation S u c c essfu l Ex am p l es Information Sources & Detection Mechanisms (R M O N, N e t f l o w, N B AR, I P SL A, B Q M ) P rocessing ( C orrel ations, T hreshol d ing, ) (E v e n t -M I B, E x p r e s s i o n -M I B, E m b e d d e d E v e n t M a n a g e r, G O L D ) A ctions & A l arming / E scal ation (N e t c o n f, E -D I, E m b e d d e d Sy s l o g M a n a g e r, E m b e d d e d E v e n t M a n a g e r ) E x amp l e: IP S L A E x amp l e: Diag nose M P L S b / w E x amp l e: B Q msec S a mp l i n g R el ev a n t E v en ts S o u r c e Synthetic T r a f f ic T a r g e t s L arg e S cale M onitoring of D e lay, J itte r, P ack e t D rop LSP D iag nose comp le x root-cause s in M P L S ne twork s E x ter n a l A p p 5 M L i n k C a p a ci ty i n S a mp l i n g Banwidth Quality Analysis of microcong e stion t 4

M Device Manageability Instrumentation A gen d a Device Instrumentation - Fa u l t - Co n f i g u r a t i o n - Ac c o u n t i n g - Pe r f o r m a n c e - Se c u r i t y ed iation at N etw ork L evel - Fa u l t - Co n f i g u r a t i o n - Ac c o u n t i n g - Pe r f o r m a n c e - Se c u r i t y A ctive N etw ork A b straction 5

N Ev en t-mib T he E V E N T MIB p rov id es a sup erset of the cap ab il ities of the R MO N al arm and ev ent T he E V E N T MIB cal l s trig g ers T he R MO N MIB cal l s al arms, b ut the concep ts are the same More fl ex ib l e test ty p es w ith the E V E N T -MIB Existence test: absent, present, changed B o o l ean test: < >, =, <, < =, >, > = E v ent MIB p rop osed b y C isco to IE T F DISMO W ork ing G roup, accep ted stand ard track R F C -2 9 8 1 6

EX P R ES S IO N -MIB A l l ow s y ou to create new SN MP ob j ects b ased up on ex isting MIB v ariab l es and formul as Interesting w hen comb ined w ith the E V E N T -MIB E X P R E N p b y C T F N W G, R F C 9 8 2 C o I F D I S M O N W o G u m C SSIO MIB rop osed isco to IE DISMO ork ing roup accep ted stand ard track -2 isco im pl em entatio n based n ET draf t, again in the rk ing ro p, and nu bered in isco s nam espace O y p v C L S f o m m l 1 2 ( 7 ) T H o w w m H o w m m nl config uration sup ort ia SN MP so far: no I criptabl e interf ace r adding co and ine su ppo rt in.3 ev er sho anagem ent expressio n exists ev er debu g anagem ent expressio n ib exists 7

G M O Em b ed d ed Ev en t Man ager 2. 1 T h e F r am ew o r k Sy s l o g E v e n t SN M P N o t i f i c a t i o n Pr o c e s s Sc h e d u l e r D a t a b a s e I n t e r f a c e D e s c r i p t o r B l o c k s Sy s l o g E D SN M P E D W a t c h d o g E D I n t e r f a c e Co u n t e r E D T i m e r E v e n t E D Event Detectors Co u n t e r E v e n t E D Ap p l i c a t i o n Sp e c i f i c E v e n t E D CL I E D I R E D Em b e d d e d Ev e n t M a n a g e r 2. 0 E E M Po l i c i e s A cti ons Sy s l o g U s e r T CL Sc r i p t s Sh o r t E m a i l n o t i f i c a t i o n CL I c o m m a n d e t i n f o o d i f y Co u n t e r Ap p l i c a t i o n Sp e c i f i c E v e n t Sw i t c h O v e r o r R e l o a d ( * ) 8 SN M P N o t i f i c a t i o n s

M Device Manageability Instrumentation A gen d a Device Instrumentation - Fa u l t - Co n f i g u r a t i o n - Ac c o u n t i n g - Pe r f o r m a n c e - Se c u r i t y ed iation at N etw ork L evel - Fa u l t - Co n f i g u r a t i o n - Ac c o u n t i n g - Pe r f o r m a n c e - Se c u r i t y A ctive N etw ork A b straction 9

Med iation at N etw ork L evel C onf iguration W h y is it im p ortan t? 1 / 2 More Configuration Items due to changes rather than new rol l -out So u r c e : Se v e r a l M a j o r M PL S O p e r a t o r s W hich do y ou p refer for configuring y our netw ork? 6 2 % Co m m a n d L i n e I n t e r f a c e 3 3 % N M S T o o l s 5 % So u r c e : Ci s c o W e b Se m i n a r 5 2 2 a t t e n d e e s 10

Med iation at N etw N etw ork O p era ti ons F a i l u res b y C a u se ork L evel C onf iguration W h y is it im p ortan t? 2 / 2 Network O perations Failure T ypes P erc ent of respond ents th at ranked type as m ost f req uent sourc e of network operations f ailure C onf ig uration errors 39% U pg rad e errors 2 7 % D ata entry errors 1 0 % M aintenanc e errors 1 0 % E rrors in m onitoring th e network 7 % V ersion c ontrol errors 7 % N etw ork O u ta g es R el a ted to H u m a n C onf i g u ra ti on Errors 75% S a g e 4 8 % H u m a n Co n f i g E r r o r 5 2 % O t h e r Y a n k ee G r o u p P rovi si oni ng Ef f i ci ency of L 3 V P N O p era tors va ri es b y a f a ctor 1 5 + i n term s of ord ers p er H ea d C ou nt over ti m e C i sco I B S G 11

Med iation at N etw F oc u s A reas ork L evel C onf iguration E nhanced C L I / E nhanced P rog rammatic Interface C isco Enhanced D ev ice I nterf ace ( E-D I ) Innov ativ e P rov isioning W ork fl ow s Z ero -T o u ch-d epl o y m ent ( Z T D ) E mb ed d ed F eatures and C L I U sab il ity Imp rov ements C o nf ig C hange L o gging, N o tif icatio n, R o l l back, D if f U til ity,... Dev ice-c ap ab il ity -Mod el & Dev ice-driv er C oncep t P artial l y ado pted by A ppl icatio ns ( su ch as C isco A ctiv e N etw o rk A bstractio n, I P S o l u tio n C enter,...) I nternal to the A ppl icatio ns to day S tandardiz ing & O pening u p dev ice-driv ers stil l w o rk -in-pro gress 12

G C isco Enh anced Device Interf ace E-DI 2. 1 W h y E-DI? P Q d & l C S S g Imp rov e rod uctiv ity & ual ity for - evice conf ig uration - maintenance troub esh ooting - ato to IO up rad es Sing l e p oint of access to d ev ice config uration U nified interface across p l atforms & rel eases - enh anced C L I - P erl integ ration - X M L A P I ( I E T F N E T CO N F d r a f t 5 c o m p l i a n t ) C omp l ementary to E MS and N MS Sup p ort ex isting and new cisco d ev ices Engineer P erl S c rip t N M S Ap p l ic a t io n E - CL I P erl AP I N et c o nf X M L Co nf igu ra t io n Ex ec Co m m a nd s F il e S y s t em Ev ent s / S t a t u s S W I m a ge Enh a nc ed D ev ic e I nt erf a c e E-D I I O S / Ca t O S T o d a y o t h ers l a t er ro u p ing S c h ed u l ing Au t h ent ic a t io n 13 Ad m in I nv ent o ry

C isco Enh anced Device Interf ace E-DI 2. 1 IO S -l ik e Com m an d L in e In terfac e R eal -tim e sy ntax v al idatio n & v isu al f eedback 14

G C isco Enh anced Device Interf ace E-DI 2. 1 Ex am p l e: N etw ork V irtu al iz ation Engineer P erl S c rip t N M S Ap p l ic a t io n Access Point R AM F l a s h 0 ( A) R a d io -0 R a d io -1 Et h -0 E - CL I P erl AP I N et c o nf X M L R AM SS ww F l a s h 0 ( B) itch RR ou ter R a d io -0 R AM Et h -0/ 0 F l a s h 0 Et h -0/ 1 ( C) Et h -0/ 0 Et h -0/ 1 Co nf igu ra t io n R AM Ex ec Co m m a nd s A B C F il e S y s t em EvF ent L ASs H / S t a t u s A0 B0 C0 S W I m a ge I nt erf ro a u c pes ing R a d io -A0 S Rc h a ed d io u -C0 l ing Et h -A0 Au t Et h ent h -B0/ ic a 0 t io n Et Ad h -B0/ m in 1 Et h -C0/ 0 I Et nv h ent -C0/ o ry 1 Enh a nc ed D ev ic e I nt erf a c e E-D I 15

C isco Enh anced Device Interf ace E-DI 2. 1 Main F eatu res O S P arser Em u l atio n CL I s y n t a x c h e c k i n g & c o m m a n d c o n t e x t v a l i d a t i o n e l i m i n a t e s h u m a n e r r o r s D ev ice G ro u ping D e f i n i t i o n o f a d m i n i s t r a t i v e d o m a i n s Ac c e s s Co n t r o l p e r a d m i n i s t r a t i v e d o m a i n l e v e l Si m p l i f i e s Co n f i g u r a t i o n a n d Ad m i n i s t r a t i v e t a s k s. G ro u p l east co m m o n deno m inato r C L I Pe r f o r m g r o u p o p e r a t i o n s w i t h o u t r i s k o f g e n e r a t i n g u n s u p p o r t e d c o m m a n d C o ntext B ased C L I Si m u l t a n e o u s l y a p p l y c h a n g e s t o o n e o r m o r e d e v i c e s b y s e l e c t i n g t h e c o n t e x t Si n g l e p o i n t f o r n e t w o r k c o n f i g u r a t i o n 16

C isco Enh anced Device Interf ace E-DI 2. 1 B en efits F o r C u s t o m e r s R edu ced N etw o rk O perating C o sts. I ncreased O peratio nal Ef f iciency and P ro du ctiv ity. R edu ced T raining C o sts N o A dditio nal L earning f o r each new T echno l o gy o r P l atf o rm. Extendabl e and C u sto m iz abl e. C o m pl em entary to Existing to S o l u tio ns. A d d i t i o n a l l y, f o r D e v e l o p e r s, In t e g r a t o r s, S P s F ast and R o bu st w ay to speed-u p P o C, P il o t D epl o y m R apid I ntegratio n, S erv ices to Earl y -A do pter M ark ets ents, 17

S elf -Managing N etw ork s A R eality T od ay? R eferen c es D ev ice M a na g ea b il ity I nstr u m enta tion ( D M I ) w w w. cisco. com / g o/ instr u m enta tion N e t Fl o w : w w w. c i s c o. c o m /g o /n e t f l o w I PSL A (a k a SAA, a k a R T R ) : w w w. c i s c o. c o m /g o /i p s l a E m b e d d e d E v e n t M a n a g e r : w w w. c i s c o. c o m /g o /e e m E n h a n c e d D e v i c e I n t e r f a c e (E -D I ) : w w w. c i s c o. c o m /e n /U S/p r o d u c t s /p s 6 4 5 6 / B a n d w i d t h Q u a l i t y M a n a g e m e n t (B Q M ) : w w w. c i s c o. c o m /g o /b q m Fe a t u r e N a v i g a t o r : w w w. c i s c o. c o m /g o /f n M I B L o c a t o r : w w w. c i s c o. c o m /g o /m i b s M onth l y N ew sl etter Ci s c o N e t w o r k M a n a g e m e n t N e w s l e t t e r (e m a i l s u b s c r i p t i o n p o s s i b l e ) : w w w. c i s c o. c o m /e x t e r n a l /n e t w o r k m a n a g e m e n t /c n m -n e w s l e t t e r /J a n u a r y 0 7. h t m 18

19

t h a n k y o u b k l a u s e r @ c i s c o. c o m 20