OM2012 Network Monitoring Phil Bracher Sr. Premier Field Engineer Microsoft Corporation
Continuous Availability of the Management Group: Resource Pooling Config service Scale and Federation Data Access service Federation Network Monitoring Application Monitoring with AVIcode
New UI framework with improved extensibility New and improved Dashboards SharePoint integration with the OM Web Console Improved monitoring for Unix/Linux machines
On Demand Network Discovery Support for Windows Workflow Foundation 4.0 New SNMP Stack
Out of the box discovery, monitoring, dashboards & reporting. Server to network dependency discovery. Multi-vendor support: Over 80 vendors-2000 devices certified Multi protocol support SNMPv1/v2c/v3 IPv4 and IPv6
Bridges Firewalls Load Balancers Routers/Switches/Hubs Hosts
SNMP Overview
SNMP Components SNMP Communications MIB tree structure How are OID s formed?
Managed Devices SNMP Agents SNMP V1, SNMP V2c, SNMP V3
MIB: Management Information Base. It is a collection of information organized hierarchically OID: Object Identifiers that uniquely identify managed objects in a MIB hierarchy.
Assigned in hierarchical fashion Each number identifies a node in the MIB tree 1.3.6.1 - Internet Community (IANA) Directory (1.3.6.1.1) Mgmt (1.3.6.1.2) Experimental (1.3.6.1.3) Private (1.3.6.1.4)
Connectivity: server to switch, switch to switch VLAN membership HSRP groups Stitching of switch ports to server NICs Key components of a device: ports/interfaces, processor, memory
Explicit discovery Customer knows the network devices. Manual process add ip address or import list Recursive Discovery Network topology unknown Discovered based on a set of seed devices Grabs ARP and IP tables and crawls network
Initial Probing Sends an initial ICMP and/or SNMP request to identify the system. Processing Get components, IP addresses, VLAN memberships, resources, IP networks, netmasks, and neighboring devices. Topology is created Post Processing Creates Layer 2 and Layer 3 connectivity between the devices in the topology. Port Stitching
ICMP Ping and/or SNMP Get (v2 by default) ICMP ping first SNMP get next If no response device added to pending If SNMPv2c fails -> SNMPv1
Matches sysobjectid = OID in oid2type config files found C:\Program Files\System Center Operations Manager 2012\Server\NetworkMonitoring\conf\ Gets details on components, IP addresses, VLAN memberships, resources, IP networks, netmasks, and neighboring devices. Identify device type (Switch, Router, Hub, etc.), vendor, model, certification level Levels of Certification Certified - has been successfully tested using standard and proprietary MIBs supplied by the vendor. Generic - The OID is unknown, only the availability of the device will be monitored.
Creates Layer 2 and Layer 3 connectivity between the devices in the topology. "Port Stitching" - Mapping IP and MAC access points retrieved from the ARP cache to the appropriate devices. Removes MAC access points that do not belong to devices in the topology A MAC Access Point is the interface to which a device on an IP network connects Creates network connections to represent WAN, or logical connections
Support Resource Pools for High Availability Monitoring. Only certain ports will be monitored by default Ports connecting two network devices to each other Ports to which a managed server is connected
Port/Interface Up/Down (operational & admin status) Volumes of inbound/outbound traffic % Utilization Discards, Drops, Errors Processor % Utilization Memory In depth memory counters (Cisco Only) Free memory
Connection Health Based on looking at both ends of a connection VLAN Health Based on health state of switches in VLAN HSRP Group Based on health state of individual HSRP end points
Demo - Monitoring
Network Summary Network Node Network Interface Vicinity
Reporting
Questions? Email: philbr@microsoft.com Need more information on DMVMUG Visit www.dmvmug.com or send a question to dmvmug@dmvmug.com