T H E P O W E R O F B U I L D I N G A N D M A N A G I N G N E T W O R K S. Operations



Similar documents
7750 SR OS System Management Guide

TECHNOLOGY WHITE PAPER. Correlating SDN overlays and the physical network with Nuage Networks Virtualized Services Assurance Platform

Application Notes for Configuring Dorado Software Redcell Enterprise Bundle using SNMP with Avaya Communication Manager - Issue 1.

SolarWinds Certified Professional. Exam Preparation Guide

AppWall SIEM Integration Guide

enetworks TM Using the Syslog Feature C.1 Configuring the Syslog Feature

A FAULT MANAGEMENT WHITEPAPER

NMS300 Network Management System

mbits Network Operations Centrec

Apple Airport Extreme Base Station V4.0.8 Firmware: Version 5.4

IxNetwork TM MPLS-TP Emulation

SolarWinds Network Performance Monitor

7450 ESS OS System Management Guide. Software Version: 7450 ESS OS 10.0 R1 February 2012 Document Part Number: * *

Management Software. Web Browser User s Guide AT-S106. For the AT-GS950/48 Gigabit Ethernet Smart Switch. Version Rev.

R&S BC NETSTATE Open network management software for broadcast applications

Empirix OneSight for VoIP: Avaya Aura Communication Manager

enetworks TM BANDIT, C2C, and VSR-1200 Document Set List of Groups and Modules

Cisco Change Management: Best Practices White Paper

Regaining MPLS VPN WAN Visibility with Route Analytics. Seeing through the MPLS VPN Cloud

Huawei One Net Campus Network Solution

orrelog SNMP Trap Monitor Software Users Manual

Pandora FMS 3.0 Quick User's Guide: Network Monitoring. Pandora FMS 3.0 Quick User's Guide

Chapter 4 Managing Your Network

DLB 5-20 Outdoor Wireless Device DATASHEET. COPYRIGHT 2014 LigoWave

T H E P O W E R O F B U I L D I N G A N D M A N A G I N G N E T W O R K S. Carrier Management

D-View 7 Network Management System

SolarWinds Network Performance Monitor

How To Manage A Data Center Remotely From A Computer Or Network Remotely

--- Who s watching over your network to insure that it is operating efficiently? ---

Tel Scripting for Cisco IOS

Kaseya Traverse. Kaseya Product Brief. Predictive SLA Management and Monitoring. Kaseya Traverse. Service Containers and Views

Section 11.1, Simple Network Management Protocol. Section 11.2, Port Data Capture

Enabling NAT and Routing in DGW v2.0 June 6, 2012

SOLARWINDS NETWORK PERFORMANCE MONITOR

login timeout 30 access list ALL line 20 extended permit ip any any port 9053 interval 15 passdetect interval 30

Chapter 9 Monitoring System Performance

Configure WAN Load Balancing

Cisco Bandwidth Quality Manager 3.1

Magnum Network Software DX

SolarWinds Network Performance Monitor powerful network fault & availabilty management

bintec Workshop WAN Partner Configuration Copyright November 8, 2005 Funkwerk Enterprise Communications GmbH Version 0.9

Configuring and Managing Token Ring Switches Using Cisco s Network Management Products

Enable Connectivity for 3PAR Storage:

UTM - VPN: Configuring a Site to Site VPN Policy using Main Mode (Static IP address on both sites) i...

[D-View 7 Advanced Hands-On Practice] Version 1.0

Focused Vendor Module Avaya Aura Communication Manager (ACM)

NNMi120 Network Node Manager i Software 9.x Essentials

Enterprise Cloud Manager

Nokia Siemens Network NetAct For Juniper. Mobile Broadband Ethernet and IP Assurance

Network Monitoring Comparison

DLB Outdoor Wireless Device COPYRIGHT 2015 LIGOWAVE

HP TippingPoint Security Management System User Guide

Network Configuration Manager

Basic Network Configuration

Fault Management In MPLS Networks

WHITE PAPER September CA Nimsoft For Network Monitoring

Nortel VPN Router Software Release V8_05.100

School of Information Technology and Engineering (SITE) CEG 4395: Computer Network Management

Configuration Guide. How to Configure SSL VPN Features in DSR Series. Overview

DC70 NETWORK MANAGEMENT JUN 2015

orrelog Ping Monitor Adapter Software Users Manual

2012/02/10: Re-formatted and revised document 2012/01/05: Added figures and notes 2011/11/08: Initial release

VPN Tracker for Mac OS X

Huawei esight Brief Product Brochure

Report of Independent Auditors

The DANTE NOC Network Monitoring System

Cisco Unified Communications Remote Management Services

Cisco Certified Network Associate Exam. Operation of IP Data Networks. LAN Switching Technologies. IP addressing (IPv4 / IPv6)

Details. Some details on the core concepts:

PIX/ASA 7.x with Syslog Configuration Example

White Paper. The Ten Features Your Web Application Monitoring Software Must Have. Executive Summary

Out-of-Band Networking

Colibrí NetManager. Versatile Management Platform

CA Spectrum. Certification User Guide. Release 9.4

SNMP Monitoring: One Critical Component to Network Management

How To Use Mindarray For Business

SonicOS 5.9 / / 6.2 Log Events Reference Guide with Enhanced Logging

Whitepaper Continuous Availability Suite: Neverfail Solution Architecture

Intrusion Detection Systems (IDS)

Managing Serial Devices in a Networked Environment

8/26/2007. Network Monitor Analysis Preformed for Home National Bank. Paul F Bergetz

Seminar Seite 1 von 10

Assignment One. ITN534 Network Management. Title: Report on an Integrated Network Management Product (Solar winds 2001 Engineer s Edition)

VPN Quick Configuration Guide. Astaro Security Gateway V8

MIMIC Simulator helps testing of Business Service Management Products

SonicOS Enhanced Release Notes

Success Factors in APM Adoption

Chapter 8 Router and Network Management

Configuring SSH Sentinel VPN client and D-Link DFL-500 Firewall

EventSentry Overview. Part I About This Guide 1. Part II Overview 2. Part III Installation & Deployment 4. Part IV Monitoring Architecture 13

Network Management, MIBs and MPLS

QoS VPN Router.

Kaseya Fundamentals Workshop DAY THREE. Developed by Kaseya University. Powered by IT Scholars

Description: Objective: Upon completing this course, the learner will be able to meet these overall objectives:

RUGGEDCOM NMS. Monitor Availability Quick detection of network failures at the port and

Configuration Example

Quick Note 20. Configuring a GRE tunnel over an IPSec tunnel and using BGP to propagate routing information. (GRE over IPSec with BGP)

Network provider filter lab

DNA-M. Multi-layer Service and Network Management Tool for Packet-Optical Networks MANAGEMENT SYSTEM FOR XTM SERIES AND XTG SERIES

IRENE. Intelligence between POS terminal and authorization system. Gateway. Increased security, availability and transparency.

Transcription:

T H E P O W E R O F B U I L D I N G A N D M A N A G I N G N E T W O R K S by ERAMON AG Welserstraße 11 86368 Gersthofen Germany Tel. +49-821-2498-200 Fax +49-821-2498-299 info@eramon.de

Contents 1 Introduction... 3 2 ERAMON Event Processing (EEP)... 3 2.1 Traps... 3 2.2 Syslog... 6 2.3 Correlation... 6 2.4 Announcements... 9 3 More Functions... 12 2

1 Introduction The operation of a network management system requires a number of functions to support the network administrators. This involves SNMP trap or syslog processing as much as an intelligent event correlation. One example to illustrate this: A component on a WAN router with 20 connected lines fails. In this scenario, systems without event correlation would report the component s failure plus 20 line faults (and the same again once operations resume. ERAMON would only report the failure of that particular component, in such an event. In this way the window showing the reported network statuses will remain clear and uncluttered. It is however possible to display the affected components also in this table. These kinds of functions can be very helpful in more complex network structures. Integral components in are, among others: 2 ERAMON Event Processing (EEP) The central event recipients are the SATs, which contain the necessary capabilities to receive these events. They will then send the relevant alerts to the CENTER, from where all events are processed and prepared so they can be viewed. ERAMON distinguishes between the following event types, according to the type or the event to be announced: SNMP Traps SNMP Port Status IP Polling Syslog Program Messages Ping Groups EPM ERA Health 2.1 Traps Traps are received via these ERAMON SATs. They are stored in ERAMON within the trap settings. It is here where all traps already specified and delivered with ERAMON are listed and categorized; while ERAMON is completely independent of any manufacturer. 3

4

The following screenshot shows the different setting options for traps: 5

2.2 Syslog Syslog messages are received by ERAMON s SATs and then transmitted to the CENTER. Only known syslogs are listed and processed (entry in syslog management) in the Event Tool. Within syslog management you specify which syslogs are processed in the event tool. For this purpose regular expressions can be set up and the event priorities specified. Syslogs with the same event source are correlated! Syslog messages that are not included will be listed in Unknown Syslog Messages. Syslogs of devices not registered with ERAMON will be listed in Unknown Host IP. 2.3 Correlation 2.3.1 Standard Correlation Within ERAMON we understand correlation as pooling of related event in the event tool. Their relationship was established and at times assessed through various methods (RCA). The advantages are varied: Improved clarity by pooling; Relationships are made immediately evident; Targeted announcements Simplified error analysis It is also possible to adjust the correlation to individual requirements. You yourself can decide which events are to be correlated and the weighting of the individual events. 6

2.3.2 Passive The passive correlation is applied when event occurs several times over. Where an event would be generated in the event tool at its first occurrence, this would no longer be required for identical subsequent events. In this case the number of how often that particular event occurred would simply be increased accordingly. 2.3.3 Normal regular correlation is the same as the standard ERAMON correlation. Logically related events are pooled and displayed in a more compact way. The following three criteria are crucial for the correlation: Device ID Port ID Event Source You can adjust the event source in a number of places in ERAMON, for example in the trap settings or syslog management menu; any of the various events can be correlated. Below is an example of the configuration of a LinkDown as a syslog and trap. 7

For both entries the event source: interfacealarmlinkdown is used, this correlates the trap and syslog messages. The corresponding event would look as follows: It is now possible to clear such an event (consisting of a trap and syslog message) with one single Clear message. 2.3.4 Sub-Interfaces Since physical ports can also have logical ones, which would obviously also be affected should the physical one fail, it is only sensible to correlate these events. The events of the sub-interfaces are therefore correlated with the events of the physical ports. 2.3.5 Expanded Correlation 2.3.5.1 Transfer Points Once ERAMON has recognized a remote station via a transfer point (/30), the relevant events are correlated with the ones of the remote station. 2.3.5.2 Port Channels This correlation represents an expansion of the transfer point correlation. A port channel consists of two or more physical ports as well as a logical (virtual) channel port. If an individual physical port goes down, this behavior would be equivalent to the normal correlation. If, however, the second physical port then goes down (and thus the virtual tunnel), this would result in all events being correlated. In this event, the root event would be failure of the channel port. In addition to this, the transfer network correlation correlates all events of the remote stations physical as well as logical interfaces. 2.3.5.3 BGP and OSPF Neighborhoods Here, the corresponding port is identified from the original source event (e.g. BGP Session Down ). A failure is then generated for this one and the events from the remote station correlated with it. 8

2.3.6 Correlation via the Network Topologie Within ERAMON this correlation is defined as a collation of events based on very diverse connection data (CDP, L3, ). As soon as an entire device goes down, the system checks if remote stations went down as well so, an entire device or one or several ports. If that is the case, these events are then correlated. If, for example, a core switch goes down and the connection to the entire network behind this breaks down, you would want to know if the reason for the network failure is the core switch. The events of the failed network component would then be correlated within the events of the core switch. Another example would be the failure of an individual port and as a result a failure of the devices connected to it. Since the connected devices are not the cause of this, they are only of secondary relevance; the failure of the port would therefore be considered the root/cause event and all remaining events correlated to it. 2.4 Announcements Announcements enable automatic actions for the announcement of certain events in ERAMON to be set up. The announcement settings contain specifications when, based on an event, which action should be performed. Allowing the use of many different parameters: Filter Event Text, Event Priority Device/Port/Location Groups Customers, Locations, Queues Time Period Action E-mail The address is in the next field, several recipients are separated by a semi-colon. Bulk E-Mail Announcements are collected until they are then sent in one batch by e-mail. Script A script is carried out. Trap A trap is sent. New Ticket A new ticket is created in ERAMON s Ticket System 9

10

11

3 More Functions ERAMON s has a number of other functions available. A list of just a few of them is below: Shift Planning Scheduled Maintenance Tasks Scheduled maintenance can be recorded that can also then be included in any subsequent SLA calculation. The alerted events during this time period are automatically assigned to the maintenance and are not actively announced. IP-based availability polling IP Services Monitoring 12

Polling Scripts Enables you to save any number of PERL scripts, which could, for example, be used to carry out specific pollings on a device and then issue the corresponding output value. Firmware management and Firmware upgrade tool Administration of Router and Switch Configurations Route Table Trace One-Click Login with multi-layered user permissions and automatic logins onto devices ERAMON is the registered trademark of ERAMON GmbH. 13

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information