Operations Management and Open Source Tools

Similar documents
Operations Management Network Monitoring and Management

Network Management & Monitoring Overview

Network Management & Monitoring Overview

Summer Webinar Series Network Monitoring Probe Virtual Appliance

Network Monitoring. Review of Software

Introduction to Network Monitoring and Management

Network Monitoring and Management Introduction to Networking Monitoring and Management

Network Management & Monitoring Overview

Network Monitoring. Lance Rea. Davis & Gilbert LLP lrea@dglaw.com

Part I: Overview. Core concepts presented:

Advanced Linux System Administration Knowledge GNU/LINUX Requirements

Workflow Templates Library

Bandwidth Management and Optimization System Design (draft)

Network Security Policy: Best Practices White Paper

By Jascha Wanger

Network monitoring systems & tools

Getting started. Symantec AntiVirus Corporate Edition 8.1 for Workstations and Network Servers

Network Monitoring. Sebastian Büttrich, NSRC / IT University of Copenhagen Last edit: February 2012, ICTP Trieste

Tk20 Network Infrastructure

Netezza PureData System Administration Course

Password Management Guide

MeritPresentationHandout

Planning and Administering Windows Server 2008 Servers

The 7 th International Scientific Conference DEFENSE RESOURCES MANAGEMENT IN THE 21st CENTURY Braşov, November 15 th 2012

Network Documentation & Netdot

Robust & Reliable DNS Operations Logging & Monitoring

Data Sheet: Server Management Altiris Server Management Suite 7.0 Essential server management: Discover, provision, manage, and monitor

Delegated Administration Quick Start

RANCID and CVS. PacNOG 6 Nadi, Fiji

ACL Compliance Director FAQ

Configuration Audit & Control

MANAGED SERVICES. Remote Monitoring. Contact US: millenniuminc.com

FUNCTIONAL OVERVIEW

by New Media Solutions 37 Walnut Street Wellesley, MA p f Avitage IT Infrastructure Security Document

McAfee Network Security Platform Administration Course

8/26/2007. Network Monitor Analysis Preformed for Home National Bank. Paul F Bergetz

BlackBerry Enterprise Service 10. Universal Device Service Version: Administration Guide

Tue Apr 19 11:03:19 PDT 2005 by Andrew Gristina thanks to Luca Deri and the ntop team

Service Accounts A Secant Standards White Paper

Is your mainframe less secure than your file server? Malcolm Trigg Solutions Consultant 24 th February 2016

TPAf KTl Pen source. System Monitoring. Zenoss Core 3.x Network and

Created By: 2009 Windows Server Security Best Practices Committee. Revised By: 2014 Windows Server Security Best Practices Committee

Advanced Administration

Hitachi Backup Services Manager Certified Configurations Guide 6.5

A SURVEY ON AUTOMATED SERVER MONITORING

RES ONE Automation 2015 Task Overview

Data Sheet: Archiving Altiris Server Management Suite 7.0 from Symantec Essential server management: Discover, provision, manage, and monitor

VoipSwitch Security Audit

Configuring and Troubleshooting Internet Information Services in Windows Server 2008

Details. Some details on the core concepts:

Using LDAP Authentication in a PowerCenter Domain

IPv6 network management

Novell Identity Manager

Division of IT Security Best Practices for Database Management Systems

OnCommand Unified Manager

Windows 7, Enterprise Desktop Support Technician

SECURITY BEST PRACTICES FOR CISCO PERSONAL ASSISTANT (1.4X)

Unlimited Server 24/7/365 Support

Planning and Administering Windows Server 2008 Servers

Introduction to Network Monitoring and Management

NNMi120 Network Node Manager i Software 9.x Essentials

CNE Network Assessment

WHITE PAPER: HIGH CUSTOMIZE AVAILABILITY AND DISASTER RECOVERY

Windows 7, Enterprise Desktop Support Technician Course 50331: 5 days; Instructor-led

Security. AAA Identity Management. Premdeep Banga, CCIE # Cisco Press. Vivek Santuka, CCIE # Brandon J. Carroll, CCIE #23837

PowerPanel Business Edition USER MANUAL

Planning and Administering Windows Server 2008 Servers

PCISS-1. Job Description: Key Responsibilities: I. Perform troubleshooting& support:

INFORMATION TECHNOLOGY MANAGER Salary Range: 22 (Management Salary Schedule)

Network Security. Mike Trice, Network Engineer Richard Trice, Systems Specialist Alabama Supercomputer Authority

Network Monitoring and Management Introduction to Networking Monitoring and Management

DEPLOYMENT GUIDE Version 1.0. Deploying the BIG-IP LTM with the Nagios Open Source Network Monitoring System

Configuring the Palo Alto Firewall for use with Juniper Steel-Belted RADIUS.

Loveurope Online Operating Platform (LOOP)

AfNOG 2010 Network Monitoring and Management Tutorial. Introduction to Networking Monitoring and Management

Samba in the Enterprise : Samba 3.0 and beyond

PacketTrap One Resource for Managed Services

NetIQ Identity Manager

Information Technology Security Procedures

Monitoring Cisco IOS Firewall Inspection Activity with Multi- Router Traffic Grapher (MRTG)

Introduction. Connection security

Table Of Contents. - Microsoft Windows - WINDOWS XP - IMPLEMENTING & SUPPORTING MICROSOFT WINDOWS XP PROFESSIONAL...10

How To Contact Netiq (For Business)

MOC 6419: Configuring, Managing, and Maintaining Windows Server 2008

CAPITAL UNIVERSITY PASSWORD POLICY

"Charting the Course to Your Success!" MOC D Windows 7 Enterprise Desktop Support Technician Course Summary

Administering Microsoft Exchange Server ; 5 Days, Instructor-led

IT INFRASTRUCTURE MANAGEMENT SERVICE ADDING POWER TO YOUR NETWORKS

User Management Guide

Quest InTrust. Version 8.0. What's New. Active Directory Exchange Windows

ManageEngine Password Manager Pro Vs Thycotic Secret Server

Cisco Unified CM Disaster Recovery System

DIGIPASS Authentication for Windows Logon Product Guide 1.1

Transcription:

Operations Management and Open Source Tools Jeremiah Jackson - jjackson@mcnc.org Gonzalo Guzman gonz@mcnc.org

FCAPS WHAT IS FCAPS? n Framework for managing telecommunication and network resources. n Developed by the ISO when similar management needs were noticed between the OSI and SMO models. FCAPS is: Fault Detection Configuration Accounting Performance Security 2

FCAPS Fault Management Goal of Fault Management: Recognize, isolate, correct and log faults that occur. Components: n Fault Detection: Ability to recognize a error when it occurs n Notification: Ability to notify when fault occurs. n Trending: Setting up a series of baselines of normal operation. n Logging: Keep track of faults for future review n Response: Either human or automated 3

FCAPS Fault Management Solutions: n Nagios - http://www.nagios.org/ n OpenNMS - http://www.opennms.org/ n NMIS - http://www.sins.com.au/nmis/ n WhatsUpGold - http://www.whatsupgold.com/ n Vendor Specific Switch Programs: HP Procurve Manager CiscoWorks, etc. n NetCrunch - http://www.adremsoft.com/netcrunch/ n HP OpenView / EMC Smarts / IBM Tivoli 4

FCAPS Fault Management Nagios - www.nagios.org Pros: Open Source Polls actual services for response. (HTTP, SMTP, etc) Flexible Addons for specialized testing Good Trending data and Uptime Statistics Cons: Configuration is done via text files. Linux only 5

FCAPS Configuration Management Goal of Configuration Management: Establish and maintain consistency of performance by controlling changes, and documenting configurations throughout the life cycle of an information system. Components: n Gather: Collect configurations on a scheduled basis. n Store: Store those configurations for backup purposes n Track: Monitor and report changes to configurations. n Automate: Ability to make mass changes with limited user input. 6

FCAPS Configuration Management Solutions: n Rancid - http://www.shrubbery.net/rancid/ Really Awesome New Cisco config Differ Utilizes CVS to maintain a database of configuration changes. Configurations can be generated for any date in time since the device was first added to Rancid. Linux based command-line only product. n NetCanner - http://bangj.com n Vendor Specific Switch Programs: HP Procurve Manager CiscoWorks, etc. 7

FCAPS Configuration Management NetCannery Pros: Graphical Front End Troubleshooting tools such as: IP address analyzer Finds devices with unsaved changes Ability to create custom reports Cons: Graphical Front End requires MacOS Sometimes has difficulty logging into older devices. Retail Product, fee based 8

FCAPS Accounting What is the goal of Accounting management? To gather usage statistics for users and use those statistics, to bill users and enforce usage quotas. For non-billed networks, "administration" replaces "accounting". To administer a set of resources in such a way as to provide availability and accessibility to authorized users. 9 8/27/12

FCAPS Accounting Components: n Managing Accounts, passwords and permissions. n Auditing system logs. n Performing backups of critical data. 10 8/27/12

FCAPS Accounting n LDAP Managing Accounts, passwords and permissions. Microsoft Active Directory Novell edirectory OpenLDAP n TACACS CiscoACS n RADIUS Steelbelted Radius FreeRadius n Diameter 11 8/27/12

FCAPS Accounting Password Guidelines n length should be a minimum of 7 characters n should contain a mix of lower-case, upper-case, numeric and punctuation n names, birthdays, holidays should be prohibited n words from any language should be prohibited n expire every 30-90 days n Remembered the last 6 passwords n lock out accounts after 3-5 failed attempts 12 8/27/12

FCAPS Accounting Password Guidelines n Educate your users on using Mnemonic to remember complex passwords n 3vi1hax0r n 2$3cur34u n ow&up@k12 13 8/27/12

FCAPS Accounting Basic Auditing in Windows Auditing system logs n Enable auditing in Local Security Settings >Audit Policy or use a Group policy n Failed logon attempts can be found in the Security log Basic Auditing in *nix n Is enabled by default n Look for failed logon attempts 14 8/27/12

FCAPS Accounting Performing backups of critical data n Microsoft System Center Data Protection Manager n Symantec Backup Exec and Veritas Netbackup n Windows backup and restore n Amanda (www.zamanda.com) 15 8/27/12

FCAPS Accounting Windows backup and restore Pros: Free Easy to use Bare metal restore capable (ASR) Cons: Windows only Reliance on legacy technology 16 8/27/12

FCAPS Accounting Amanda Pros: Freeware Clients for most OS Easy to setup Cons: Server is Linux only CLI intensive 17 8/27/12

FCAPS Performance Management Goal of Performance Management: Prepare the network for the future by monitoring current network trends, utilization, error rates, and response times. Components: n Data Collection Store performance information for retrieval. n Visualization Turn data into images for quick comprehension. n Trend Analysis Monitor data over time to recognize patterns. n Summarization Consolidate data in larger time blocks. 18

FCAPS Performance Management Types of Performance Measurement: n Performance Measurement Cacti, PRTG, MRTG, Smokeping, n Forensics Analysis Wireshark, NTOP, Netstumbler, TCPDump n Load Generation Iperf, D-ITG, Internet 2 NDT 19

FCAPS Performance Management Cacti - http://www.cacti.net/ n Open Source Visualization Tool n Monitors all types of statistics from SNMP or custom scripts. n Web Based administration / viewing n Module support for scripts to handle additional types of monitoring. n Based on RRDTool. n Automatically summarizes data as time goes on. 20

FCAPS Performance Management WireShark - http://www.wireshark.org/ n Forensic Analysis of data on a network. n Determine network issues like retransmissions. n Statistics feature can playback IM sessions, and VoIP calls. n Open Source 21

FCAPS Security What is the goal of Security management? n The process of controlling access to assets in the network 22 8/27/12

FCAPS Security Components: n Policies and Procedures n Physical security n Firewalls n Anti-virus, Trojan and Malware protection 23 8/27/12

FCAPS Security Policies and Procedures: n "Acceptable Use Policy" and "Network Connection Policy. n Procedure for requesting security changes. n These documents should be very straightforward, easy to understand. 24 8/27/12

FCAPS Security Physical Security: n Servers should be kept in temperature and humidity controlled, locked rooms with keyboards and monitors hidden from plain sight if possible. n Access to these rooms should be limited to key personnel. n Don't forget a good chemical fire extinguisher. 25 8/27/12

FCAPS Security Firewalls: n Host firewalls Windows firewall Iptables n Network firewall Cisco ASA/Pix Fortigate Sonicwall Juniper Netscreen Iptables 26 8/27/12

FCAPS Security Anti-virus, Trojan and Malware Protection/Removal: n Trendmicro AV (www.antivirus.com) n Symantec AV (www.symantec.com) n ClamAV (www.clamav.net) n Malwarebytes (http://www.malwarebytes.org) n Spybot- S&D (http://www.safer-networking.org/en) n HijackThis (http://www.download.com/trend-micro-hijackthis/ 3000-8022_4-10227353.html) 27 8/27/12

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information