Kommunikatsiooniteenuste arendus IRT 0080 Loeng 6 Avo Ots

Kommunikatsiooniteenuste arendus IRT 0080 Loeng 6 Avo Ots telekommunikatsiooni õppetool, TTÜ raadio- ja sidetehnika inst. avo. ots@ttu. ee 1

Teenusetase (SLA) 2

Teenused ja nõuded Video Interactive cable Visual Voice Packet Videophone Videoconference Image Data HDTV FAX Medical imaging PDAs E-mail Telemetry POTS WANs Computer-computer Voice messaging Narrowband (copper)< 64 kb/s Circuit Wideband(copper/fiber) 64 kb/s to 1. 5 Mb/s Broadband (fiber) > 45 Mb/s

Telecommunications Market End-Users Content and Service Providers Service operators/ Telecommunications Networking Solutions Physical Telecommunication Network 4

Võrguhaldus Network Management Organisatsiooni Infovoogude Mudel Kommunikatsiooni Mudel Funktsiooni Mudel 5

Võrguhalduse ülesanded • Fault management - veahaldus – monitor networking devices and generate an alert when something goes wrong • Configuration management - konfiguratsiooni haldus – changes, additions and deletions of the configuration of the managed devices • Accounting management - kasutajate haldus – monitoring and recording network component usage - for traffic analysis and billing • Performance management - jõudluse haldus – gathering and analyzing data from network components to monitor current performance and plan for current needs and future growth • Security management - turvalisuse haldus 6

Võrguhalduse jaotus -Identify secure data monitor/maintain AP security -Standard based configuration -Auto-discovery ensured -Archiving and config recovery -Tracks server utilization by class of user -Proactive detection -Problem isolation & resolution -Dispatch 24 X 7 mgmt -Bandwidth control unit (Qo. S) -Analysis: utilization, availability, throughput, trending and response time - Addressing & documenting SLA 7

Monitooring • Iga arvuti võtab vastu talle adresseeritud pakette • Monitooringu tarkvara kasutav arvuti jälgib kõiki võrgus liikuvaid pakette 8

Võrgusisene haldus 9

Võrguväline haldus 10

Haldusmudel Device Manager (2) Device Manager (NMS) SNMP Data store Agent Network Device Agent NVRAM Network Device Non-Volatile Random Access Memory Data store Agent NVRAM Network Device NVRAM 11

Eeldused võrguhalduseks • võrgus liikuvat infot saab kasutada selle haldamiseks • Lisaks kasutatakse haldustäiendustega võrguseadmeid: – haldusagendid, haldustarkvara • Võrguhaldusstandard on SNMP (Simple Network Management Protocol) – SNMPv 1, SNMPv 2, SNMPv 3 (RFC) 12

SNMP over UDP SNMP uses User Datagram Protocol (UDP) as the transport mechanism for SNMP messages Ethernet Frame Ethernet Packet IP Packet UDP Datagram SNMP Message CRC 13

Võrkude diagnostika analüsaator 2 Intelligent State correlation/ filtering topology access 4 1 problem trap küsitlus network 3 täpsustav küsitlus 14

Simple Network Management Protocol • SNMP is a framework that provides facilities for managing and monitoring network resources on the Internet. • Components of SNMP: – – SNMP agents SNMP managers Management Information Bases (MIBs) SNMP protocol itself 15

SNMP • Interactions in SNMP 16

SNMP 17

Üldstruktuur Haldussüsteem Network management system (NMS) Management entity Haldusprotokoll Võrguühendus Agent Proxy Management database Hallatavad seadmed 18

Haldusinfobaas MIB (Management Information Base) • baas on kõikidel haldussüsteemi komponentidel • haldusinfo objekti aadressi moodustab numbrite järjestus – näiteks snmp. Dot 3 Rpt. Mgmt objektide grupi aadress on 1. 3. 6. 1. 22 • SNMP päringutes kasutataksegi neid objektide aadresse 19

MIB - 1 20

Haldusandmete kogumine • Haldusjaam küsitleb agente – teatud ajavahemike järel, kas hostide teenuste pordid töötavad • Haldusagent hoiatab haldusjaama tõrke korral – kui võrgu koormus hakkab teatud piiri ületama 21

SNMP põhikäsud 22

Haldusturvalisus MANAGER AGENT MIB Haldustarkvara Juurdepääsu haldus Turvaline side GET / GET-NEXT / GETBULK SET / TRAP / INFORM Transpordikiht 23

Arvutivõrk haldustarkvaras • Võrgu kaart (network map) – Tavaliselt hostid ikoonidena ja kaablid nende vahel joontena – Hosti ikooni värvus näitab hosti tegelikku seisundit võrgus – Võrgu kaardid koostatakse automaatselt, käsu peale või käsitsi 24

Kaugmonitooring RMON • Töötab iseseisvalt • Proaktiivne monitooring – võrgusegmendi tõrke korral on monitoris võimalik teada saada tõrke eelset seisu MANAGER RMON WAN 25

Juurdepääsupunktide seisund 26

Haldustulemused “Warning: HSRP Router down. Standby now active…” 27

SNMP Versions • Three versions are in use today: – SNMPv 1 (1990) – SNMPv 2 c (1996) • Adds “Get. Bulk” function and some new types • Adds RMON (remote monitoring) capability – SNMPv 3 (2002) • SNMPv 3 started from SNMPv 1 (and not SNMPv 2 c) • Addresses security • All versions are still used today • Many SNMP agents and managers support all three versions of the protocol. 28

Võrgukomponendid Cabling Arvutid LAN Serverid seadmed 1 2 3 4 5 6 7 8 9 10 Kasutusperiood aastates 11 12 13 14 15 29

Veateadete töötlus CIO Vigade korrelaator eeltöötlus võrguhaldur Peaadmin GUI teenindus 30

What is AAA? Short for authentication, authorization and accounting, a system in IP-based networking to control what computer resources users have access to and to keep track of the activity of users over a network. ·Authentication is the process of identifying an individual, usually based on a username and password. Authentication is based on the idea that each individual user will have unique information that sets him or her apart from other users. ·Authorization is the process of granting or denying a user access to network resources once the user has been authenticated through the username and password. The amount of information and the amount of services the user has access to depend on the user's authorization level. ·Accounting is the process of keeping track of a user's activity while accessing the network resources, including the amount of time spent in the network, the services accessed while there and the amount of data transferred during the session. Accounting data is used for trend analysis, capacity planning, billing, auditing and cost allocation. AAA services often require a server that is dedicated to providing the three services. RADIUS is an example of an AAA service. Source: www. webopedia. com 31

Jõudluse tagamine 32

Dubleerimine 33

SNMP Protocol • SNMP manager and an SNMP agent communicate using the SNMP protocol – Generally: Manager sends queries and agent responds – Exception: Traps are initiated by agent. 34

SNMP Protocol • Get-request. Requests the values of one or more objects • Get-next-request. Requests the value of the next object, according to a lexicographical ordering of OIDs. • Set-request. A request to modify the value of one or more objects • Get-response. Sent by SNMP agent in response to a get-request, get-next-request, or set-request message. • Trap. An SNMP trap is a notification sent by an SNMP agent to an SNMP manager, which is triggered by certain events at the agent. 35

Traps • Traps are messages that asynchronously sent by an agent to a manager • Traps are triggered by an event • Defined traps include: – – – link. Down: Even that an interface went donw cold. Start - unexpected restart (i. e. , system crash) warm. Start - soft reboot link. Up - the opposite of link. Down (SNMP) Authentication. Failure … 36

Lingid http: //en. wikipedia. org/wiki/SNMP http: //en. wikipedia. org/wiki/Client_server http: //en. wikipedia. org/wiki/Application_server http: //en. wikipedia. org/wiki/Multi_Router_Traffic_Gra pher http: //www. cisco. com/univercd/cc/td/doc/cisintwk/ito_do c/xtocid 1 http: //www. dpstele. com/layers/l 2/snmp_tutorials. html http: //www 2. rad. com/networks/1995/snmp. htm http: //www. williamstallings. com 37