11F NET4009 Ch1 Planning Ma Int

Planning Maintenance Ch 1
bitDegree.ca
11F NET4009 CCNP TSHOOT Chapter 1 Planning Maintenance

David Bray brayd@algonquincollege.com
with contributions obtained from Rick Graziani & Cisco
bitDegree.ca
Chapter Roadmap
Applying Maintenance Maintenance Processes and Network Maintenance Methodologies Procedures Tools, Applications and Resources Maintenance Models Network Task Identification and Methodologies Network Maintenance Fundamental Tools, Applications and Determining Planning Resources Procedures and Scheduling maintenance CLI, debug, GUI, Tools for Formalizing Change-Control Backup Servers, Log Maintenance Models Procedures
Establishing Network Documentation Procedures Establishing Effective Communication Defining Standardization Planning for Disaster Recovery
Servers, Time Servers
Network Monitoring and Performance Measurement
Configuration and Documentation Tools Logging Services Network Monitoring and Performance Measurement Tools Implementing Backup and Restore Disaster Recovery Tools
2
11F NET4009
2011, David Bray, Algonquin College, Rick Graziani, Cisco Systems, Inc. All rights reserved.
Copyright 2011, Algonquin College, Rick Graziani, Cisco Systems, Inc. All rights reserved. 11F NET4009 David Bray
bitDegree.ca
Without these processes and tools
Network engineers can get into trouble.
11F NET4009
bitDegree.ca
Radia Perlman
Before solving the problem, know the problem you are trying to
solve.
11F NET4009
bitDegree.ca
Planning Maintenance for Complex Networks
Configuration and implementation is sexy Planning and documenting not so much.

11F NET4009
bitDegree.ca
Maintenance Models and Methodologies Determining Procedures and Tools for Maintenance Models
Applying Maintenance Methodologies

11F NET4009
bitDegree.ca
Applying Maintenance Methodologies
Support and maintenance

Objective: Keep the network available with minimum service disruption and at acceptable performance levels. Solution: Structured network maintenance
11F NET4009
bitDegree.ca
Maintenance Models and Methodologies
A network engineers jjob d t k i b description i l d th i ti includes these t k tasks:

11F NET4009
Device installation and maintenance Failure response Network performance Business procedures Security
bitDegree.ca
Interrupt Driven
In many smaller networks, the process is largely interrupt driven. User has a problem Application performance problems Security incidents are reported Disadvantage Other tasks beneficial to the long-term health of the network may be delayed or not done. Tasks get done in the order requested instead of priority or urgency. May result in more network downtime in the long run. Cant avoid interrupt driven work entirely because of failures. Can reduce them by proactively monitoring and managing the network.
11F NET4009
bitDegree.ca
Structured Network Maintenance
Alternative to interrupt-driven is structured network maintenance. Advantages Reduced Network Downtime: Discover problems before they happen More cost effectiveness: Adequate budget for networking needs and choosing proper equipment. Better alignment with business objectives: Upgrades and major maintenance jobs are not scheduled during critical business hours. Higher network security: Observe network vulnerabilities and needs and plan for strengthening network security.
11F NET4009
10
bitDegree.ca
Structured Network Methodologies
Several well-known methodologies:

IT Infrastructure Library (ITIL) FCAPS - ISO (Fault management, Configuration management, Accounting management, Performance Management, and Security Management) Telecommunications Management Network (TMN) - ITU-T Cisco Lifecycle Services
11F NET4009
11
bitDegree.ca
Maintenance Tasks and Planning Network Monitoring and Performance
Maintenance Processes and Procedures

11F NET4009
bitDegree.ca
Maintenance Processes and Procedures

Backup and Recovery
Network engineers need to do the following:

Identify essential network maintenance tasks Recognize the advantages of scheduled maintenance Evaluate the key decision factors that affect change control procedures Describe the essential elements of network documentation Plan for disaster recovery Describe the importance of network monitoring and performance measurement
11F NET4009
13
bitDegree.ca
Network Maintenance Task Identification
Network maintenance plans need to include procedures for:

Accommodating Adds, Moves, and Changes Installation and configuration of new devices Replacement of failed devices Backup of device configurations and software Troubleshooting link and device failures Software upgrading or patching Network monitoring Performance measurement and capacity planning Writing and updating documentation
11F NET4009
14
bitDegree.ca
Network Maintenance Planning
Scheduling Maintenance
Interrupt driven or part of maintenance cycle
Having a schedule g g guarantees that these tasks will be done

regularly and will not get lost in the busy day-to-day work schedule.
Change requests need not be handled immediately, but during the next scheduled timeframe. Allows you to properly prioritize tasks Tasks that are disruptive to the network are scheduled to be performed during off-hours.
11F NET4009
15
bitDegree.ca
Formalizing Change-Control Procedures
Any change you make has an associated risk due to possible

mistakes, conflicts, or bugs.
Determine the impact of the change on the network Balance this against the urgency of the change
High-impact changes are usually made during maintenance

windows that are specifically scheduled for this purpose.
11F NET4009
16
bitDegree.ca
Formalizing Change-Control Procedures

Which types of change require authorization? Which changes have to be done during a maintenance window and
which changes can be done immediately? What kind of preparation needs to be done before executing a change? What kind of verification needs to be done to confirm that the change was effective? What documentation or communications need to be taken after a successful change? What actions should be taken when a change has unexpected g p results or causes problems?
11F NET4009
17
bitDegree.ca
Establishing Network Documentation Procedures
Network drawings: Physical and logical structure Connection documentation: Patches, connections to providers, and power circuits Equipment lists: All devices, part numbers, serial numbers, installed software versions, software licenses, warranty/service information IP address administration: IP subnets scheme and all IP addresses Configurations: All current device configurations and archives Design documentation: Including the Why? underlying design decisions.
11F NET4009
18
bitDegree.ca
Establishing Effective Communications
Network maintenance is typically a job that is performed by a team Communications is key

Who is making changes and when? g g How does the change affect others? What are the results of tests that were done and what conclusions can be drawn? (Er tests are being done, right?)
One team member can be disruptive to the process handled by another

team member
11F NET4009
19
bitDegree.ca
Standardization
Important that the tasks are performed consistently:

Are logging and debug timestamps set to local time or Coordinated Universal Ti U i l Time (UTC)? Should access lists end with explicit "deny any"? In an IP subnet, is the first or the last valid IP address allocated to the local gateway?
Different methods can lead to confusion, especially during

troubleshooting.
11F NET4009
20
bitDegree.ca
Planning for Disaster Recovery
Always consider the p y possibility of device failure. y Build redundancy into the network at critical points to eliminate
single points of failure.
Due to budgetary limitations, it is not always possible to make every single link, component, and device redundant.
Account for natural disasters: flood or fire in the server room

11F NET4009
21
bitDegree.ca
Planning for Disaster Recovery
To replace a failed device: Replacement hardware The current software version for the device The current configuration for the device The tools to transfer the software and configuration to the device Licenses (if applicable) Knowledge of the procedures to install software, configurations and licenses Impact on the network of introducing the new/recovered device?
11F NET4009
22
Planning Maintenance Ch 1 Network Monitoring and Performance Measurement

bitDegree.ca
Helps you transform your network maintenance process to a less

interrupt-driven, more methodical approach
I Important to choose the variables to be monitored and measured: t tt h th i bl t b it d d d

interface status interface load CPU load memory usage
23
More sophisticated metrics include delay, jitter, and packet loss

11F NET4009
bitDegree.ca
Configuration, Documentation, Logging Monitoring, Backup, Recovery
Maintenance Tools Applications and Resources

11F NET4009
bitDegree.ca
Network Maintenance Tools, Applications and Resources
Choose the tools, applications and resources for doing network

maintenance in an efficient manner.
Commands Software Servers
we will examine Some of these now briefly, providing more detail

later. Others, will be covered in later chapters.
11F NET4009
25
bitDegree.ca
Basic components of a network maintenance toolkit
The basic components of a network maintenance toolkit are:

CLI device management

11F NET4009
show commands debug commands Embedded Event Manager (EEM) IP SLA commands
26
bitDegree.ca
The basic components of a network maintenance toolkit are: p

Graphical User Interface (GUI) based device management (free)

11F NET4009
Cisco Configuration Professional (CCP) Secure Device Manager (SDM) Cisco Configuration Assistant (CCA) Cisco Network Assistant CiscoWorks (not so free)
27
bitDegree.ca

Backup server
TFTP FTP HTTP/HTTPS Secure Copy Protocol (SCP)
11F NET4009
28
bitDegree.ca

Log server
Syslog
11F NET4009
29
bitDegree.ca

Time server
Network Time Protocol (NTP)
11F NET4009
30
bitDegree.ca
Brief look at NTP
It is vital that the clocks within all

network devices are properly set and synchronized.
Ensures correct timestamps on logging and debug output.
Stratum 1 server: a server that is directly connected to an

authoritative time source such as a radio or atomic clock ( www.worldtimeserver.com/atomic-clock ). Stratum 2 server: A server that synchronizes its clock to a stratum 1 server. and so on for Stratum 3 servers, etc. Examples of publicly usable NTP servers: time.nrc.ca, ntp1.dlink.com
11F NET4009
31
Brief Look at NTP
Configuring NTP section of the Cisco IOS network bitDegree.ca management configuration guide: http://www.cisco.com/en/US/docs/ios/netmgmt/configuration/gui de/nm_basic_sys_manage_ps6350_TSD_Products_Configurati on_Guide_Chapter.html#wp1001170
Uses the ntp server command Clock is synchronized to a single timeserver with IP address 10.1.220.3. Time zone is Pacific Standard Time (PST), -8 hour offset to Universal Time Coordinated (UTC). Change to daylight savings time on the 2nd Sunday in March at 2:00 am Change back to standard time on the first Sunday in November at 2:00 am. System logging is configured to use the local date and time in the time stamps and to include the time zone in the time stamp. For log entries generated by debugs, the settings are similar, but milliseconds are included in the timestamps for greater accuracy.
11F NET4009
32
bitDegree.ca
Configuration and Documentation Tools
Many web-based (online) maintenance tools and resources can be

helpful during the planning and implementation of network maintenance procedures. i t d Configuration and Documentation Tools

11F NET4009
Dynamic Configuration Tool Cisco Feature Navigator SNMP Object Navigator Cisco Power Calculator
33
bitDegree.ca
Dynamic Configuration Tool: This tool aids you in creating

hardware configurations. It verifies compatibility of the hardware and software you select, and it gives you a complete Bill of Materials (BoM) that lists all the necessary part numbers. https://apps.cisco.com/qtc/config/html/configureHomeGuest.html
11F NET4009
34
bitDegree.ca
Cisco Feature Navigator: This tool allows you to quickly find the
right Cisco IOS software release for the functions and features you require on your network. http://tools.cisco.com/ITDIT/CFN/
11F NET4009
35
bitDegree.ca
SNMP Object Navigator: The Simple Network Management

Protocol (SNMP) Navigator translates SNMP Object Identifiers ( ( ) g j (OID) ) into object names. This tool also allows you to download SNMP Management Information Base (MIB) files and to verify the supported MIBs in a particular Cisco IOS Software version. http://tools.cisco.com/Support/SNMP/do/BrowseOID.do?local=en
11F NET4009
36
bitDegree.ca
Cisco Power Calculator: This tool calculates the power supply

requirements for a particular Power over Ethernet (PoE) hardware configuration. Requires you to login with a Cisco CCO account.
11F NET4009
37
bitDegree.ca
Documentation tools: Wiki: A wiki combines easy web-based access with intuitive editing
capabilities, with multi-user access as required.
11F NET4009
38
bitDegree.ca
Documentation
Issue tracking system: A.k.a. trouble ticket, support ticket, or

incident ticket system.
Allows issues to be:
Logged, tracked, and documented.
Better communications and escalation of incidents. Allows a team of people to work on the same incidents in an efficient manner. Can build a historical database of problems, their treatments, and the resolutions.
11F NET4009
39
bitDegree.ca
Logging Services
Events on networking devices can be logged. Various event types Various levels of severity Events are logged to: Console (default) Console display Buffer Server Examples Interfaces up or down Configuration changes Changes in routing protocol adjacencies
11F NET4009
40
bitDegree.ca
Logging Services
Logging severity levels on Cisco Systems devices are as follows: (0) Emergencies (1) Alerts (2) Critical (3) Errors (4) Warnings (5) Notifications (6) Informational (7) Debugging By default, all messages from level 0 to 7 are logged to the console.
11F NET4009
41
bitDegree.ca
Logging Services
Console You can also adjust the logging severity level of the console. By default, all messages from level 0 to 7 are logged to the console; You can configure the severity level as an optional parameter: logging console level Limits the logging of messages displayed on the console terminal to those at the specified level and (numerically) lower. You can enter the level number or level name.
11F NET4009
42
bitDegree.ca
Logging Services
Buffer logging buffered [buffer-size | level] May or may not be the default By default, messages of all severity levels are logged to buffer. show logging [history] displays the content of the buffer The buffer is circular, meaning that when the buffer has reached its maximum capacity, the oldest messages will be discarded to allow the logging of new messages.
11F NET4009
43
bitDegree.ca
Logging Services
Server logging ip-address command For some IOS versions it is logging host By default, only messages of severity level 6 or lower will be logged to the syslog server. This can be changed by entering the logging trap level command.
11F NET4009
44
Planning Maintenance Ch 1 Network Monitoring and Performance Measurement Tools

bitDegree.ca
GUI- and CLI-based device management tools are used to examine individual devices after the problem is noticed. A Network Monitoring system continuously checks your network devices devices availability and status: Detect possible problems as soon as they occur Sometimes before they even become apparent to end users Uses protocols such as SNMP and ICMP Cisco IOS Netflow can be leveraged to monitor devices and traffic Gray area between network monitoring and performance measurement
11F NET4009
45
Motivations for measuring network performance
bitDegree.ca
The three main motivations for measuring network performance are as follows: Capacity planning: Create a baseline of network traffic Recognize trends in traffic growth Predict when you need to upgrade links before congestion and performance problems occur bl Diagnosing performance problems: difficult to troubleshoot because hard to quantify and often intermittent in nature. Application X has really been slow lately. What is causing the problem? Where is it occurring? SLA compliance: Guaranteeing a level of service to others through an SLA or certain level of service by a provider; need to have a method to measure.
11F NET4009
46
bitDegree.ca
Measuring network performance
Typical statistics gathered include: Packet and byte counters on interfaces Device CPU and memory utilization Round Trip Time ( p (RTT) ) Jitter Packet loss Analyzed or graphed using products such as: Cisco Internetwork Performance Monitor (IPM) - part of CiscoWorks LAN Management Solution Multi Router Traffic Grapher (MRTG)
11F NET4009
47
Implementing Backup and Restore Services
bitDegree.ca
Essential element of any network maintenance toolkit Simplest and most commonly implemented service is TFTP
No configuration on network devices
More secure protocols such as FTP, SCP, and HTTP or HTTPS

For all of these protocols, the credentials can be specified as part of the Uniform Resource Locator (URL) that is used with the copy command.
11F NET4009
48
bitDegree.ca
Copy command
copy [/erase] source-url destination-url Copy the startup-configuration to the FTP server at 10.1.152.1 Create a file named RO1-test.cfg username backup and p p password san-fran The username and password are specified by placing the username and password as username:password@ before the server name or IP address in the URL. For SCP, HTTP and HTTPS you would use a similar syntax, replacing the URL prefix ftp:// with scp://, http:// or https:// /erase option is used to erase the destination file system prior to copying
11F NET4009
49
bitDegree.ca
Copy command
Specifying the username and password on the command line is

somewhat cumbersome and exposes the password in clear text on the screen. username and password can be specified in the configuration Note: Type of encryption to use on the password. A value of 0 disables encryption. A value of 7 indicates proprietary encryption.
11F NET4009
50
bitDegree.ca
Archive command
Configuration Replace and Configuration Rollback A feature for the creation of configuration archives, introduced in Cisco IOS Software Release 12.3(7)T. The only mandatory parameter is the base file path. Local or network path Optional variables: $h for the devices hostname in the filename $t to include a time and date stamp in the filename write-memory option - Triggers an archive copy of the running configuration to be created any time the running configuration is copied to NVRAM. time-period minutes option - Each time the time period elapses, a copy of the running configuration will be archived.
11F NET4009
51
bitDegree.ca
Archive command
Router# archive config
archive config Manually saves a copy of the current running configuration to the Cisco IOS configuration archive
11F NET4009
52
bitDegree.ca
Archive command
11F NET4009
53
bitDegree.ca
Configure Replace
configure replace target-url [list] [force] [time seconds] [nolock] target url
configure replace - Allows you to replace the currently running configuration on the router with a saved configuration. Compares the running configuration with the configuration file Creates a list of differences Set of Cisco IOS configuration commands are generated that changes the existing running configuration to the replacement configuration.
11F NET4009
54
bitDegree.ca
Disaster Recovery Tools
Successful disaster recovery is dependent on existence of the following: Up to date configuration backups Up to date software backups Up to date hardware inventories Configuration and software provisioning tools As part of the fundamental network maintenance toolkit, TFTP, FTP, SCP, HTTP and HTTPS servers are useful for storing backups of the configuration and operating system image of a router or switch.
11F NET4009
55

11F NET4009 Ch1 Planning Ma Int

Uploaded by

Document Information

Original Description:

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

11F NET4009 Ch1 Planning Ma Int

Uploaded by

Copyright:

Available Formats

Planning Maintenance Ch 1

11F NET4009 CCNP TSHOOT Chapter 1 Planning Maintenance

Servers, Time Servers

Network Monitoring and Performance Measurement

Without these processes and tools

Network engineers can get into trouble.

Planning Maintenance for Complex Networks

Configuration and implementation is sexy Planning and documenting not so much.

Applying Maintenance Methodologies

Applying Maintenance Methodologies

Support and maintenance

Maintenance Models and Methodologies

A network engineers jjob d t k i b description i l d th i ti includes these t k tasks:

Structured Network Maintenance

Structured Network Methodologies

Several well-known methodologies:

Maintenance Tasks and Planning Network Monitoring and Performance

Maintenance Processes and Procedures

Maintenance Processes and Procedures

Network engineers need to do the following:

Network Maintenance Task Identification

Network maintenance plans need to include procedures for:

Network Maintenance Planning

Having a schedule g g guarantees that these tasks will be done

Formalizing Change-Control Procedures

Any change you make has an associated risk due to possible

High-impact changes are usually made during maintenance

Formalizing Change-Control Procedures

Establishing Network Documentation Procedures

Establishing Effective Communications

Network maintenance is typically a job that is performed by a team Communications is key

One team member can be disruptive to the process handled by another

Important that the tasks are performed consistently:

Different methods can lead to confusion, especially during

Planning for Disaster Recovery

Account for natural disasters: flood or fire in the server room

Planning for Disaster Recovery

Planning Maintenance Ch 1 Network Monitoring and Performance Measurement

Helps you transform your network maintenance process to a less

I Important to choose the variables to be monitored and measured: t tt h th i bl t b it d d d

More sophisticated metrics include delay, jitter, and packet loss

Configuration, Documentation, Logging Monitoring, Backup, Recovery

Maintenance Tools Applications and Resources

Network Maintenance Tools, Applications and Resources

Choose the tools, applications and resources for doing network

we will examine Some of these now briefly, providing more detail

Basic components of a network maintenance toolkit

The basic components of a network maintenance toolkit are:

Basic components of a network maintenance toolkit

The basic components of a network maintenance toolkit are: p

Basic components of a network maintenance toolkit

The basic components of a network maintenance toolkit are:

Basic components of a network maintenance toolkit

The basic components of a network maintenance toolkit are:

Basic components of a network maintenance toolkit

The basic components of a network maintenance toolkit are:

Brief look at NTP

It is vital that the clocks within all

Stratum 1 server: a server that is directly connected to an

Brief Look at NTP

Configuration and Documentation Tools

Many web-based (online) maintenance tools and resources can be

Configuration and Documentation Tools