23 -Network Management23 Network ManagementNetwork Management9-1Chapter 9Chapter 9Network ManagementgC mp t N t kin : A note on the use of these ppt slides:We’re making these slides freely available to all (faculty, students, readers). Computer Networking: A Top Down Approach Featuring the Internet, 3rdedition. gy(y )They’re in PowerPoint form so you can add, modify, and delete slides (including this one) and slide content to suit your needs. They obviously represent a lot of work on our part. In return for use, we only ask the following: If you use these slides (e.g., in a class) in substantially unaltered form, th t ti th i ( ft ll ’d lik l t b k!)Jim Kurose, Keith RossAddison-Wesley, July 2004. that you mention their source (after all, we’d like people to use our book!) If you post any slides in substantially unaltered form on a www site, that you note that they are adapted from (or perhaps identical to) our slides, and note our copyright of this material.Thanks and enjoy! JFK/KWRNetwork Management9-2Thanks and enjoy! JFK/KWRAll material copyright 1996-2004J.F Kurose and K.W. Ross, All Rights ReservedChapter 9: Network Managementp9 gmChapter goals:it d ti t t k tintroduction to network management motivationmajor componentsmajor components Internet network management framework MIB: management information basemgm fm SMI: data definition language SNMP: protocol for network management security and administration presentation services: ASN.1Network Management9-3What is network management?What s network management? autonomous systems (aka “network”): 100s or 1000s y( )of interacting hardware/software components other complex systems requiring monitoring, control:jet airplane nuclear power plantothers?others?"Network management includes the deployment, integration and coordination of the hardware software and human and coordination of the hardware, software, and human elements to monitor, test, poll, configure, analyze, evaluate, and control the network and element resources to meet the real-time, operational performance, and Quality of Service Network Management9-4realtime, operational performance, and Quality of Service requirements at a reasonable cost."ISO’s five areas of network tmanagementPerformance managementPerformance management Quantify , measure, report, analyze, and control performance Fault management Log, detect, and respond to fault conditions in th t kthe network. Configuration managementAll t k t t k hi h Allows a network manager to track which devices are on the managed network and the hardware and software configurations of these gdevicesNetwork Management9-5ISO’s five areas of network tmanagementAccounting managementAccounting management Allows the network manager to specify, log, and control user and device access to network resources. Security management Ctl t t k di Control access to network resources according to some well-defined policyNetwork Management9-6Infrastructure for network managementgdefinitions:agentdatamanaged devicemanagingentitydatamanaged devicescontainmanaged objectswhose managing entityagentdatamanaged deviceynetworkmanagementmanaged objectswhose data is gathered into aManagement InformationBase (MIB)agentdatamanaged devicemanagementprotocolagentdatamanaged devicemanaged deviceNetwork Management9-7gNetwork Management standardsgmOSI CMIP SNMP: Simple Network  Common Management Information ProtocolpManagement Protocol started simple designed 1980’s: theunifying net management standard deployed, adopted rapidly growth: size, complexitycurrently: SNMP V3management standard too slowly standardizedcurrently: SNMP V3de factonetwork management standardgNetwork Management9-8SNMP overview: 4 key partsSNMP overv ew 4 key partsManagement information base (MIB):Management information base (MIB) distributed information store of network management data Structure of Management Information (SMI): data definition language for MIB objects SNMP protocol convey manager<->managed object info, commands security, administration capabilities major addition in SNMPv3Network Management9-9SMI: data definition languageSMI data def n t on languagePurpose: syntax, semantics of d llBasic Data Typesmanagement data well-defined, unambiguousbase data types: INTEGERInteger32U i d32base data types:  straightforward OBJECT-TYPEUnsigned32OCTET STRINGOBJECT IDENTIFIED data type, status, semantics of managed objectIPaddressCounter32Counter64object MODULE-IDENTITYgroups related objects Counter64Gauge32Time TicksONetwork Management9-10groups related objects into MIB moduleOpaqueSNMP MIBSNMP MIBMIB module specified via SMI MODULEIDENTITYMODULE-IDENTITY(100 standardized MIBs, more vendor-specific)OBJECT TYPE:OBJECT TYPE:MODULEOBJECT TYPE:OBJECT TYPE:objects specified via SMIOBJECT-TYPE constructNetwork Management9-11SMI: Object, module examplesSMI Object, module examplesOBJECT-TYPE: ipInDeliversMODULE-IDENTITY: ipMIBppipInDelivers OBJECT TYPESYNTAX Counter32ipMIB MODULE-IDENTITYLAST-UPDATED “941101000Z”ORGANZATION“IETF SNPv2SYNTAX Counter32MAX-ACCESS read-onlySTATUS currentDESCRIPTIONORGANZATION IETF SNPv2Working Group”CONTACT-INFO“ Keith McCloghrieDESCRIPTION“The total number of input datagrams successfully delivered to IP user-……”DESCRIPTION“The MIB module for managing IPand ICMP implementations butprotocols (including ICMP)”::= { ip 9}and ICMP implementations, butexcluding their management ofIP routes.”REVISION “019331000Z”Network Management9-12………::= {mib-2 48}SNMP NamingSNMP Nam ngquestion:how to name every possible standard object ( t l d t m ) i ssibl t k (protocol, data, more..) in every possible network standard??answer:ISO Object Identifier tree:answer:ISO Object Identifier tree: hierarchical naming of all objects each branchpoint has name, numberp,1.3.6.1.2.1.7.1ISOISO-ident. Org.US DoDudpInDatagramsUDPMIB2Network Management9-13US DoDInternetMIB2managementOSI OSI ObjectIdentifier Identifier TreeNetwork Management9-14MIB example: UDP modulemp D mObject ID Name Type Comments1.3.6.1.2.1.7.1 UDPInDatagrams Counter32 total # UDP datagramsdelivered at this node1.3.6.1.2.1.7.2 UDPNoPorts Counter32 # underliverable datagramsno app at port1.3.6.1.2.1.7.3 UDPInErrors Counter32 #