© 2011 Cisco and/or its affiliates. All rights reserved. 1 High Performance Network Analysis Enterprise Operate Practice Cisco Services Andrew Wojtkowiak.

Slides:



Advertisements
Similar presentations
NETWORK TRANSFORMATION THROUGH VIRTUALIZATION
Advertisements

Top-Down Network Design Chapter Nine Developing Network Management Strategies Copyright 2010 Cisco Press & Priscilla Oppenheimer.
Chapter 1: Introduction to Scaling Networks
Chapter 3: Planning a Network Upgrade
Antonio González Torres
Introducing Campus Networks
Cisco Hierarchical Network Model RD-CSY /101.
Module 5 - Switches CCNA 3 version 3.0 Cabrillo College.
Multi-Layer Switching Layers 1, 2, and 3. Cisco Hierarchical Model Access Layer –Workgroup –Access layer aggregation and L3/L4 services Distribution Layer.
Network Management Overview IACT 918 July 2004 Gene Awyzio SITACS University of Wollongong.
Ch.6 - Switches CCNA 3 version 3.0.
Brian Bradley.  Data is any type of stored digital information.  Security is about the protection of assets.  Prevention: measures taken to protect.
Understanding Network Failures in Data Centers: Measurement, Analysis and Implications Phillipa Gill University of Toronto Navendu Jain & Nachiappan Nagappan.
Performance Management (Best Practices) REF: Document ID
Copyright Microsoft Corp Ramnish Singh IT Advisor Microsoft Corporation Secure Remote Access Challenges, Choices, Best Practices.
© 2009 Cisco Systems, Inc. All rights reserved. SWITCH v1.0—5-1 Implementing a Highly Available Network Understanding High Availability.
1 © 2006 Cisco Systems, Inc. All rights reserved. Session Number Presentation_ID Using the Cisco Technical Support & Documentation Website for LAN Issues.
Chapter 1: Hierarchical Network Design
© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Exploring the Enterprise Network Infrastructure Introducing Routing and Switching.
Characterizing the Existing Internetwork PART 1
ITEC224 Database Programming
Top-Down Network Design Chapter Nine Developing Network Management Strategies Oppenheimer.
© 2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Confidential. For Channel Partners only. Do not distribute. C
Auditing Information Systems (AIS)
The University of Bolton School of Games Computing & Creative Technologies LCT2516 Network Architecture CCNA Exploration LAN Switching and Wireless Chapter.
LAN Switching and Wireless – Chapter 1
LAN Switching and Wireless – Chapter 1 Vilina Hutter, Instructor
Intro to Network Design
© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Introducing Network Design Concepts Designing and Supporting Computer Networks.
Hierarchical Network Design – a Review 1 RD-CSY3021.
1 Session Number Presentation_ID © 2001, Cisco Systems, Inc. All rights reserved. Using the Cisco TAC Web Site for LAN Switching Issues Cisco TAC Web Seminar.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 1: Introduction to Scaling Networks Scaling Networks.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco PublicITE I Chapter 6 1 Exploring the Enterprise Network Infrastructure Introducing Routing and Switching.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 1: Introduction to Scaling Networks Scaling Networks.
Cisco 3 - Switch Perrine. J Page 111/6/2015 Chapter 5 At which layer of the 3-layer design component would users with common interests be grouped? 1.Access.
Based on work by DoIT Network Services, UW-Madison The Network and the Role of Tools January 6, 2006 Ron Kraemer, Deputy CIO.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco PublicITE I Chapter 6 1 Exploring the Enterprise Network Infrastructure Introducing Routing and Switching.
1 © 2003, Cisco Systems, Inc. All rights reserved. CCNP 1 v3.0 Module 1 Overview of Scalable Internetworks.
Switch Features Most enterprise-capable switches have a number of features that make the switch attractive for large organizations. The following is a.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco PublicITE I Chapter 6 1 Introducing Network Design Concepts Designing and Supporting Computer Networks.
1 Root-Cause VoIP Troubleshooting Optimizing the Process Tim Titus CTO, PathSolutions.
IT Priorities Minimize CAPEX Maximize employee productivity Grow the business Add new compute resources real- time to support growth Meet compliance requirements.
Hierarchical Topology Design. 2 Topology Design Topology is a map of an___________ that indicates network segments, interconnection points, and user communities.
Rob Davidson, Partner Technology Specialist Microsoft Management Servers: Using management to stay secure.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public ITE PC v4.0 Chapter 1 1 Help Desk Working at a Small-to-Medium Business or ISP – Chapter 2.
Advanced Computer Networks Lecturer: E EE Eng. Ahmed Hemaid Office: I 114.
© 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Course v6 Chapter # 1 Chapter 2: Troubleshooting Processes for Complex Enterprise.
INNOVATE THROUGH MOTIVATION MSP Services Overview KEVIN KIRKPATRICK – OWNER, MSP INC LOGO.
NETWORK DEVICES RONALD SHERGA OCTOBER 13, 2015 LTEC 4550.
Network Consulting Customer NDA Deck September 2014.
IS3220 Information Technology Infrastructure Security
PART1: NETWORK COMPONENTS AND TRANSMISSION MEDIUM Wired and Wireless network management 1.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public ITE PC v4.0 Chapter 1 1 Planning a Network Upgrade Working at a Small-to-Medium Business or.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco PublicITE I Chapter 6 1 Creating the Network Design Designing and Supporting Computer Networks – Chapter.
© 2003, Cisco Systems, Inc. All rights reserved. 2-1 Campus Network Design.
Cisco Study Guide
Slide title :40-47pt Slide subtitle :26-30pt Color::white Corporate Font : FrutigerNext LT Medium Font to be used by customers and partners : Arial HUAWEI.

Instructor Materials Chapter 1: LAN Design
Instructor Materials Chapter 8: Network Troubleshooting
Critical Security Controls
Campus Communications Fabric
Connecting LANs, Backbone Networks
Valid 2018 Cisco Exam Dumps Questions Braindumps DumpsProfessor
Unit 27: Network Operating Systems
Module 5 - Switches CCNA 3 version 3.0.
Based on work by DoIT Network Services, UW-Madison
Customer NDA Deck September 2014
Types of topology. Bus topology Bus topology is a network type in which every computer and network device is connected to single cable. When it has exactly.
Scrumium NetBrain Thursday, May 09, 2019.
Presentation transcript:

© 2011 Cisco and/or its affiliates. All rights reserved. 1 High Performance Network Analysis Enterprise Operate Practice Cisco Services Andrew Wojtkowiak – Network Consulting Engineer High Performance Network Analysis

© 2011 Cisco and/or its affiliates. All rights reserved. 2 Background Cisco Services performed an assessment of the wired infrastructure to serve as a holistic health check of the University Corporation of Atmospheric Research network Goal of the assessment To identify immediate remediation needs Provide Opportunities for network improvement

© 2011 Cisco and/or its affiliates. All rights reserved. 3 High Level Findings Strengths and Concerns Background And Key Areas Assessed Executive Level Findings Encompassing Projects Remediation Steps Looking Forward

© 2011 Cisco and/or its affiliates. All rights reserved. 4 The High Performance Network Analysis (HPNA) was performed to assure the stability of the core routing and switching infrastructure Performed as a holistic network health check Emphasis placed on Availability and Resiliency with the Campus environments On-site interviews and data collection Analyzed ~80 devices as part of the HPNA Collected detailed network data such as topology diagrams, software, network standards, protocols, etc…

© 2011 Cisco and/or its affiliates. All rights reserved. 5 Network Topology Protocol Resiliency Network Service Resiliency Hardware and Software

© 2011 Cisco and/or its affiliates. All rights reserved. 6

7 Dedicated and professional network staff Everyone we worked with was very open, professional and accommodating Excellent Hardware and Software replacement strategies Hardware and Software is kept up to date and staff is knowledgeable of bugs and vulnerabilities Change Management Process Well documented and followed change management process Individualized tools for Network Management Tools for deployments, configurations, backups, and management

© 2011 Cisco and/or its affiliates. All rights reserved. 8 Single Points of Failure Increased risk of a pervasive network incident; scalability and availability concerns Process Documentation Lack of formal process to follow. No repeatable steps that all team members can use. Global Configuration Templates Templates will help reduce configuration inconsistencies and ensure services are configured according to policy Configuration Inconsistencies Increased time to repair due to troubleshooting overhead; decreased network security; compliance risk

© 2011 Cisco and/or its affiliates. All rights reserved. 9 A few single points of failure TCOM switch for internet connectivity Foothills Lab secondary switch NWSC second switch Major risk with TCOM Higher latency backup Foothills under construction, second switch in move NWSC secondary switch is being considered Foothills and NWSC would limit connectivity from those locations to the rest of the network.

© 2011 Cisco and/or its affiliates. All rights reserved. 10

© 2011 Cisco and/or its affiliates. All rights reserved. 11 Processes are well defined by the individuals who perform the tasks Software and Hardware replacement Standards for implementing new devices No actual defined documentation Only certain people are well versed in processes Not easily reproducible No defined steps for changes Allocate time to turn processes into documentation Allocate someone to review the documents Keep them up to date as they change.

© 2011 Cisco and/or its affiliates. All rights reserved. 12 All CatOS has reached End of SW Maintenance, and will no longer receive attention with regards to defect or security vulnerability patching

© 2011 Cisco and/or its affiliates. All rights reserved. 13 Configuration standards are adhoc; without formal documentation No way to perform configuration compliance to a template* Number of configuration inconsistencies and errors (Protocol, Service, Security) Network unpredictability Potential increased troubleshooting overhead and operational difficulty Prolonged loss of connectivity and service interruption to critical applications Increased exposure to security vulnerabilities Increased cost associated with operating the network

© 2011 Cisco and/or its affiliates. All rights reserved. 14 HSRP inconsistencies Partially configured advanced spanning tree features Optimize/Standardize Spanning-tree priorities OSPF passive interface Some routers do not have a peer Possible loops or rouge switches influencing the network Routing updates are not limited Implement changes to the network to remediate the smaller configuration inconsistencies The standard templates will assist in ensuring fewer deviations from standard.

© 2010 Cisco and/or its affiliates. All rights reserved. 15

© 2011 Cisco and/or its affiliates. All rights reserved. 16 Three buildings connected in a partial mesh topology Collapsed connections to each other Port density growth at N*(N-1) rate for every new building Lack of modularity and scalability Large fault domains across all buildings Network disruption and outages Increased troubleshooting overhead Quantifiable cost increase in both capital and operational expenditure Additional Capital Expenditure associated with running fiber Nx(N-1) = 12 Ports (6 Links) Cost to Add 4 th Building Additional Operational Expenditure associated with design complexity

© 2011 Cisco and/or its affiliates. All rights reserved. 17 Current Topology - No Core Fully-meshed distribution layers Physical cabling requirement Routing complexity

© 2011 Cisco and/or its affiliates. All rights reserved. 18 This leading practice hierarchical design has been proven to:  Promote easy growth and ease of troubleshooting  Reduce capital and operational expenditure  Create small fault domains  Promote deterministic traffic flows  Enable logical and physical topology mapping Center Green Dedicated WAN / Internet Switch Block Mesa Lab Foothills New Location TCOM/FRGPResearch Networks Firewalls Internet Dedicated Core

© 2011 Cisco and/or its affiliates. All rights reserved. 19 Monitoring facing the Internet Intrusion Prevention SPAN Sessions to security team Extensive ACLs on core switches No Control Plane Policing to protect devices Limited methods to log and account for network incidents Increased CPU usage on switches Create method to evaluate internal ACLs routinely Consider Control Plane Policing for basic router/switch services Routing Switching

© 2011 Cisco and/or its affiliates. All rights reserved. 20 Correlating business impact (risk reduction) to ease of execution and exemplar implementation time Project List: 1) Remediate single points of failure 2) Create, utilize and maintain global configuration standard templates 3) Create, utilize and maintain process documentation 4) Remediate configuration inconsistencies within the network More complex to implement Low priority 0-6 months 9months > year Easy to implement High priority 1 Must Do – Reduce Risk Very Hard Quick Wins – High Business Impact Easy But Low Return 2 3 4

© 2011 Cisco and/or its affiliates. All rights reserved. 21

Thank you.

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.