Gebruiksaanwijzing /service van het product 3.5 van de fabrikant Cisco Systems
Ga naar pagina of 180
Cisco Active Network Abstraction Administrator’s Guide, 3.5 Corporate Headquarters Cisco System s, Inc. 170 West Tasman Drive San Jose, CA 95134-17 06 USA http://www.
THE SPECIFICATIONS AND INFORMATION REGARDING THE PRO DUCTS IN THIS MANUAL ARE SUBJ ECT TO CHANGE WITHOUT NOTICE. ALL STATEMENTS, INFORMATION, AND RECOMMENDATI ONS IN THIS MANUAL ARE BELIEVED TO BE ACCURATE BUT ARE PRESENTED WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED.
Important Notice Cisco Systems, Inc. Page iii Important Notice Cisco ANA 3.5 is a carrier-class, multi-vendor network and service management platform which builds a r eal-time virtual m odel of the network, serving as a live information base for value-added tools a nd applications for integration into an existing OSS environment.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page iv Cisco Systems, Inc. The Product Documentation DVD is a co mprehensive library of technical product documentation on portable medi a.
Important Notice Cisco Systems, Inc. Page v Cisco Product Security Overview Cisco provides a free online Security Vulnerability Policy portal at th is URL: http://www.cisco.com/en/US/products/p roducts_security_vulnerability_policy.h tml From this site, you can perform these tasks: • Report security vulnerabi lities in Cisco products.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page vi Cisco Systems, Inc . Never use a revoked or an expired encr yption key. The correct public key to use in your correspondence with PSIRT is the one linked in the Contact Summary section of the Security Vuln erability Policy page at this URL: http://www.
Important Notice Cisco Systems, Inc. Page vii Submitting a Service Request Using the online TAC Service Request Tool is the fastest way to open S3 and S4 service requests. (S3 and S4 serv ice requests are those in which your network is minimally impaired or for which you require product information.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page viii Cisco Systems, Inc. Obtaining Additional Publications and Information Information about Cisco products, tec hnologies, and network solutions is available from various on line and printed sources.
Important Notice Cisco Systems, Inc. Page ix Internet Protocol Journal is a quarter ly journal published by Cisco Systems for engineering professionals invo lved in designing, developing, and operating public and private in ternets and intranets. You can access the Internet Protocol Journal at this URL: http://www.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page x Cisco Systems, Inc..
About This Guide Cisco Systems, Inc. Page xi About This Guide This Administrator’s Guide describes the structure and features of the Sheer™ Dynamic Network Abstracti on (DNA) system. Sheer DNA Manage is the GUI client application designe d to simplify and facilitate Sheer DNA administration.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page xii Cisco Systems, Inc. Chapter 10, Managing Sheer DNA Security , page 135, describes how Sheer DNA implements a three-dimensi onal security engine com bining a role-based security mechanism with sc opes that are granted to users.
Introducing Sheer DNA Cisco Systems, Inc. Page xiii Table of Contents 1 Introducing Sheer DNA .................................................................. 1 1.1 The Sheer Solution .................................................................
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page xiv Cisco Systems, Inc. 4 General DNA Manage Tables ....................................................... 61 4.1 Working w ith DNA Manage Tables ....................................
Introducing Sheer DNA Cisco Systems, Inc. Page xv 7 Managing Global Settings .......................................................... 107 7.1 Managing Clie nt Licenses .................................................................................
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page xvi Cisco Systems, Inc. 10.5 Granting or Editing a User’s Rights ................................................................... 146 10.5.1 General User’s Rights..............
Introducing Sheer DNA Cisco Systems, Inc. Page 1 1 Introducing Sheer DNA About this chapter: This chapter describes the Sheer™ Dynamic Network Abstraction (DNA) platform and architecture. In addition, it provides a brief explanation of the terms used throughout this guide.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 2 Cisco Systems, Inc. Sheer DNA provides solutions for di verse network environments and applications. It of f ers an integrated network and servic e auto-discovery for network modeling, intelligent fault anal ysis and a highly flexible network configuration and activation engine .
Introducing Sheer DNA Cisco Systems, Inc. Page 3 • OSS/BSS (Vertical) Integration: open, flexible northbound adaptation framework to OSS/BSS application s, in a wide variety of APIs, protocols and i.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 4 Cisco Systems, Inc. 1.2 Sheer DNA Components The Sheer DNA system is comprised of several key components, as described in the sections that follow.
Introducing Sheer DNA Cisco Systems, Inc. Page 5 Another important function of the Sh eer DNA Gateway is to map network resources to the business context. This enables Sheer DNA to contain information that is not directly contai ned in the network (such as VPNs and Subscribers) and display it to northbound applications.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 6 Cisco Systems, Inc. • Sheer DNA Manage: A system administration an d configuration tool for managing the entire Sheer DNA platform, as described below. • Sheer Registry Editor: A tool used for view ing and configuring the Sheer Registry.
Introducing Sheer DNA Cisco Systems, Inc. Page 7 1.4 Additional Concepts and Terms The sections below include additional c oncepts and terms used in the Sheer DNA Manage application and throughout this guide. AVM The Sheer DNA Units are divided into AVMs (Autonomous Virtual Machines).
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 8 Cisco Systems, Inc. License Sheer DNA Client applications and BQ L connectivity is based on installed license files.
Introducing Sheer DNA Cisco Systems, Inc. Page 9 Protection Group A Protection Group is a cluster to whic h Units and Standby Units are related. In case of Unit failover then the Redunda nt Unit will be taken from the same Protection Group. Redundant Unit The Sheer DNA Unit comes with built-in redundancy for maximum up time and automatic switching.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 10 Cisco Systems, Inc. Scopes A scope is a named collection of managed Network Elem ents that have been grouped together in order to allow a user to view and/or manage the Network Elements provided a given role.
Introducing Sheer DNA Cisco Systems, Inc. Page 11 Workflow A workflow consists of several task s grouped together and arranged in a flowchart. All workflows are stored on the Sheer DNA Gateway. After a workflow is deployed, it is accessible using Sheer DNA Manage in order to view properties and status .
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 12 Cisco Systems, Inc. Examples use the following conventions: Convention Description screen Examples of information displayed on the screen are set in Courier New font. Boldface screen Examples of text that the user must enter are set in Courier New bold font.
Getting Started with Sheer DNA Manage Cisco Systems, Inc. Page 13 2 Getting Started with Sheer DNA Manage About this chapter: This chapter describes the Sheer DNA Manage working environment and how to access Sheer DNA Manage tools and commands.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 14 Cisco Systems, Inc. To start Sheer DNA Manage 1. From the Start menu, select the Programs folder, then Sheer DNA/Sheer DNA Manage . The Sheer DNA Manage - Login dialog box is displayed.
Getting Started with Sheer DNA Manage Cisco Systems, Inc. Page 15 2.2 The Sheer DNA Manage Window The Sheer DNA Manage window is displayed below. Menu bar Toolbar Tree pane Shortcut menu Status bar Workspace The Sheer DNA Manage window is divided into areas or panes, as follows: • The Tree pane, as described on page 15.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 16 Cisco Systems, Inc. Sheer DNA Manage enables the user to m anage and maintain inform ation in the Sheer DNA using the following b.
Getting Started with Sheer DNA Manage Cisco Systems, Inc. Page 17 • Users: Enables the administrator to de fine and manage user accounts. For more information about the Users branch, refer to page 49. • Workflow Engine: Enables the administrato r to m anage workflow templates and running workflows in runtime.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 18 Cisco Systems, Inc. 2.2.2 Sheer DNA Manage Window Workspace The Workspace is displayed on the right side of the Sheer DNA Manage window and enables the user to vi ew Sheer DNA Manage information according to the branch s elected in the Tree pane.
Getting Started with Sheer DNA Manage Cisco Systems, Inc. Page 19 Filter: Enables the user to define a filter on the information displayed in the table of the Workspace using the Filte r dialog box.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 20 Cisco Systems, Inc. • Users , page 49. • Workflow Engine , page 52. 2.3.1 DNA Servers Branch Sheer DNA Manage maintains a list of all of the DNA Servers defined in the system. The DNA Servers branch enables the user to add and remove DNA Unit Servers.
Getting Started with Sheer DNA Manage Cisco Systems, Inc. Page 21 For more information about DNA Server menu and toolbar options: • Menu options, refer to page 21.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 22 Cisco Systems, Inc. • Help menu, as described on page 22. • Tree Pane shortcut menu, as described on page 23. • Workspace shortcut menu, as described on page 23. File Menu – DNA Servers Branch The File menu is displayed below.
Getting Started with Sheer DNA Manage Cisco Systems, Inc. Page 23 Tree Pane Menu – DNA Servers Branch When the user right-clicks on the DNA Servers branch the following menu is displayed: New DNA Unit The user can add a new Sheer DNA Unit to the Sheer DNA Servers.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 24 Cisco Systems, Inc. Search for a Sheer DNA Unit/AVM/VNE amongst all the Sheer DNA Servers. When a Sheer DNA Unit is selected in the table of the Workspace the following tools are displayed in the toolbar: Creates a new AVM in the selected Sheer DNA Unit or Gateway.
Getting Started with Sheer DNA Manage Cisco Systems, Inc. Page 25 An example of the Sheer DNA Manage window when a DNA Servers Entity sub-branch is selected is displayed below. Each row in the table in the Workspace enables the user to view the statu s of an AVM.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 26 Cisco Systems, Inc. • Key: The key of the AVM, which is unique to the system. By default the key is displayed as “AVM + ID + timestamp”. For more information about DNA Server specific menu a nd toolbar options: • Menu options, refer to page 26.
Getting Started with Sheer DNA Manage Cisco Systems, Inc. Page 27 Tree Pane Shortcut Menu – DNA Server Entities Branch When the user right-clicks on the DNA Server Entities sub-bra nch in the Tree pane the following shortcut menu is displayed: New AVM Adds an AVM to the selected Sheer DNA Unit.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 28 Cisco Systems, Inc. Actions Enables the user to start or stop an AVM. Delete Deletes an AVM. Move AVM Move an entire AVM between DNA Units. Properties Displays the properties of the sele cted AVM and its status in the General tab of a dialog box.
Getting Started with Sheer DNA Manage Cisco Systems, Inc. Page 29 For more information on the DNA Servers Entity sub-branch, refer to Chapter 6, Managing AVMs and VNEs. 2.3.3 AVM Branch The AVM sub-branch enables the user to manage information relating to the VNEs in a selected AVM.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 30 Cisco Systems, Inc. The following columns are disp layed in the Workspace table: • Key: The unique key of the VNE. • IP Address: The IP address of the device as defined in Sheer DNA Manage.
Getting Started with Sheer DNA Manage Cisco Systems, Inc. Page 31 • Tree Pane shortcut menu, as described on page 31. • Workspace shortcut menu, as described on page 32. File Menu – AVM Branch The File menu is displayed below. New VNE Adds a VNE to the selected AVM.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 32 Cisco Systems, Inc. Delete Deletes an AVM from the Sheer DNA Server. Note: Reserved AVMs 0-100 cannot be deleted. Move AVM Move an entire AVM between DNA Units. For more information, refer to page 86.
Getting Started with Sheer DNA Manage Cisco Systems, Inc. Page 33 DNA Manage Toolbar – AVM Branch When the AVM sub-branch is selected in the Tree pane the following tools are displayed in the toolbar: Creates a new VNE in the selected AVM. Displays the properties of the selected AVM.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 34 Cisco Systems, Inc. Client Licenses The Client Licenses sub-branch enables cont rol and m onitoring of the number of Sheer DNA Client connecti ons over a limited or unlimited period of time as defined in terms of the client license.
Getting Started with Sheer DNA Manage Cisco Systems, Inc. Page 35 • Creation Date: The date when the license was implemented. • Client Type: The applications to which the us er is authorized to connect, namely, BQL and/or Sheer DNA Client applications.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 36 Cisco Systems, Inc. Tree Pane Menu – Client Licenses Branch Right clicking on the Client Licenses sub-branch displays the following menu: New License Install a new license.
Getting Started with Sheer DNA Manage Cisco Systems, Inc. Page 37 DB Segments Branch The DB segments branch in Sheer DNA Manage displays a table describing the storage allocated for all da taba se segments. An exam ple of the Sheer DNA Manage window when the DB Segments branch is selected is displayed below.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 38 Cisco Systems, Inc. Service Disclaimer Message of the Day The Message of the Day sub - branch enables the user to define a message (service disclaim er) that will be displaye d when a user logs in to the Shee r Client applications.
Getting Started with Sheer DNA Manage Cisco Systems, Inc. Page 39 Polling Groups The Polling Groups sub-branch enables the user to manage polling groups, by categorizing a group of devices to be polled according to pre-set intervals. The Polling Groups sub - branch is displayed below.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 40 Cisco Systems, Inc. File Menu – Polling Groups Branch The File menu is displayed below. New Polling Group Creates a new polling group. Properties Displays the properties of the selected polling group.
Getting Started with Sheer DNA Manage Cisco Systems, Inc. Page 41 Toolbar – Polling Groups Branch When the Polling Groups sub-branch is selected in the Tree pane the toolbar contains the following tools: Creates a new polling group. Displays the properties of the selected polling group.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 42 Cisco Systems, Inc. The Sheer DNA Manage window with the Protection Groups sub-branch selected is displayed below.
Getting Started with Sheer DNA Manage Cisco Systems, Inc. Page 43 File Menu – Protection Groups Branch The File menu is displayed below. New Protection Group Creates a new protection group. Properties Displays the properties of the selected protection group.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 44 Cisco Systems, Inc. Toolbar – Protection Groups Branch When the Protection Groups sub-branch is selected in the Tree pane the toolbar contains the following tools: Creates a new protection group.
Getting Started with Sheer DNA Manage Cisco Systems, Inc. Page 45 For more information about: • Menu options, refer to following section. • Toolbar, refer to page 46. Note: The menus and toolbar displayed in the Sheer DNA Manage window are context sensitive; the options va ry depending on your selection in the Tree pane and Workspace .
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 46 Cisco Systems, Inc. New Scope Creates a new scope. Workspace Shortcut Menu – Scopes Branch When the user right-clic ks in the tab le in the Workspace the following shortcut menu is displayed: Delete Deletes the selected scope.
Getting Started with Sheer DNA Manage Cisco Systems, Inc. Page 47 2.3.6 Topology Branch The Topology branch enables the user to de fine static links between the Network Elements in order to supplement or override existing auto- discovered topology. The Sheer DNA Manage window with the Topology branch selected is displayed below.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 48 Cisco Systems, Inc. File Menu – Topology Branch The File menu is displayed below. New Static Link Creates a new static link. Properties This option is unavailable. Exit Exits Sheer DNA Manage.
Getting Started with Sheer DNA Manage Cisco Systems, Inc. Page 49 Toolbar – Topology Branch The Topology branch contains the following tools: Opens the New Link dialog box enabling the user to create a link between two devices. For more information, refer to page 127.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 50 Cisco Systems, Inc. Note: The default permission only app lies at an application level, namely, all the activities that are re lated to GUI functionality, not the activities related to devices.
Getting Started with Sheer DNA Manage Cisco Systems, Inc. Page 51 Exit Exits Sheer DNA Manage. For more information, refer to page 56. Tree Pane Menu – Users Branch When the user right-clicks on the Users branch in the Tree pane the following menu is displayed: New User Creates a new user for th e current client station.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 52 Cisco Systems, Inc. 2.3.8 Workflow Engine Branch The Workflow Engine branch enables the user to manage workflow templates and running workflows in runtime.
Getting Started with Sheer DNA Manage Cisco Systems, Inc. Page 53 For more information about: • Menu options, refer to the following section. • Toolbar options, refer to page 54. Templates Menus This section provides a description of each option available in the menus when the Templates sub-branch is selected.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 54 Cisco Systems, Inc. Toolbar – Templates Branch When the Templates sub-branch is selected in the Tree pane the toolbar contains the following tools: Deletes the selected workflow tem plate.
Getting Started with Sheer DNA Manage Cisco Systems, Inc. Page 55 • Name: The name of the workflow, as defined using the Sheer Workflow Editor. • State: The current status of the workflow, namely, Ready , Running , Done , or Aborted . For more information about: • Menu options, refer to the following section.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 56 Cisco Systems, Inc. Abort/Rollback Aborts the workflow and performs rollb ack if the workflow is running, or if the workflow has already been completed it perf orms rollback. Delete Deletes the workflow from the database.
Deploying Sheer DNA Cisco Systems, Inc. Page 57 3 Deploying Sheer DNA About this chapter: This chapter describes the steps that must be performed to deploy Sheer DNA and provides cross-references to the rele vant sections in th is Administrator’s Guide.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 58 Cisco Systems, Inc. • How many protection groups there ar e going to be and how Sheer DNA Units are going to be grouped togeth .
Deploying Sheer DNA Cisco Systems, Inc. Page 59 Step 3: Customize protection groups: Enables the adm inistrator to chan ge the default setup of Sheer DNA Units by customizing protection groups (clusters) and then assigning Sheer DNA Units to these groups.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 60 Cisco Systems, Inc. 3.2 User and View Setup Flow The flow below describes the steps re quired to setup Sheer DNA users and the view using Sheer DNA Manage and the order in which they should be performed.
General DNA Ma nage Tables Cisco Systems, Inc. Page 61 4 General DNA Manage Tables About this chapter: This chapter describes how to perfor m general Sheer DNA Manage functions when working with table.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 62 Cisco Systems, Inc. • Export table information. • Finding specific information in DNA Manage tables You can also find specific DNA Manage information, such as DNA Units, AVM/VNE details using the toolbar button and ente ring cr iteria into the Find dialog box.
General DNA Ma nage Tables Cisco Systems, Inc. Page 63 4.2 Finding Text in a Table Sheer DNA Manage enables the user to search for information in the Workspace by entering the search criteria, for example, by entering a partial user name. Note: The tools displayed in the table are a generic component of Sheer DNA applications.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 64 Cisco Systems, Inc. The following dropdown lists are displayed in the Filter dialog box: • Field: Displays a dropdown list of all the columns displayed in the curre nt tabl e. • Operator: Displays a dropdown list of the values included in the filter operation.
General DNA Ma nage Tables Cisco Systems, Inc. Page 65 4.4 Setting Selection Filters The user can choose a line or specific set of lines, and display them in the table (all un-selected lines are hidd en). The user may make continuous multiple line selections, setting the ta ble content after each selection, u sing the Set Selection Filter button.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 66 Cisco Systems, Inc. 2. Click the button. Only the selected li ne(s) remain in the table. To undo the previous filter selection 1. Select one or several lines and filter them out using the appropriate table toolbar buttons.
General DNA Ma nage Tables Cisco Systems, Inc. Page 67 4.5 Sorting a Table The tables displayed in Sheer DNA Ma nage can be sorted by defining specific criterion on a one-time only basis or continuously. To sort a table 1. In the toolbar, click . The Sort dialog box is displayed.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 68 Cisco Systems, Inc. 4. Select Once Only or Continuously/Repeatedly . 5. Click OK .
Managing Sheer DNA Units Cisco Systems, Inc. Page 69 5 Managing Sheer DNA Units About this chapter: This chapter describes how to ma nage Sheer DNA Units. This includes adding and removing Sheer DNA Units , and viewing Sheer DNA Unit properties. What is a DNA Unit? , page 70, provides a description of a DNA Unit.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 70 Cisco Systems, Inc. 5.1 What is a DNA Unit? The main purpose of the Sheer DNA Units is to host the Autonomous VNEs. The Sheer DNA Units are interconnected to form a fabric of VNEs that can inter-communicate with other VNEs re gardless of which unit they are running on.
Managing Sheer DNA Units Cisco Systems, Inc. Page 71 The clustered N+m High Availability mechanism within the Sheer DNA Fabric is designed to handle the failure of a Sheer DNA Unit. Sheer DNA Unit availability is establis hed in the Gateway, running a Protection Manager process, which continuously monitors all the Sheer DNA Units in the network.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 72 Cisco Systems, Inc. To add a new DNA Unit 1. Select the DNA Servers branch in the DNA Manage window Tree pane.
Managing Sheer DNA Units Cisco Systems, Inc. Page 73 • Standby Unit: Define whether a Sheer DNA Unit is defined (checkbox is selected) as a standby unit. • The Protection Group dropdown list displays the currently defined list of customized protection groups 3.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 74 Cisco Systems, Inc. 3. Right-click on the required Sheer DNA Unit or DNA Gateway branch to display the shortcut menu and select Properties , or in the toolbar click Properties or from the File menu, select Properties .
Managing Sheer DNA Units Cisco Systems, Inc. Page 75 4. You can change the assigned DNA Un it protection group, as required, by selecting an option from the dropdown list. The Enable Unit Protection checkbox defines whether a Sheer DNA Unit is enabled (the checkbox is sele cted) for high availability.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 76 Cisco Systems, Inc. 5.5 Finding a Unit/AVM/VNE A single search in Sheer DNA Manage can locate Sheer DNA Units, AVMs and VNEs among all Sheer DNA Servers a ccording to specifically defined search criteria.
Managing Sheer DNA Units Cisco Systems, Inc. Page 77 The following buttons are displayed in the Find dialog box: • Find: Searches for the DNA Unit/AVM/VNE from the selected point in the Tree pane, either up or down. • Cancel: Cancels the search and clears the Find dialog box.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 78 Cisco Systems, Inc..
Managing AVMs and VNEs Cisco Systems, Inc. Page 79 6 Managing AVMs and VNEs About this chapter: This chapter describes defini ng and managing AVMs and VNEs. Creating AVMs , page 80, describes how to define an AVM for a Sheer DNA Unit Server. AVM Status , page 82, describes the status of AVMs when they are created and loaded.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 80 Cisco Systems, Inc. 6.1 Creating AVMs Sheer DNA Manage enables the user to define AVMs for DNA Unit Servers. Every AVM (Autonomous Virtual Machin e) in the Sheer DNA Fabric is by default managed by the watchdog protoc ol.
Managing AVMs and VNEs Cisco Systems, Inc. Page 81 3. Right-click on the required Sheer DNA Unit to display the menu and select New AVM or in the toolbar click New AVM or from the File menu select New AVM .
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 82 Cisco Systems, Inc. • Enable AVM Protection: By default this option is selected enabling the watchdog protocol on th e AVM when high availability is enabled. For more inform ation, refer to the Cisco Active Network Abstraction High Availability User’s Guide .
Managing AVMs and VNEs Cisco Systems, Inc. Page 83 • Shutting Down: When a Stop (command) option is issued, and while the command is being executed (some pro cesses may still be running), the status of the AVM is Shutting Down .
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 84 Cisco Systems, Inc. The AVM Properties dialog box is displayed with the details of the selected AVM, including, the IP address/key of the Sheer DNA Unit.
Managing AVMs and VNEs Cisco Systems, Inc. Page 85 To delete an AVM 1. Select the DNA Servers branch in the Sheer DNA Manage window’s Tree pane. The DNA Servers branch is displayed. 2. Expand the DNA Servers branch and select the required AVM sub-branch in the Tree pane.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 86 Cisco Systems, Inc. • When the AVM is stopped the Down state is displayed in the Workspace . Note: When the AVM status is displayed as Down , the status remains Down and no-reload will take place.
Managing AVMs and VNEs Cisco Systems, Inc. Page 87 3. Right-click to display the menu and select Move AVM . The Move to dialog box is displayed. The Move to dialog box displays a tree-and- branch representation of the selected Sheer DNA Server and its Units, excluding the Sheer DNA Unit in which the AVM is currently located.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 88 Cisco Systems, Inc. After Sheer DNA Manage installs and r uns the process, samples the device and collects the data a VNE ( Managed Element) is created. The VNE includes tables and physical inventory, and this Managed Element can be accessed using Sheer NetworkVision.
Managing AVMs and VNEs Cisco Systems, Inc. Page 89 While in maintenance mode (temporary state) a VNE: • Does not change state on its own, unless the user explicitly (manually) switches the VNE back to active state. • Never polls the device. • Does not report any alarms, including device reachability.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 90 Cisco Systems, Inc. A VNE must be loaded into the boots trap of the Sheer DNA Unit before it starts monitoring its underlying NE. This changes the administrative status of the VNE to Up, and ensures that the VNE is loaded on subsequent restarts of the Sheer DNA Unit.
Managing AVMs and VNEs Cisco Systems, Inc. Page 91 3. Right-click in the Tree pane to display the shortcut menu and select New VNE , or from File menu select New VNE or in the toolbar, click New VNE .
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 92 Cisco Systems, Inc. 6.8.1 General Tab The General tab enables the user to m anage VNE information in the connected Sheer DNA.
Managing AVMs and VNEs Cisco Systems, Inc. Page 93 • Cloud: Loads an unmanaged network segment. Specific cloud configuration is provided on a per project basis. • ICMP: The VNE uses this ICMP-based reachability test to validate communication with the managed device by continuously sending ICMP packets.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 94 Cisco Systems, Inc. 6.8.2 SNMP Tab The SNMP tab enables the user to support pollin g and accessing devices using SNMPv1, SNMPv2 and SNMPv3.
Managing AVMs and VNEs Cisco Systems, Inc. Page 95 The following fields are displayed in the SNMP V1/V2 Settings area: • Read: The SNMP Read Community status, namely, Public or Private, as defined by the user. • Write: The SNMP Write Community status , namely, Public or Private, as defined by the user.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 96 Cisco Systems, Inc. 6.8.3 Telnet / SSH Tab The Telnet / SSH tab enables the user to define the Telnet command sequence and support SSH for device acce ss (reachability) an d investigation.
Managing AVMs and VNEs Cisco Systems, Inc. Page 97 • SSH1: Whe n SSH1 is selected the Port field automatically displays 22 . In addition, the SSH informa tion fields are enabled in the tabbed dialog box. • Port: When Telnet is selected this field automatically displays 23 .
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 98 Cisco Systems, Inc. • Cipher: Sheer DNA supports polling devices using the SSH protocol, which defines a set of ciphers, namely, encryption algorithms, that m ay be used to encrypt data.
Managing AVMs and VNEs Cisco Systems, Inc. Page 99 6.8.5 Polling Tab When customizing polling rates, special consideration should be given to the following: • Fast polling rates (30 sec) provide high data accuracy • Fast change tracking (VC table, pr ofile changes) and accurate flows vs.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 100 Cisco Systems, Inc. Selecting the Polling tab displays the following dialog box: The following radio buttons are displayed in the Polling Meth od area: • Group: The VNE inherits the polling rates from the polling group selected in the dropdown list.
Managing AVMs and VNEs Cisco Systems, Inc. Page 101 The following polling interval fi elds are displayed in the Polling Intervals area: • Status: Sets the polling rate for status-related information, such as device status (up/down), port stat us, admin status and so on.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 102 Cisco Systems, Inc. 3. Right-click on the required VNE in the VNEs Properties table in the Workspace to display the shor tcut menu, and select Properties or from File menu, select Properties or in the toolbar click Properties .
Managing AVMs and VNEs Cisco Systems, Inc. Page 103 • Maintenance: Click this button to move the VNE to maintenance mode, so that no alarm s will be sent. If this is do ne when the VNE has been stopped this has no meaning for the VNE. • DNA Unit : The current Sheer DNA Unit that hosts the VNE.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 104 Cisco Systems, Inc. 6.11 Changing the VNE’s State Sheer DNA Manage enables the user to start or stop a VNE or move a VNE to maintenance mode. Starting the VNE adds the VNE to the server bootstrap.
Managing AVMs and VNEs Cisco Systems, Inc. Page 105 4. Right-click to display the shortcut me nu and select one of the following: • Actions | Start or in the toolbar click . • Actions | Stop or in the toolbar click . • Actions | Maintenance or in the toolbar click .
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 106 Cisco Systems, Inc. 4. Select Move VNEs from the shortcut menu. The Move To dialog box is displayed: The Move To dialog box displays a tree-and- branch representation of the selected Sheer DNA Server, its Unit s and AVMs, excluding the AVM in which the VNE is currently located.
Managing Global Settings Cisco Systems, Inc. Page 107 7 Managing Global Settings About this chapter: This chapter describes how to define and manage the Sheer DNA Manage global settings, including, client lice nses, polling groups, protection groups and customizing a message of the day (service disclaim er).
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 108 Cisco Systems, Inc. To install a license 1. Select the Client Licenses sub-branch in the Sheer DNA Manage window’s Tree pane.
Managing Global Settings Cisco Systems, Inc. Page 109 4. Paste the information in the New Client License dialog box. 5. Click OK . The new license information is displayed in the Workspace . The administrator can uninstall the cl ient license, for exam ple, if it has expired.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 110 Cisco Systems, Inc. 3. Right-click to display the shortcut menu and select Properties , or from the File menu select Properties o r in the toolbar click Properties . The Client License Properties dialog box is displayed.
Managing Global Settings Cisco Systems, Inc. Page 111 When the properties of the license are displayed in the Workspace table then the properties of the allocated users are displayed as follows: • I.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 112 Cisco Systems, Inc. 7.2 Viewing DB Segments Sheer DNA Manage enables the admini strator to view and monitor the following: • D.
Managing Global Settings Cisco Systems, Inc. Page 113 7.3 Customizing a Message of the Day Sheer DNA Manage enables the user to define a message (service disclaimer) that is displayed when the user logs in to any Sheer Client application (optional). The user m ust accept the messa ge before logging in.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 114 Cisco Systems, Inc. To remove a message of the day 1. Select the Message of the Day sub-branch in the Sheer DNA Manage window’s Tree pane. 2. In the Workspace , select the text in the Message area and press Delete on your keyboard.
Managing Global Settings Cisco Systems, Inc. Page 115 • System . Sets the polling rate for system-related information, such as device name, device location and so on. • Topology Layer 1 Counters . Sets the polling rate of the topology process as an interval for the Layer 1 counter.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 116 Cisco Systems, Inc. 7.4.2 Customizing a Polling Group Sheer DNA Manage enables the user to create and customize new polling groups. The new polling groups that are created can then be used when defining a VNE.
Managing Global Settings Cisco Systems, Inc. Page 117 4. Right-click to display the shortcut menu and select New Polling Group or from the File menu select New Polling Grou p or in the toolbar click New . The New Polling Group dialog box is displayed.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 118 Cisco Systems, Inc. • System: Sets the polling rate for system-related information, such as device name, device location and so on.
Managing Global Settings Cisco Systems, Inc. Page 119 7.4.4 Deleting a Polling Group Sheer DNA Manage enables the us er to delete polling groups. To delete a polling group 1. Select the Global Settings branch in the Sheer DNA Manage window’s Tree pane and choose the Polling Groups sub-branch.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 120 Cisco Systems, Inc. In addition, the maximum and minimum to lerance levels can be custom ized through the system registry.
Managing Global Settings Cisco Systems, Inc. Page 121 When the VNE is using slow polling a nd CPU usage drops to a regular level (or below the minimum value), Sheer DNA waits for the VNE to drop below the maximum CPU usage threshold valu e twice (default) and only then does the VNE return to normal polling.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 122 Cisco Systems, Inc. To create a protection group 1. Select the Global Settings branch in the Sheer DNA Manage window’s Tree pane. The Global Settings branch is displayed. 2. Expand the Global Settings branch and select the required sub-branch in the Tree pane.
Managing Global Settings Cisco Systems, Inc. Page 123 7. 5 . 1 Checking Assignment of Pr otection Groups to DNA Units The administrator can view the prot ection groups to which the Sheer DNA Units are currently assigned.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 124 Cisco Systems, Inc. 3. Right-click on the required Sheer DNA Un it to display the shortcut menu and select Properties , or In the toolbar click or From the File menu select Properties .
Managing Global Settings Cisco Systems, Inc. Page 125 7.5.3 Viewing and Editing Protection Group Properties The administrator can view the properties of a protection group, for example, the description. In addition, the administ rator can edit the de scription of the protection group.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 126 Cisco Systems, Inc. 7.5.4 Deleting a Protection Group Sheer DNA Manage enables the user to delete protection groups. Note: Check that you are deleting the corr ect protection group, as there may be a DNA Unit using the protection group.
Managing Links Cisco Systems, Inc. Page 127 8 Managing Links About this chapter: This chapter describes how to add and remove a static link between two ports of two Network Elements in the netw ork. These static links will override any existing auto-discovered topology in the sy stem.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 128 Cisco Systems, Inc. To create a new static link 1. Select the Topology branch in the Sheer DNA Manage window. The Topology branch is displayed. Note: Any changes made in the Topology branch are saved autom atically and are registered immedi ately in the Sheer DNA.
Managing Links Cisco Systems, Inc. Page 129 2. Right-click to display the menu and select New Static L ink or from File menu select New Static Link or in the toolbar click New Static Link .
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 130 Cisco Systems, Inc. 4. Expand the tree and select the A Side and Z Si de port of each device. For more information about the icons and severity displayed in this dialog box, refer to the Cisco Active Network Abstraction NetworkVision User’s Guide .
Managing Links Cisco Systems, Inc. Page 131 6. Click Close . The New Static Link dialog box is closed and the newly created link between the two de vices is displayed in the Workspace . Note: The new link is created with the rule A Side < Z Side lexicographically.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 132 Cisco Systems, Inc..
Managing Workflows Cisco Systems, Inc. Page 133 9 Managing Workflows About this chapter: This chapter briefly describes the Workflow Engine branch in the Sheer DNA Manage application. About the Sheer Workflow Editor , below, provides an overview of the Sheer Workflow Editor.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 134 Cisco Systems, Inc. After a workflow is deployed, it is accessible via Sheer DNA Manage for viewing properties and st atus. Deployed workflows can be invoked via the Sheer DNA API using BQL.
Managing Sheer DNA Security Cisco Systems, Inc. Page 135 10 Managing Sheer DNA Security About this chapter: This chapter describes how Sheer DNA implements a two-dimensional security engine combining a role-bas ed security mechanism with scopes (groups of Network Elements) that ar e granted to users.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 136 Cisco Systems, Inc. After the user is allocate d a scope (lis t of Network Elements) and a role, the user can then perform various activitie s on the Network Elem ents included in the scope, as follows: • Activate services.
Managing Sheer DNA Security Cisco Systems, Inc. Page 137 • Operator: Configure business tags a nd manage most day-to-day operations. • Viewer: View only access to the network and to non-privileg ed system functions.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 138 Cisco Systems, Inc. Role Default Permission Based Functionality Scope Based Functionality OperatorPlus Map management: • Creat.
Managing Sheer DNA Security Cisco Systems, Inc. Page 139 10.2 Customizing Security Flow The flow below describes the steps re quired to customize security using Sheer DNA Manage and the order in which they must be performed.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 140 Cisco Systems, Inc. 10.3 Creating Scopes Sheer DNA Manage enables the admini strator to group a collection of managed Network Elements together in order to enable the user to view and/or manage the Network Elem ents based on the user’s role or permission.
Managing Sheer DNA Security Cisco Systems, Inc. Page 141 2. Right-click to display the menu and select New Scope or from File m enu select New Scope or in the toolbar click New Scope . The New Scope dialog box is displayed. The following fields are displayed in the New Scope dialog box: • Scope: The name of the scope (unique).
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 142 Cisco Systems, Inc. 10.3.1 Editing a Scope and Viewing a Scope Properties Sheer DNA Manage enables the administra tor to edit the de tails of a scope and to view the scope’s properties.
Managing Sheer DNA Security Cisco Systems, Inc. Page 143 To delete a scope 1. Select the Scopes branch in the Sheer DNA Manage window’s Tree pane. The Scopes table is displayed in the Workspace . 2. Select the scope that you want to delete in the Workspace .
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 144 Cisco Systems, Inc. To define a user account 1. Select the Users branch in the Sheer DNA Manage window. The Users branch is displayed. 2. Right-click to display the menu and select New User or from File menu select New User or in the toolbar click New User .
Managing Sheer DNA Security Cisco Systems, Inc. Page 145 The following fields are displayed in the New User dialog box: • User Name: The new user’s name used for logging in (mandatory). Note: The user name is unique and a maximum of 20 characters may be used.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 146 Cisco Systems, Inc. 3. Enter a unique User Name (mandatory). 4. Enter a Full Name and Description (optional). 5. Enter a Password (mandatory). 6. Enter the password again in the Confirm Password field (mandatory).
Managing Sheer DNA Security Cisco Systems, Inc. Page 147 3. From the shortcut menu, select Prop erties . The Properties dialog box is displayed with the General tab selected by default. The General tab contains general user account information and the following fields are displayed: • User Name: The current user’s name.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 148 Cisco Systems, Inc. • Limit Connections to: The number of instances of the Sheer DNA Client applications that the user can access at any one tim e.
Managing Sheer DNA Security Cisco Systems, Inc. Page 149 3. Select the Security tab. The following tab is displayed. The Security tab controls the user’s capability to view and manage the application, and Network Elements by granting the user scopes and security access roles.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 150 Cisco Systems, Inc. 4. Click Add to add the scope to the Active Rights of the user. The Security Level dialog box is displayed. The following area is displayed in the Security Level dialog box: • Available Scopes: Lists all of the p redefin ed and unassigned scopes.
Managing Sheer DNA Security Cisco Systems, Inc. Page 151 10.5.3 Map User Permissions Sheer DNA Manage enables the administra tor to assign a map(s) to the user. When the user logs in to Sheer Ne tworkVision, the user can only open and manage the map(s) assigned to the user by the adm inistrator.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 152 Cisco Systems, Inc. The following buttons are displayed between the available maps and assigned maps lists in the Map tab: Moves the selected map to the Assig ned Maps list. Move the entire available m ap list to the Assigned Maps list.
Managing Sheer DNA Security Cisco Systems, Inc. Page 153 In addition, the current user can also in itiate a change of password, where the user will be required to enter the ol d password in order to validate the new password. To change a user’s password (administrator) 1.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 154 Cisco Systems, Inc. 3. Enter the new password in the New Password and Confirm P assw ord fields. 4. Click OK . A confirmation message is displayed. 5. Click OK . The Change User Password dialog box is closed.
Utility Scripts Cisco Systems, Inc. Page 155 A Utility Scripts About this appendix: This appendix describes the Sheer DNA utility s crip ts. Restarting Sheer DNA Gateway , below, describes how to restart the Sheer DNA Gateway from the Unix command line.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 156 Cisco Systems, Inc. Restarting a machine may cause some of the VNEs running on the machine to be reported as unreachable. This is due to handshake protocols with the Sheer DNA Unit that will fail due to the unavailability of the VNEs.
Golden Source Registry Cisco Systems, Inc. Page 157 B Golden Source Registry About this appendix: This appendix provides details of the Golden Source Registry.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 158 Cisco Systems, Inc. The screen below displays the registry files for each Sheer DNA server and the Golden Source hives. The Golden Source mechanism enables cons istent management of the entire system.
Ports Used by Sheer DNA Cisco Systems, Inc. Page 159 C Ports Used by Sheer DNA About this appendix: This appendix provides a list of the ports used by the various Sheer DNA Server and Client applications.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 160 Cisco Systems, Inc..
Drools Rules Engine Cisco Systems, Inc. Page 161 D Drools Rules Engine About this appendix: This appendix introduces and describes the Drools rules engine. Drools Rules Engine Overview , below, introduces the Drools rules engine components and terminology.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 162 Cisco Systems, Inc. • A rule can perform many types of actions, such as: • Add or remove an object from the working m emory • Modify an object • Execute a method on one of the objects • The Agenda is where Drools stores the list of rules to be fired.
Drools Rules Engine Cisco Systems, Inc. Page 163 The Drools parameters are stor ed in the ANA registry file mmvm.xml under the event-management key: • Context ID - the Drools context name • Rule file name – the nam e of the respective rule f ile.
Cisco Active Network Abstractio n Administrator’s Guide, 3.5 Page 164 Cisco Systems, Inc..
Een belangrijk punt na aankoop van elk apparaat Cisco Systems 3.5 (of zelfs voordat je het koopt) is om de handleiding te lezen. Dit moeten wij doen vanwege een paar simpele redenen:
Als u nog geen Cisco Systems 3.5 heb gekocht dan nu is een goed moment om kennis te maken met de basisgegevens van het product. Eerst kijk dan naar de eerste pagina\'s van de handleiding, die je hierboven vindt. Je moet daar de belangrijkste technische gegevens Cisco Systems 3.5 vinden. Op dit manier kan je controleren of het apparaat aan jouw behoeften voldoet. Op de volgende pagina's van de handleiding Cisco Systems 3.5 leer je over alle kenmerken van het product en krijg je informatie over de werking. De informatie die je over Cisco Systems 3.5 krijgt, zal je zeker helpen om een besluit over de aankoop te nemen.
In een situatie waarin je al een beziter van Cisco Systems 3.5 bent, maar toch heb je de instructies niet gelezen, moet je het doen voor de hierboven beschreven redenen. Je zult dan weten of je goed de alle beschikbare functies heb gebruikt, en of je fouten heb gemaakt die het leven van de Cisco Systems 3.5 kunnen verkorten.
Maar de belangrijkste taak van de handleiding is om de gebruiker bij het oplossen van problemen te helpen met Cisco Systems 3.5 . Bijna altijd, zal je daar het vinden Troubleshooting met de meest voorkomende storingen en defecten #MANUAl# samen met de instructies over hun opplosinge. Zelfs als je zelf niet kan om het probleem op te lossen, zal de instructie je de weg wijzen naar verdere andere procedure, bijv. door contact met de klantenservice of het dichtstbijzijnde servicecentrum.