View
0
Download
0
Category
Preview:
Citation preview
© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. 1
Légrádi Attila
Solution Architect
HP IMC avagy multivendor infrastruktúra menedzsment egy konzolról
© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. 2
Reactive
Complex
Manual
Today’s management tools are made for static networks
© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. 3
Reactive
Complex
Manual
Today’s management tools are made for static networks
50% of downtime is due to network outages
90% of the time required to fix a problem just trying to isolate the problem
80% Through 2015, 80% of outages impacting mission-critical services will be caused by people and process issue
http://www.yankeegroup.com/ResearchDocument.do?id=16040
Gartner RAS Core Research Note G00208328, Ronni J. Colville, George Spafford, 27 October 2010, RA6 05012011
*Research carried out by Unisphere, 2012
© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. 4
Proactive Simplified Automated
IMC delivers management for dynamic, agile networks
Meaningful information with platform and SHM
Auto-deployment in platform and remote deployment in BIMs
Preventative measures with compliance center
Consistent management with new HTML 5 based UI
and eAPI integration
Unified wired/WLAN policies with UAM and
infrastructure policy mgmt
Accelerate app deployment with VAN Conn Mgr
SDN visibility & orchestration with VAN SDN Manager
End-to-end resource automation with VAN RA Manager
Deploying advanced IMC services Services
Remediation
Accessible management
Security driven Service orchestration
Connection activation
Enabling SDN
Advanced implementation
Reduce time to action leveraging the platform
Flexible Deployment
Consistent visibility
Actionable information
© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. 5
Proactive management Enabling continuous uptime
Remediation
• Respond dynamically to network environment changes
• Action based on traffic anomalies
• Event-based automated remediation
Accessible management Security driven
• Configure and monitor over 6000 devices (3rd party) using 1 tool
• Dynamic content on any device
• Open extensible architecture for external integration
• Unified wired and wireless policies
• Manage infrastructure compliance
• Quarantine non-compliant devices
• Multivendor device and user access enforcement
© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. 6
Infrastructure automation Automates and orchestrates traditional and software defined networks
Connection activation
• Accelerates provisioning of apps
• Automates VM connectivity
• Error free configuration
• Supports multi-vendor hypervisor managers
Enabling SDN Service orchestration
Core Switch
Core Router
Access Switch
Load Balancer
Firewall IPS
App 2 App 3 App 1
• FCAPS for SDN environments
• Manages all layers of SDN
• Completes SDN architecture
• Automated service modeling and deployment
• Dynamic configuration of devices
• Service agility for all networks
VM
Policy based, Error free
Infrastructure
Controller
Applications
IMC SDN Manager
SD
N A
rch
itec
ture
© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. 7
Virtual Application Networks deliver automation, agility Industry’s most complete software-defined data center network fabric
40 Switches – over XX million ports
Virtual Application Networks SDN Controller
Virtual Cloud Networks App
Sentinel Security App
Load Balancing App
Management
Non-OpenFlow
VAN Network Resource Automation
VAN Connection Mgr
Infrastructure
Control
Application
VAN SDN Manager
SD
N A
rch
itec
ture
Inte
llig
ent
Man
agem
ent
Cen
ter
© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. 8
Software-Defined Networking (SDN)
Unified Wired & Wireless Network & Management
Unified BYOD Essentials
Complete unified Bring Your Own Device (BYOD) solution Simple, scalable and secure
On-boarding
Provisioning
Monitoring
Ma
na
ge
me
nt
Infrastructure Layer
Control Layer
Application Layer
Management
SD
N A
rch
ite
ctu
re
© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. 9
Network Access Control (NAC)
Ensure security policy conformance
• “All devices connecting to my network must conform to a security policy I define”
• Security Policy Enforcement with Endpoint Admission Defense (EAD)*
− AV & Definitions, OS Patches, FW, banned SW
− Dissolvable & Permanent iNode clients for common OS
• Includes Desktop Asset Manager
− Device inventory management
− Data Leakage prevention
Au
the
nti
cate
Se
cure
VLAN= Voice
Isolation Network
VLAN= Sales
* Additional IMC Module
© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. 10
Know what sites are being accessed from your network
User Behavior Auditor
Audit online behavior of internal users • Provides comprehensive log collection and audit functions
• Scalable network log audit and analysis solution
Real-time visibility in who/what is consuming bandwidth • Audit on-line behavior by user or IP address
• websites, specific URLs, database access and operations, file transfers, and FTP access
Effectively manage resources and capacity planning • Understand traffic patterns, application and session performance and
trends
© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. 11
User access manager
Unified wired and wireless access control
Unified access management • Policy-based user and device authentication and
authorization and enforcement
• Access rules based on user role, device type and endpoint integrity
• Advanced Mobile device profiling (fingerprinting)
• 802.1X authentication & simplified self registration portal option
• Traffic shaping for optimal bandwidth allocation
• Integration with HP TippingPoint IPS
• Customizable portal to match customer’s brand
Employee Guest
IMC Policy enforcement
Application access
© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. 12
IMC Unified wired and wireless management with Wireless Services Manager
Wired & Wireless network visibility • Status and traffic monitoring of hundreds of wired/wireless
devices from a single screen
• Simplified wired/wireless network deployment, management and troubleshooting
• Robust reporting for compliance
IMC Wireless Services Manager (WSM) • Discover wireless access points (AP) & connected clients
• Track device status, network performance, and user connections
• Ensure consistency with AP configuration backup
• Map your wireless network
• Optimize wireless coverage with heat map
• Location based services
Where are your APs? How strong are the APs?
Mary MAC: 00:24:d6:94:d7:52
Who’s connected?
© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. 13
Service Operations Manager
Service Desk
IT network flow
Requirement Fault Issue Repository Configuration Change Release
Optimize IT responsiveness to end user service requests with ticket integration into IMCs alert and configuration capabilities
© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. 14
Branch intelligent management system
Zero touch configuration for branch devices in batches
• Out of path from DVPN
• Automatic software upgrades
• Branch device zero-touch configuration startup
• Comprehensive monitoring of physical links
• Capable of managing devices in up to 10,000 branches
Branch Headquarters
Unified management
Data center
Integrated applications
Multilayer security
Converged infrastructure
Accelerated application delivery
© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. 15
Greater visibility and control for DVPN
HP IMC IPSec VPN Manager
Comprehensive IPSec VPN management • Domains
• Device
• Tunnel
• Topology
• Proposal
• IKE security
DVPN support • Pre-defined DVPN security templates
• DVPN auto discovery
• DVPN management and provisioning
Campus
Branch Branch
WAN
IMC IVM
Secure Data Tunnel
© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. 16
Application Performance Manager (APM)
Visualize and measure the health of business applications and the impact to network performance
• Single pane visibility of server, application, performance and infrastructure
− Monitor performance and health of applications
− Automatic discovery of applications
− Fault management for monitored applications
• Comprehensive reporting of monitored objects
• Logical step towards service management, and bridges gap between network ops, server ops and application teams
• Broad range of supported applications
© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. 17
HP IMC Service Health Manager
Provides end-to-end service monitoring and assurance
• Visual service modeling
• Includes predefined and custom key performance indicators (KPIs)
• Complete Network Quality Assurance (NQA) Link Monitoring
• Comprehensive SHM reports
Web servers
App servers
DB servers
Router (VRF)
Router (local)
Firewall VPN Internet IPS
Link KPI (Delay, Jitter)
KPI
KQI Network availability
Link availability
Application response time
The average recovery time of service fault
Business model
More…
1. Network service assessment report
2. Failure root cause analysis and positioning
3. Trend Analysis \ quality deterioration prediction
Performance KPI
CPU is running at full load?
Interface bandwidth is insufficient ?
Alarm KPI
Link Down?
Attack?
Configuration KPI
Configuration exception?
Agent need to upgrade?
Traffic KPI
User traffic
Application traffic
Server KPI
App performance
DB performance
© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. 18
vMon (Virtualization Monitoring Software)
Gather information and monitor traffic between various points on your network
• Customize the collection of traffic between virtual machines running on your network
• For use with NTA/UBA/APM
• Monitor L1 to L7
• OVF template for VMware
© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. 19
QoS Manager
Platform for defining, applying, and monitoring QoS policies on a system-wide basis for HP Networking routers and switches.
View policies in IMC Discover QoS configs on your devices and import into IMC
Create traffic classifiers
Plan with QoS properties and traffic rules, and an assigned set of network elements
View Discover Define Plan Deploy
Deploy/remove your QoS policies to their assigned network devices.
© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. 20
HP IMC platform portfolio
* Additional incremental node licenses 100, 500, 1000, 5000 & Unlimited
IMC Standard
• Includes 50 device license
• Hierarchical model support
• Expandable device support*
• Modular
Advanced networks
IMC Basic WLAN
• Fault, config and performance
• Unified wired and wireless management
• Fixed functionality
• Fixed 50 device limit
• Includes 50 license of WSM
IMC Basic
• Fault, config, and performance
• Fixed 50 device limit
• Fixed functionality
Small, simple networks
IMC Smart Connect WLAN • Virtual appliance w/OS and dB
• IMC Standard w/50 device
• User Access Manager with 50 user devices
IMC Smart Connect • Virtual appliance w/OS and dB
• IMC Standard w/ 50 device
• User Access Manager with 50 user devices
BYOD specific
IMC Enterprise • Full FCAPS • Includes 50 device license • Hierarchical model support • Includes NTA module
& eAPI license • Expandable device support* • Modular
© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. 21
Comprehensive management capabilities Single platform built on top of modular, service oriented architecture
Fault
Alarms Syslog & Trap
Mgr
Configuration
Intelligent Configuration
Center
Compliance Center
VLAN & ACL Manager
Accounting
Network Assets
Performance
Performance
Mgmt
Virtual Network
Mgmt
Security
Security Control Center
FCAPS
IMC Platform
Add-On Modules
Remote Site
Manager
VAN ConnectManager
Service Health
Manager
App Perform. Manager
Intelligent Analysis Reporter
User Behavior Analyzer
Service Oper
Mgmt
Network Traffic
Analyzer
User Access
Manager
Endpoint Admission
Defense
Branch Intelli. Mgmt
System
TACACS+ Authent Manager
IPSec VPN Mgr
MPLS VPN Mgr
Wireless Services
Mgr QoS Mgr
Voice Services Manager
vMon
Extended API
Resource Automate Manager
VAN SDN Manager
VAN Fabric
Manager
© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
Köszönöm a figyelmet!
Recommended