RWAN Spring2002 © 2001, Cisco Systems, Inc. All rights reserved. 1 1 1111 Presentation_ID

RWAN Spring2002© 2001, Cisco Systems, Inc. All rights reserved. 1© 2001, Cisco Systems, Inc. All rights reserved. 1© 2001, Cisco Systems, Inc. All rights reserved. 1111© 2001, Cisco Systems, Inc. All rights reserved.Presentation_ID

2© 2001, Cisco Systems, Inc. All rights reserved.© 2001, Cisco Systems, Inc. All rights reserved.© 2001, Cisco Systems, Inc. All rights reserved.RWAN Spring2002

Routed WAN Routed WAN Management Solution 1.2 Management Solution 1.2

OverviewOverviewMay, 2002May, 2002

RWAN Spring2002© 2001, Cisco Systems, Inc. All rights reserved. 3© 2001, Cisco Systems, Inc. All rights reserved. 3© 2001, Cisco Systems, Inc. All rights reserved. 3

Agenda

• Trends and Challenges

• Strategy and Solutions

• Product Overview


IT Organization Challenge

Network Management Service Management

Utility Strategic Asset

Facilitate high reliabilityLeverage organizational resourcesMinimize transmission costs

Facilitate high reliabilityLeverage organizational resourcesMinimize transmission costs

Identify opportunities to use Information Technology to help the corporation better compete

•E-Commerce•Extranets & VPNs•VoIP

Identify opportunities to use Information Technology to help the corporation better compete

•E-Commerce•Extranets & VPNs•VoIP


Wide-Area Networking Trends and Challenges

• Explosive growth

– More Internets and intranets

– Move to Frame Relay services

– Shift to higher speed links--VPNs

• New uses create new problems

– Bursts in traffic load caused by applications

– Broader access increases breaches of security

– Mismatch between LAN and WAN capacity

• Networks fail in new ways

– Service degradation

– Misconfigured applications


Demands on WAN Administrators

• Meeting SLAs– Network availability

– Network reliability

– Predictable response time

• Controlling Costs– Line charges account for over

90% of WAN cost

• Managing Application Flow across the Entire Network– Help desk calls are increasingly

application related

Response TimeCIR Burst Rate

Throughput

Discards

Congestion


Heterogeneous Management ServersHeterogeneous Management Servers

xmlCIM xmlCIM

Device IDDevice ID

Management Intranet


Cisco Management Solutions

InfrastructureInfrastructure

Service ManagementService Management

Network ManagementNetwork Management Policy ManagementPolicy Management

Cisco IOS Software IP Addressing Directory Services

CiscoWorks 2000 Content Aware Networking

Core Networking ServicesCore Networking Services

Security Quality of ServiceService

Monitoring


Product Overview


CiscoWorksA Family of Internet-Powered Network Management Products

Network InstrumentationNetwork InstrumentationLAN, WAN, Cat6500 RMON Module

Network InstrumentationNetwork InstrumentationLAN, WAN, Cat6500 RMON Module

Routed WANRouted WANRouted WANRouted WAN

Internet

Frame Relay

Management IntranetManagement IntranetCIM/XML, Cisco Portal

Management IntranetManagement IntranetCIM/XML, Cisco Portal

PartnersPartnersManagement Connection

PartnersPartnersManagement Connection

Voice Voice ManagementManagement

Voice Voice ManagementManagement

LAN MgmtLAN MgmtLAN MgmtLAN Mgmt

Small Network ManagementSmall Network ManagementSmall Network ManagementSmall Network Management VPN & Security Management

VPN & Security Management

Internet

VPN

VoIP Health VoIP Health MonitorMonitor

VoIP Health VoIP Health MonitorMonitor

QoS Policy QoS Policy ManagerManager

QoS Policy QoS Policy ManagerManager


CiscoView 5.4 and theCiscoView 5.4 and theCiscoWorksCiscoWorks

Management Server 2.1Management Server 2.1(CD-One 5(CD-One 5thth Edition) Edition)

GraphicalGraphicalWeb-based DeviceWeb-based DeviceManagement andManagement and

Common ServicesCommon Services

GraphicalGraphicalWeb-based DeviceWeb-based DeviceManagement andManagement and

Common ServicesCommon Services

ResourceResourceManagerManager

Essentials 3.4Essentials 3.4

DeviceDeviceInventory,Inventory,Config &Config &

Software AdminSoftware Admin

DeviceDeviceInventory,Inventory,Config &Config &

Software AdminSoftware Admin

ACLACLManager 1.4Manager 1.4

AccessAccessControlControl

ListListManagementManagement

AccessAccessControlControl

ListListManagementManagement

InternetworkInternetworkPerformancePerformanceMonitor 2.4Monitor 2.4

ResponseTime

Reporting

RWAN Management Solution v1.2


Routed WAN Management SolutionKey Features

• Reduces total cost of ownership by centralizing control of WAN network resources

• Provides early visibility of wide-area network issues or problems

• Improves bandwidth utilization and optimization across expensive WAN links through appropriate design and traffic filtering

• Enhances WAN troubleshooting with support of Cisco IOS embedded Service Assurance Agent (SAA) technology


• Provides WAN troubleshooting

Measures hop-by-hop response time and availability

Quickly pinpoints bottlenecks in network performance

Identifies and measures all available network paths

Evaluates response time thresholds and generates alarms

Provides real-time and historical reports

• Utilizes SAA agent embedded in Cisco IOSMeasures response time between any set of routers

No external management hardware (probes) required

Leverages value in existing installed Cisco routers

Internetwork Performance Monitor


• IPM server supported on Windows 2000 and Solaris 2.8 platforms

• Fully web-enabled for IPM client support

• Support for HTTP performance collector (for static URL's as target for performance operations)

• Improved graphing, including multi-graphing, where all paths or hops between two end points can be shown on one graph for comparison purposes.

• Path usage report showing distribution paths taken between source and target

• Auto Baselining of collector thresholds

• Global edit of IPM operation applied to all IPM collectors

• Enhanced database export capabilities

• Improved integration with CiscoWorks desktop including the ability to launch IPM help

IPM 2.4 Features


IPM and SAAApplications in WANs and VPNs

Mobile Users

Dial / ISDN

Remote Sites

Mobile Users

TelecommutersATM

Frame Relay

Branch Sites

Leased Lines

Partners / Customers

IP-VPN

InternetCentral / HQ

SAASAA

SAASAA

IPM Server(Solaris)

IPM Client(Windows NT, Solaris)

Present

ConfigureCollectPresent


ping

pingping

SAA Agent

IPMHop-By-Hop Response Time

IP AddressableDevice

SAASAA

• Determine IP path every measurement intervalOver time, discovers all active network paths

Utilizes TRACEROUTE

• Measure response time to each hop using ICMP Ping• Isolates hop that causes a SLA violation


IPM--Hop-By-Hop Reports


• Integrated with CW2000 Resource Manager Essentials

Leverages functions from Inventory, Configuration Archive, Transport, Change Audit, Schedule, etc.

• Structured approach to managing ACL policies

Reduces time to deploy multiple changes

Reduces errors in ACL definition

Reduces time and improved accuracy for add, moves and changes for users and servers

Access Control List Manager


• Recognizes all ACL uses

• Configures ACLs for filtering IP, IPX, and SAP traffic

• Allows common names in GUI (ACLs, hosts, networks, services)

• Provides filter policy template management

• Tracks changes with attached comments

• Automates distribution of ACL updates

• Provides ACL navigation tools for troubleshooting

• Supports single or multiple router ACL definition

ACL Manager


ACL Manager Components

• Front-end Web-based client GUI

• Backend serverClass Manager

Template Manager

ACL Editor

Use Wizard

Difference Viewer

Downloader

Optimizer


• ACL Manager server support for Windows 2000 and Solaris 2.8 platforms

• SSH and SSL support for ACLM client

• Creating, editing, naming and numbering ACL's

• Options for saving configuration file to disk

• Support for optimizing ACL statement to eliminate redundancies

• Printing of ACLs, ACEs, optimization details, difference data

• Users can backup the ACL Manager data for disaster recovery using the integrated CiscoWorks Backup tasks.

• Co-existence with RME 3.4 and CMF 2.1

• Support for IOS release 10.3 through 12.2

• Full support for IP, IP_EXTENDED, IPX, IPX_EXTENDED, IPX_SAP, IPX_SUMMARY, RATE_LIMIT_MAC, RATE_LIMIT_PRECEDENCE and VACL_Catalyst 6000 ACL's

ACL Manager 1.4 Features


• Support for Catalyst OS release 5.3 CSX through 7.1

• SNMP access to Cisco routers can be controlled through ACLs. ACLs for controlling and restricting packet filtering and line access, SNMP server access control, SNMP access to a device and limiting TFTP servers used via SNMP.

• New device support:

Cisco 1710/50/51/60

Cisco 12404/06/16

Catalyst 6513, 6006/09

uBR 7246VXR, uBR 10012, ESR 10008, uBR-7100/11/14/23, 7246

uBR 904/905/912C/912S/914/924/925

Cisco 7300, 7600IR, 7401

800 series (801/2/3/4/5/11/13/27), 826 QuadV

7507mx, 7513 mx

MC3810v3, AS5350/5850/5400

Cisco 2650, 2651

ACL Manager 1.4 Features


Resource Manager Essentials

Device configuration--Archive, search, compare, and export config files for routers and switches

Change audit services--audit logging and reporting of network changes

Inventory management--Capacity planning tools and inventory details

Software image management--Distribution, archiving, and defect assessment of image software

Availability management--reachability, reloads, response time, and stack decoder

Syslog analysis--Filtered, flexible syslog error reporting

Integration tools--

• Contract Connection--CCO-linked access to service contract status

• Management intranet--browser integration of third-party Web-based tools


RME 3.4 Features

• Support for downloading and uploading of device configurations via Secure Shell (SSH) protocol

• Secure communication between the client browser and the RME server via Secure Socket Layer (SSL) protocol

• Support for configuration management for devices across Network Address Translators (NAT) boundaries

• Support for Interactive IOS, CAT-OS & FastSwitch commands in the NetConfig applications

• Provides a convenient collection of tasks for basic VPN management, all tasks are keyed from a predefined set of VPN capable devices, enabling fast determination of VPN related problems

• Users can quickly compare and contrast configurations of VPN devices and perform configuration searches on just the VPN devices in the network


RME 3.4 Features

• From Inventory Manager users can interrogate the system to establish VPN devices that have hardware encryption modules. Users can run reports to determine which devices in Inventory Manager database need to be upgraded so as to perform as a VPN device in the network

• Network administrators can quickly isolate VPN related problems by running customized Syslog reports to check for errors related to Hardware encryption, Internet Key Exchange (IKE), Certificates, encapsulation and check for possible intrusion attempts by running "Packet Replay" reports

• Up-to-date inventory of all Cisco devices in the network, including support for Cisco Call Manager and the VPN Concentrator 3000 (VPN c3000)

• Batch command enhancement of Network Show Commands facility

• Ability to isolate and view PIX firewall configuration statements


CiscoView

• Web-based browser interface for all Cisco platforms

• Distributed and multiuser, enabling collaborative management

• Open Web interfaces for integration into network management systems (e.g. HP OV, Tivoli Netview, etc.)


CiscoView 5.4 Features

• Secure communication between the Client Browser and the server via Secure Sockets Layer (SSL) protocol device list import from local RME through SSL

• User security support for Cisco WAN Manager (release 10.4)

• Device list import for rapid loading and subsequent accessing of devices

• Remote upgrade of user preferences and device packages from previous versions of CiscoView

• New progress indicator providing status feedback on task execution

• Performance improvements in the Monitor and Configuration menus

• Device package enhancements for several cisco products. new device support includes: AS5350, AS5400, Router 12000, IAD2400, Metro 1500 and URM (1.0). See release notes for complete list.

• For new and current device support listing, please refer to the following URL:

http://www.cisco.com/cgi-bin/Software/CiscoView/cv5devices.cgi


Enterprise Management Strategy

Building the Management

Intranet

Building the Management

Intranet

PartnershipsPartnerships

Broad Range of Network and Policy

Management Solutions

Broad Range of Network and Policy

Management Solutions

29Presentation_ID © 1999, Cisco Systems, Inc.

Documents

RWAN Spring2002 © 2001, Cisco Systems, Inc. All rights reserved. 1 1 1111 Presentation_ID