EN-QUIDVIEW-SYD-V1.00(20051221)

Chapter 1 Quidview Overview

1.1 Challenge

With increasing demand for information in different industries, and boosts in the construction of a variety of networks such as enterprise network and campus area network (CAN), network management is confronted with the issues of how to provide easy and efficient management for devices. In addition, the popularity of network and the explosion of network subscribers allow a boom of various types of networks. As the network offers convenience for end users, network security is becoming a major concern.

1.2 Product Positioning

The Quidview Network Management System (NMS) is built on modular structure and can implement such features as device management, VPN monitoring and deployment, software upgrade management, configuration file management, fault management, performance management, and web report. The integration of these service features makes Quidview an optimized solution that enables either the users in the enterprise network and CAN or the operators to monitor, maintain, and manage their own networks with ease.

Chapter 2 System Structure and Functionality

2.1 System Architecture

Built on modular structure, Quidview NMS implements such features as device management, VPN monitoring and deployment, software upgrade management, configuration file management, fault management, performance management, and web report through the integration of different service components.

Quidview NMS supports Windows XP/2000. Its architecture is shown in ‎Figure 2-1:

Figure 2-1 Quidview system architecture

In the above figure, Quidview NMS consists of the Network Management Framework (NMF) and varied service components. The following components are currently available:

l Network Management Framework (NMF): Provides some basic functions such as user management, topology management, parameter configuration, log management, fault management, performance management, and device log management. It is the basic component for other service components.

l Network Management Framework for Small to Medium Business (NMF-SMB): Provides some basic functions such as automatic discovery, topology management, fault management, realtime monitoring, and user management. It is the basic component for other service components.

l Device Manager (DM): Provides such features as panel display, configuration management, real-time monitoring for switches and routers. It can be either installed as a standalone or included in NMF.

l IPSec VPN Service Monitor (VSM): Monitors the performance of IPSec VPN gateways.

l IPSec VPN Service Deployment Manager (VDM): Provides deployment function for IPSec VPN gateways.

l Network Configuration Center (NCC): Includes software upgrade and configuration file management features that provide software backup and upgrade for network devices and centralized management on configuration files;

These service components are relatively independent, and can be included in NMF, improving scalability for the entire system.

2.2 Functions and Features

Quidview NMS contains powerful configuration management feature that can implement such general network management functions as user management, fault management and performance management, and also enable user to achieve the functions like device software backup and upgrade, access device remote batch configuration, VPN performance monitoring and deployment, device-based fault analysis, custom topology and firewall log analysis.

2.2.1 Network Management Framework

NMF is an operation platform for Quidview NMS, and each service component must be installed on this common platform for normal operation. NMF guarantees the integration of each service component, and also offers user some basic functions including user management, topology management, performance management, fault management and operation log management.

l User management: Ease user management that can enable users to set different operation authorization and control login clients and manageable devices, thus highly improving the security;

l Performance management: Monitor various device parameters under the management of system, for example, memory occupation and CPU usage. Two methods for operation are available: task monitor and real time monitor;

l Fault management: Centralize network fault management that can filter, locate, acknowledge, forward the fault information gathered from devices, set the fault methods (audio, visual etc.) for different faults, and define different operation information and maintenance references specific to different faults;

l Operation log management: Record all the operation performed by all the users including administrators, providing traceability in the operation. This management can filter and display large amounts of operation logs, and implement auto deletion;

l Topology management: User can customize the network topology according to the actual networking in combination with drag-and-drop function provided with the base map. The custom topology view highlights key devices in the network, and enables users to monitor and configure the devices and their related links in combination with DM.

l Device log Management: Provides log receiving and generation functions that can help to view and query the received log information, and configure the system to forward the information to other log processing systems or discard it.

2.2.2 Device Manager

DM provides network element management for switches and routers, which can achieve panel management and implement configuration, query and monitoring of various service features that provide user with an easy and convenient way to monitor device runtime state and locate device failure.

2.2.3 Configuration File Management

Generally, there are various devices deployed in the network, whose configurations vary with their types, even the configuration for the devices of the same type is dependent on their location and functionality. This makes it difficult for network administrator to manage and maintenance the network, especially when massive devices need to recover from network failure. Thus a tool specific to the management on device configuration files is required.

Quidview NMS provides NCC that helps the administrator centralize the device configuration file management including configuration file backup, restore and batch update. In addition, NCC enables the baseline management on configuration files and the trace and comparison of configuration file changes, helping drive the convenience of device management and improve the maintainability of network.

2.2.4 Device Software Backup and Upgrade

With the expansion of network, the maintenance increases in difficulty as the devices in the network increases in type and quantity. Especially when the upgrades for devices are frequent, errors are unavoidable in operation due to heavy workload and numerous versions of software varying with devices, and this prompts an easy and convenient management way specific to software upgrade.

NCC can implement the backup and upgrade of software on device with highly improved maintainability and convenient management for user. Available functions are as follows:

l Query current version of software on device: Check current version before upgrade;

l Analyze condition for upgrade: Check if the device needs upgrade according to the queried current version of software on it;

l Centralize backup device software versions: If upgrade is required, currently used software versions can be backed up to software database on network management server for safety, thus providing traceability to the software;

l Centralize upgrade device software versions: According to the software version defined by the network management, a search for the device with a lower version is performed automatically, and upgrade is based on user selection;

l Batch device upgrade: If there are amount of devices requiring upgrade, batch device upgrade provides convenience;

l Upgrade authentication: Authenticate upgrade result to ensure the accuracy of operation.

2.2.5 IPSec VPN Service Monitor

With the increasing concern over network security, VPN technology has drawn a good deal of deployment. VSM can provide real-time monitor on the operating state (including CPU usage and memory occupation) of VPN network gateway and the state information on VPN tunnel, and receive and analyze the faults from the gateway.

2.2.6 IPSec VPN Service Deployment Manager

VDM is so complex that manual deployment demands too much operation. With VDM, however, users can deliver the configuration to VPN devices through policy-driven approach, and trace the changes on device configuration.

2.3 Platform Integration

In the standalone installation, DM can be integrated into the general network management platforms in industry, commonly used ones of which include SNMPc, HP Openview.

2.3.1 SNMPc

SNMPc is a reliable distributed network management system in high performance/price ratio, which provides different versions for large and small sized networks to meet the demands on the management on the networks in different sizes.

2.3.2 HP Openview

HP Openview is one of the most general network management systems, deployed by HP, which supports UNIX and Windows platforms and implements auto discovery, topology management, and hierarchical network management.

2.4 Other Features

l Visual customization and installation. The intuitive graphic interface enables users to install and upgrade Quidview NMS with notes on the interface that guide users to select the desired installation option. This feature also supports the custom installation of Quidview NMS component package;

l Flexible help feature. The system provides access to help text that helps users access the related information they want. During operation, users can get current operating environment help text just through button or shortcut key press;

l License register mechanism implements binding with hardware platform for protection of authorized users, and supports the upgrade on Quidview NMS.

Chapter 3 Solutions

Quidview NMS can manage Huawei-3Com series routers and Ethernet switches, which enables such functions as network element management and network service management.

Quidview NMS can provide solutions for:

l Small to medium sized network

l VPN

l Enterprise network

l Multi-vendor network

3.1 Small to Medium Sized Enterprise Network

For small to medium sized network with a few devices, if only simple device management is required, DM can enable network element management on routers and switches in panel view, and monitoring on general traffic information of interface or device at the same time. If topology, performance and fault managements are required, NMF-SMB is the choice.

3.2 VPN

Quidview offers an optimized solution for VPN service, the networking is as shown in ‎Figure 3-1:

Figure 3-1 VPN solution networking

VPN application can be described in two major sections in ‎Figure 3-1: enterprise main office and VPN client users.

The main office deployed SecPath 100/1000 or AR46 series routers as security gateway to connect to the public network, equipped with network management server (NMF plus VDM) inside the network. VDM can monitor the operating status of VPN devices and VPN service parameters, and dynamically deliver device configuration through policy-driven approach, providing the network administrator a fast and convenient way to accomplish configuration management work.

Depending on their characters, VPN client users fall into two categories: fixed line users and mobile users. The fixed line users include the users like all the branches with dedicated network connection, and the mobile users are the ones using random connection, for example, employees on business trip and home dial-up users.

Depending on the scale, the fixed line users can deploy different devices to connect to the public network, such as SecPath100 gateway, AR28 series routers, R series routers, and then establish VPN connection to the main office through VPN configuration (delivered through policy-driven approach by VDM at the main office) on these devices. The mobile users have to establish the VPN connection through client.

3.3 Enterprise Network

Today, the fast growth of information in different fields boosts the enterprise network building. With the augment of network scale and applications, the more complex the network services get, the more problems in the network deployment rise. As a result, the demand for the manageability of the whole network is getting higher.

Through the integration of different service components, Quidview Network Management System forms a flexible and full featured solution for enterprise network:

l NMF: Easy to display whole network topology through custom topology, and deploy real-time monitoring on devices and servers in the network and quickly locate failed devices to ensure the network reliability. And fault function featuring multiple fault methods eases the administrator’s daily operation;

l NCC: Provide the central management functionality for device software and configuration files, which can accomplish batch software backup and upgrade, as well as configuration file backup and distribution with highly improved efficiency for network management and assured configuration accuracy for massive network devices;

l IPSec VPN Management System (VSM, VDM): Offer real time monitor and deployment flexibility for VPN devices in enterprise network, if there are many branches with VPN application;

l DM: Monitor and configure the devices in the network through panel view.

3.4 Multi-Vendor Network

HP Openview plus Quidview makes a fit for a complex network in geographical dispersion with the devices from various vendors.

With the advantages of network management and system management integration, HP Openview forms a solid management system. HP Openview series products include such full function features as general management platform, comprehensive service and asset management, network security, QoS guarantee, fault auto detection and handling, device search, network storage, intelligent agent, Internet open service. Integrated into HP Openview, Quidview DM developed by Huawei-3Com can manage Huawei-3Com devices, and also private faults through the integration of private fault into HP Openview.

After the integrated installation, run HP Openview NNM to start network topology auto discovery. The topology can display the icons of device from various vendors, in which Huawei-3Com router and switch icons distinctively indicate device models. Double click the device icon to start Quidview DM for the management such as device management and performance monitoring. User can also install the Quidview NMF and its other components to implement topology management, VPN monitoring and deployment, configuration file management, software backup and upgrade, etc.

Accessory Document

EN-QUIDVIEW-SYD-V1.00(20051221)