automation of discovering of an enterprise network s ict
play

Automation of Discovering of an Enterprise Networks - PowerPoint PPT Presentation

Dec 03, 2022 •125 likes •447 views

Advances in Methods of Information and Communication Technology, 2014 Automation of Discovering of an Enterprise Networks ICT-Infrastructure Link Layer Graph Anton Andreev Iurii A. Bogoiavlenskii Aleksandr Kolosov Department of Computer

  1. Advances in Methods of Information and Communication Technology, 2014 Automation of Discovering of an Enterprise Network’s ICT-Infrastructure Link Layer Graph Anton Andreev Iurii A. Bogoiavlenskii Aleksandr Kolosov Department of Computer Science Petrozavodsk State University October 21, 2014 Petrozavodsk, Russia Anton Andreev Automation of Discovering of an Enterprise Network’s ICT-Infrastructure Link Layer Graph 21.10.2014 1 / 31

  2. Areas of graph usage Network modeling and analysis Load simulation Network management and optimization LAN designing Network documentation Anton Andreev Automation of Discovering of an Enterprise Network’s ICT-Infrastructure Link Layer Graph 21.10.2014 2 / 31

  3. Nest Experimental platform for studying models and methods of ISP network management. IEEE 802 orientation Automatization of network graph discovery Graph visualization Data fl ows modeling Interface for work with graph structure Describing network with object model SON (Spatial-Organizational-Network) Anton Andreev Automation of Discovering of an Enterprise Network’s ICT-Infrastructure Link Layer Graph 21.10.2014 3 / 31

  4. Tasks Developing of data link layer graph discovering algorithm Finding a method of representation of VLAN on link layer graph Implementation of developed algorithm within Nest Anton Andreev Automation of Discovering of an Enterprise Network’s ICT-Infrastructure Link Layer Graph 21.10.2014 4 / 31

  5. Network concept MIB — Management Information Base. Anton Andreev Automation of Discovering of an Enterprise Network’s ICT-Infrastructure Link Layer Graph 21.10.2014 5 / 31

  6. Network concept MIB — Management Information Base Anton Andreev Automation of Discovering of an Enterprise Network’s ICT-Infrastructure Link Layer Graph 21.10.2014 6 / 31

  7. Network concept MIB — Management Information Base Anton Andreev Automation of Discovering of an Enterprise Network’s ICT-Infrastructure Link Layer Graph 21.10.2014 7 / 31

  8. Graph building concept SNMP - Simple Network Management Protocol Anton Andreev Automation of Discovering of an Enterprise Network’s ICT-Infrastructure Link Layer Graph 21.10.2014 8 / 31

  9. Problem statement Problem of link layer graph building Heterogeneity of network devices Lack of common standards Possible inaccessibility of devices Preferred data con fi guration Pairs of device identi fi ers Addresses, names, numbers of interfaces Anton Andreev Automation of Discovering of an Enterprise Network’s ICT-Infrastructure Link Layer Graph 21.10.2014 9 / 31

  10. Information about VLAN con fi guration Demands Numbers, addresses or names of interfaces VLAN numbers assigned to interfaces Sources Q-BRIDGE-MIB : dot1qPortVlanTable CISCO-VTP-MIB : vlanTrunkPortTable IF-MIB : ifStackTable Anton Andreev Automation of Discovering of an Enterprise Network’s ICT-Infrastructure Link Layer Graph 21.10.2014 10 / 31

  11. CDP Cisco Discovery Protocol, CISCO-CDP-MIB Anton Andreev Automation of Discovering of an Enterprise Network’s ICT-Infrastructure Link Layer Graph 21.10.2014 11 / 31

  12. LLDP Link Layer Discovery Protocol, IEEE 802.1AB, LLDP-MIB Anton Andreev Automation of Discovering of an Enterprise Network’s ICT-Infrastructure Link Layer Graph 21.10.2014 12 / 31

  13. STP Spanning Tree Protocol, IEEE 802.1D, BRIDGE-MIB Myung-Hee Son, Bheom-Soon Joo, Byung-Chul Kim, and Jae-Yong Lee. Physical Topology Discovery for Metro Ethernet Networks Anton Andreev Automation of Discovering of an Enterprise Network’s ICT-Infrastructure Link Layer Graph 21.10.2014 13 / 31

  14. AFT Address Forwarding Tables, BRIDGE-MIB (dot1dTpFdpTable) Hassan Gobjuka and Yuri J. Breitbart. Ethernet Topology Discovery for Networks With Incomplete Information. Anton Andreev Automation of Discovering of an Enterprise Network’s ICT-Infrastructure Link Layer Graph 21.10.2014 14 / 31

  15. Algorithm of link layer graph building Main idea: sequential use of di ff erent data sources Probe the speci fi ed network node Retrieve data using SNMP Create objects representing device on graph Anton Andreev Automation of Discovering of an Enterprise Network’s ICT-Infrastructure Link Layer Graph 21.10.2014 15 / 31

  16. Algorithm of link layer graph building Determine physical addresses of neighbours using STP data Find corresponding network addresses If an IP address of a certain device is not detected then this device is deferred to post-processing Anton Andreev Automation of Discovering of an Enterprise Network’s ICT-Infrastructure Link Layer Graph 21.10.2014 16 / 31

  17. Algorithm of link layer graph building Determine physical addresses of neighbours using STP data Find corresponding network addresses If an IP address of a certain device is not detected then this device is deferred to post-processing Anton Andreev Automation of Discovering of an Enterprise Network’s ICT-Infrastructure Link Layer Graph 21.10.2014 17 / 31

  18. Algorithm of link layer graph building Determine remaining connections using CDP data Anton Andreev Automation of Discovering of an Enterprise Network’s ICT-Infrastructure Link Layer Graph 21.10.2014 18 / 31

  19. Algorithm of link layer graph building Determine remaining connections using LLDP data Anton Andreev Automation of Discovering of an Enterprise Network’s ICT-Infrastructure Link Layer Graph 21.10.2014 19 / 31

  20. Algorithm of link layer graph building Find attached hosts using AFT Anton Andreev Automation of Discovering of an Enterprise Network’s ICT-Infrastructure Link Layer Graph 21.10.2014 20 / 31

  21. Algorithm of link layer graph building Create objects for broadcast domains and add interfaces to them Anton Andreev Automation of Discovering of an Enterprise Network’s ICT-Infrastructure Link Layer Graph 21.10.2014 21 / 31

  22. Algorithm of link layer graph building Handle all postponed devices Create graph objects for all inaccessible devices Put together all broadcast domains that have at least one common interface Anton Andreev Automation of Discovering of an Enterprise Network’s ICT-Infrastructure Link Layer Graph 21.10.2014 22 / 31

  23. Disadvantages of testing in huge networks Di ffi culty of checking of the results correctness Increased duration of data retrieving and processing Lack of variety in data forms Absence of control over device con fi guration Network behavior is unpredictable Anton Andreev Automation of Discovering of an Enterprise Network’s ICT-Infrastructure Link Layer Graph 21.10.2014 23 / 31

  24. Advantages of program experimental environment Total control ever network con fi guration Diversity of con fi guration variants Relatively low cost Absence of external factors Reproducible results Program tools Cisco Packet Tracer NetSim GNS3 Anton Andreev Automation of Discovering of an Enterprise Network’s ICT-Infrastructure Link Layer Graph 21.10.2014 24 / 31

  25. LLDP lab Anton Andreev Automation of Discovering of an Enterprise Network’s ICT-Infrastructure Link Layer Graph 21.10.2014 25 / 31

  26. LLDP lab Anton Andreev Automation of Discovering of an Enterprise Network’s ICT-Infrastructure Link Layer Graph 21.10.2014 26 / 31

  27. VLAN lab Anton Andreev Automation of Discovering of an Enterprise Network’s ICT-Infrastructure Link Layer Graph 21.10.2014 27 / 31

  28. VLAN lab Anton Andreev Automation of Discovering of an Enterprise Network’s ICT-Infrastructure Link Layer Graph 21.10.2014 28 / 31

  29. Testing results Network Devices Collecting Building Nodes time, sec. time, sec. PetrSU 9 119 61 1318 GNS3 LLDP 3 5.9 0.9 3 GNS3 VLAN 3 7.1 1.25 7 We can be sure that device is inaccesible with SNMP only after timeout Anton Andreev Automation of Discovering of an Enterprise Network’s ICT-Infrastructure Link Layer Graph 21.10.2014 29 / 31

  30. Results Complex algorithm of link layer graph discovering (including VLANs) was developed 3 new classes were added to SON 12 new classes were coded in Nest, 15 were changed Added a total of 1254 of new lines of code, including 245 lines of comments Testing of an algorithm was done in PeterSU’s network and in virtual laboratories built with GNS3 The algorithms demonstrated acceptable levels of accuracy and speed of building Anton Andreev Automation of Discovering of an Enterprise Network’s ICT-Infrastructure Link Layer Graph 21.10.2014 30 / 31

  31. Future plans Search for additional data sources Support of data sources about wireless devices Thank you for your attention! andreev@cs.karelia.ru Anton Andreev Automation of Discovering of an Enterprise Network’s ICT-Infrastructure Link Layer Graph 21.10.2014 31 / 31

Recommend

1 Automation Overview Definition Automation (automation, Automation ) : 1) set of all measures

1 Automation Overview Definition Automation (automation, Automation ) : 1) set of all measures

Industrial Automation Spring 2019, EPFL 1 Automation Overview Definition Automation (automation, Automation ) : 1) set of all measures aiming at replacing human work through machines (e.g. automation is applied science) 2) the

1.39k views • 63 slides
Forms Automation By Benny Lam & Fong Xue Ying, NIE ACIS Restricted Agenda Enterprise

Forms Automation By Benny Lam & Fong Xue Ying, NIE ACIS Restricted Agenda Enterprise

Restricted Forms Automation By Benny Lam & Fong Xue Ying, NIE ACIS Restricted Agenda Enterprise Forms automation Student Services Forms Phased approach Choice of Technology Area of Improvement Planning Process

768 views • 23 slides
Enterprise Using automation to extract meaning from data Michael Schmidt, Ph.D. About me

Enterprise Using automation to extract meaning from data Michael Schmidt, Ph.D. About me

Future directions of AI in the Enterprise Using automation to extract meaning from data Michael Schmidt, Ph.D. About me Cornell University, Ph.D. CCSL Lab Founded Nutonian in 2011 Eureqa = AI Software, >50,000 users

527 views • 20 slides
Hybrid SAN & Cluster Enterprise Network Storage Hikvision Enterprise Network Storage

Hybrid SAN & Cluster Enterprise Network Storage Hikvision Enterprise Network Storage

HIKVISION Storage Products Hybrid SAN & Cluster Enterprise Network Storage Hikvision Enterprise Network Storage History CONTENTS Network Storage Solutions Network Storage Products Network Storage Cases HIK Enterprise Network

738 views • 45 slides
Adit Enterprise. Adit Enterprise. Adit Enterprise. Adit Enterprise. ADIT Enterprise is a

Adit Enterprise. Adit Enterprise. Adit Enterprise. Adit Enterprise. ADIT Enterprise is a

Adit Enterprise. Adit Enterprise. Adit Enterprise. Adit Enterprise. ADIT Enterprise is a wholesale distribution business providing complete range of Electronic Security Systems Kamlesh 093232 51184 Adit Enterprise Adit Enterprise Adit

619 views • 29 slides
The Single Source of Truth for Network Automation

The Single Source of Truth for Network Automation

The Single Source of Truth for Network Automation _____________________________________________________________________________ Andy Davidson <andy@asteroidhq.com> March 2018 CEE Peering Days 2018, DKNOG 8, UKNOF 40 Automation Journey

940 views • 44 slides
Automation Coleen Robinson, AstraZeneca 2017 Annual Meeting of the Dial-a-Molecule Network Why?

Automation Coleen Robinson, AstraZeneca 2017 Annual Meeting of the Dial-a-Molecule Network Why?

Engaging Scientists in the Adoption of Automation Coleen Robinson, AstraZeneca 2017 Annual Meeting of the Dial-a-Molecule Network Why? 2 Agenda Why Automation? What is Effective Automation? Importance of Equipment Evaluation

888 views • 21 slides
THE PAST, PRESENT & FUTURE OF ENTERPRISE SECURITY THE GOLDEN AGE OF ATTACK AUTOMATION

THE PAST, PRESENT & FUTURE OF ENTERPRISE SECURITY THE GOLDEN AGE OF ATTACK AUTOMATION

THE PAST, PRESENT & FUTURE OF ENTERPRISE SECURITY THE GOLDEN AGE OF ATTACK AUTOMATION Marcello Salvati - @byt3bl33d3r - https://github.com/byt3bl33d3r - Lead researcher @coalfirelabs - Years of experience building open source security

657 views • 38 slides
The Role of Machine Learning in Network Automation Alberto Leon-Garcia University of Toronto

The Role of Machine Learning in Network Automation Alberto Leon-Garcia University of Toronto

The Role of Machine Learning in Network Automation Alberto Leon-Garcia University of Toronto alberto.leongarcia@utoronto.ca Acknowledgment to: Dr. Saeideh Parsaei Fard and Iman Tabrizian Outline Context: Network Automation

2.01k views • 43 slides
Event-driven network automation and orchestration Tom Strickx UKNOF 40 Cloudflare, London

Event-driven network automation and orchestration Tom Strickx UKNOF 40 Cloudflare, London

Event-driven network automation and orchestration Tom Strickx UKNOF 40 Cloudflare, London Manchester, April 2018 1 Tom Strickx Chaos Monkey at Cloudflare (Network software engineer) Contributor at NAPALM Automation

953 views • 51 slides
Tutorial on ATM & Automation Tutorial on ATM & Automation HALA! Position paper: Research

Tutorial on ATM & Automation Tutorial on ATM & Automation HALA! Position paper: Research

HALA! SESAR Research Network Towards Higher Levels of Automation in ATM Tutorial on ATM & Automation Tutorial on ATM & Automation HALA! Position paper: Research Themes" Nicolas Suarez Technical Manager at CRIDA nstetzlaff@e

497 views • 22 slides
The 3 rd Covenant Re-Discovering the Word of God within the words of the Bible Re-Discovering The

The 3 rd Covenant Re-Discovering the Word of God within the words of the Bible Re-Discovering The

The 3 rd Covenant Re-Discovering the Word of God within the words of the Bible Re-Discovering The Way within the Life of Jesus Christ A Spiritual Adventure of Re-Awakening You are Gods, Children of the Most High, all of you ~

690 views • 40 slides
The Evolving Network: Trends in the connected home, SMB and Enterprise Services markets SMB and

The Evolving Network: Trends in the connected home, SMB and Enterprise Services markets SMB and

The Evolving Network: Trends in the connected home, SMB and Enterprise Services markets SMB and Enterprise Services markets Clarence Black ANMTA Spring Conference 2014 Introduction Network Engineer with Plateau Telecommunications in Clovis,

668 views • 50 slides
MeetupNet Dublin: Discovering Communities in Dublins Meetup Network Arjun Pakrashi,

MeetupNet Dublin: Discovering Communities in Dublins Meetup Network Arjun Pakrashi,

MeetupNet Dublin: Discovering Communities in Dublins Meetup Network Arjun Pakrashi, Elham Alghamdi, Brian Mac Namee, Derek Greene University College Dublin AICS 2018 Introduction Meetup.com is a worldwide online platform to

612 views • 17 slides
Lessons on Process Automation in the Enterprise Michael Carr The Vanguard Group Principal,

Lessons on Process Automation in the Enterprise Michael Carr The Vanguard Group Principal,

Lessons on Process Automation in the Enterprise Michael Carr The Vanguard Group Principal, Retail Systems Integrations 4 Data as of January 31, 2018. 4 Data as of January 31, 2018. A good problem to have Growth Reduce Improve client

191 views • 15 slides
Ask an Expert: Ansible Network Automation Sean Cavanaugh Iftikhar Khan Technical Marketing

Ask an Expert: Ansible Network Automation Sean Cavanaugh Iftikhar Khan Technical Marketing

Ask an Expert: Ansible Network Automation Sean Cavanaugh Iftikhar Khan Technical Marketing Manager Senior Manager, Engineering Team Red Hat Ansible Automation Red Hat Ansible Automation seanc@redhat.com ikhan@redhat.com @IPvSean @ifty_k

704 views • 25 slides
The Enterprise Europe Network Peter Wragg European Commission European Commission Enterprise and

The Enterprise Europe Network Peter Wragg European Commission European Commission Enterprise and

The Enterprise Europe Network Peter Wragg European Commission European Commission Enterprise and Industry EU SME Policy Context Europe 2020 - strategy for smart, sustainable and inclusive growth: Includes an industrial policy for globalisation

1.01k views • 19 slides
Discovering Packet Structure through Lightweight Hierarchical Clustering Abdulrahman Hijazi

Discovering Packet Structure through Lightweight Hierarchical Clustering Abdulrahman Hijazi

Understanding Network Traffic Approach Network Traffic Clustering: ADHIC Evaluation Discovering Packet Structure through Lightweight Hierarchical Clustering Abdulrahman Hijazi Hajime Inoue Ashraf Matrawy P .C. van Oorschot Anil Somayaji

540 views • 29 slides
FOUNDATIONS OF INTENT- BASED NETWORKING Loris DAntoni Aditya Akella Aaron Gember Jacobson

FOUNDATIONS OF INTENT- BASED NETWORKING Loris DAntoni Aditya Akella Aaron Gember Jacobson

FOUNDATIONS OF INTENT- BASED NETWORKING Loris DAntoni Aditya Akella Aaron Gember Jacobson Cloud Network Enterprise Network Network Policies Enterprise Network 2 3 Tenant Network Policies Enterprise Network B A Reachability : A

635 views • 30 slides
Enterprise Multihoming using Provider-Assigned Addresses without Network Prefix Translation:

Enterprise Multihoming using Provider-Assigned Addresses without Network Prefix Translation:

Enterprise Multihoming using Provider-Assigned Addresses without Network Prefix Translation: Requirements and Solution Draft-bowbakova-rtgwg-enterprise-pa-multihoming-00 F. Baker, C. Bowers, J. Linkova IETF96, Berlin, July 2016 1 Problems

422 views • 31 slides
Industrial Automation Automation Industrielle Industrielle Automation 9.2 Dependability -

Industrial Automation Automation Industrielle Industrielle Automation 9.2 Dependability -

Industrial Automation Automation Industrielle Industrielle Automation 9.2 Dependability - Evaluation Estimation de la fiabilit Verlsslichkeitsabschtzung Dr. Jean-Charles Tournier CERN, Geneva, Switzerland 2015 - JCT The material

1.78k views • 91 slides
Discovering Mammalian Endocytic Discovering Mammalian Endocytic Pathways with High- -Throughput

Discovering Mammalian Endocytic Discovering Mammalian Endocytic Pathways with High- -Throughput

Discovering Mammalian Endocytic Discovering Mammalian Endocytic Pathways with High- -Throughput Throughput Pathways with High Image- -Based siRNA Screens and Based siRNA Screens and Image Network Analysis Network Analysis Pauli Rm

552 views • 19 slides
Enterprise Applications Enterprise Systems Enterprise Systems Also called enterprise

Enterprise Applications Enterprise Systems Enterprise Systems Also called enterprise

9/20/2012 Enterprise Applications Enterprise Systems Enterprise Systems Also called enterprise resource planning (ERP) systems Suite of integrated software modules and a common central database Collects data from many

460 views • 16 slides
Network Operations From Automation To Autonomy An Outlook On The Telecom Industrys

Network Operations From Automation To Autonomy An Outlook On The Telecom Industrys

Network Operations From Automation To Autonomy An Outlook On The Telecom Industrys Transformation From Now To 2020 And Beyond The Future Is Exciting: Is Your Organization Ready? Decoupling of Revenue and Traffic The greater challenge

503 views • 26 slides

More recommend