GlobalNOC Services Update Internet2 Global Summit

Similar documents
Move beyond the expected.

Oracle Diagnostics Pack For Oracle Database

ISO STANDARD IMPLEMENTATION AND TECHNOLOGY CONSOLIDATION

<Insert Picture Here> Managing Oracle Exadata Database Machine with Oracle Enterprise Manager 11g

IT Service Management: Southeast Area Practice Gary West Solution director Business Service Optimization

Cisco Network Assurance Engine with ServiceNow Cisco Network Assurance Engine, the industry s first SDN-ready intent assurance suite, integrates with

2012 Microsoft Corporation. All rights reserved. Microsoft, Active Directory, Excel, Lync, Outlook, SharePoint, Silverlight, SQL Server, Windows,

M I N S LITTLE BLACK BOOK OF JIRA SERVICE DESK ESSENTIALS

Orchestrating the Cloud Infrastructure using Cisco Intelligent Automation for Cloud

Web Hosting: Mason Home Page Server (Jiju) Service Level Agreement 2012

What s New in Release 9.2 Martin Adamčík

itsmf ITIL V3: Accelerate Success with Tools Maria A Medvedeva, PMP, ITIL Regional Director CA, Inc. itsmf Middle East Board of Directors

SIEM Solutions from McAfee

Trust in the Cloud. Mike Foley RSA Virtualization Evangelist 2009/2010/ VMware Inc. All rights reserved

NetAlly. Application Advisor. Distributed Sites and Applications. Monitor and troubleshoot end user application experience.

vrealize Introducing VMware vrealize Suite Purpose Built for the Hybrid Cloud

Secure Foundations: Why RHEL isn t just another Linux distribution

A guide for assembling your Jira Data Center team

ORACLE DIAGNOSTICS PACK

RSA Solution Brief. Managing Risk Within Advanced Security Operations. RSA Solution Brief

Security Architecture

Managing Performance in Liferay DXP: An Overview of Liferay Connected Services

Revisions to the National Board Certification Process

Secure Science DMZ using Event-Driven SDN. Technical Solutions Cisco

Riverbed. Rapidly troubleshoot critical application and network issues using real-time infrastructure visualization and monitoring.

Getting Started with Cybersecurity

SecureVue. SecureVue

(Office 365) Service Level Expectation

Welcome to Staying Ahead Webinar

9.2(1)SU1 OL

Manufacturing security: Bridging the gap between IT and OT

Installation & Basic Configuration

10 BEST PRACTICES TO STREAMLINE NETWORK MONITORING. By: Vinod Mohan

Unifying the Distributed Enterprise with MPLS Mesh

NOAA TICAP. Robert Sears NOAA/OCIO/SDD/N-Wave

Implementing ITIL v3 Service Lifecycle

Oracle Fusion Middleware

What To Ask Your SD-WAN Vendor

Network Management Functions - Fault. Network Management

Using Event-Driven SDN for Dynamic DDoS Mitigation

RSA Advanced Security Operations Richard Nichols, Director EMEA. Copyright 2015 EMC Corporation. All rights reserved. 1

Introducing Cisco Network Assurance Engine

Cisco Prime for Enterprise Innovative Network Management

Enhanced Threat Detection, Investigation, and Response

WELCOME TO ITIL FOUNDATIONS PREP CLASS AUBREY KAIGLER

Industrial Defender ASM. for Automation Systems Management

by Cisco Intercloud Fabric and the Cisco

DATA SHEET RISK & CYBERSECURITY PRACTICE EMPOWERING CUSTOMERS TO TAKE COMMAND OF THEIR EVOLVING RISK & CYBERSECURITY POSTURE

Adopting Modern Practices for Improved Cloud Security. Cox Automotive - Enterprise Risk & Security

Gain Control Over Your Cloud Use with Cisco Cloud Consumption Professional Services

10 KEY WAYS THE FINANCIAL SERVICES INDUSTRY CAN COMBAT CYBER THREATS

ITIL Event Management in the Cloud

Transforming the Cisco WAN with Network Intelligence

WAN Application Infrastructure Fueling Storage Networks

Meraki MX Family Cloud Managed Security Appliances

Meraki MX Family Cloud Managed Security Appliances

FIVE BEST PRACTICES FOR ENSURING A SUCCESSFUL SQL SERVER MIGRATION

STRATEGIC PLAN. USF Emergency Management

Monitoring and Troubleshooting Smaller Office Networks with Savvius Insight

SOC 3 for Security and Availability

How Security Policy Orchestration Extends to Hybrid Cloud Platforms

IPv6 on Campus. The stuff you need to know

Sparta Systems TrackWise Solution

Automating the Software-Defined Data Center with vcloud Automation Center

Intelligent Cybersecurity for the Real World Scott Lovett Vice President, Global Security Sales

Virtualized Network Services SDN solution for service providers

TALK. agalaxy FOR THUNDER TPS REAL-TIME GLOBAL DDOS DEFENSE MANAGEMENT WITH A10 DATA SHEET DDOS DEFENSE MONITORING AND MANAGEMENT


Risk: Security s New Compliance. Torsten George VP Worldwide Marketing and Products, Agiliance Professional Strategies - S23

Contact Center SIP Migration SYNERGY DRIVES SUCCESS

The Modern SOC and NOC

Cisco Technical Services Advantage

Oracle Taleo Cloud for Midsize (Taleo Business Edition) Release 17B2. What s New

Cisco Tetration Analytics

To ITIL and Beyond: Operational Discipline via Process

Pragmatic Data Security. Rich Mogull Securosis

Service Assurance in Virtualized Data Centers. A foundation for cloud services and the Software-Defined Data Center (SDDC)

Using ITIL to Measure Your BCP

Nexthink V5: What is New?

Forescout. eyeextend for ServiceNow. Configuration Guide. Version 2.0

Cisco Integration Platform

IBM Vulnerability Management Service

Open-Falcon A Distributed and High-Performance Monitoring System. Yao-Wei Ou & Lai Wei 2017/05/22

FRONT USER GUIDE Getting Started with Front

SDN, SD-WAN, NFV, VNF I m confused!

DATA SHEET RSA NETWITNESS PLATFORM PROFESSIONAL SERVICES ACCELERATE TIME-TO-VALUE & MAXIMIZE ROI

BUILDING AND MAINTAINING SOC

Session 408 Tuesday, October 22, 10:00 AM - 11:00 AM Track: Industry Insights

RSA IT Security Risk Management

Smartsheet for Jira Visibility is the Key to Velocity

Introduction to Cisco UCS Central

Visual TruView Unified Network and Application Performance Management Focused on the Experience of the End User

Data Center Automation

AdvisorSLA. The next IP SLA generation Solution. Advisor SLA. Network & Application Performance Monitoring Solution.

STRATEGIC PLAN

Optimizing Pulse Secure Access Suite with Pulse Secure Virtual Application Delivery Controller solution

Implementing CiscoWorks LMS 4.0 (CWLMS)

Level 3 SM Enhanced Management Thresholds and Alerts Customer FAQs

Architecting the Right SOA Infrastructure

WHY LEGACY SECURITY ARCHITECTURES ARE INADEQUATE IN A MULTI-CLOUD WORLD

Transcription:

GlobalNOC Services Update 2015 Internet2 Global Summit

Annual Report http://globalnoc.iu.edu/annual-report/2014/ 4/28/15

Service Desk Year in Review: Welcomed ARE-ON and OSHEAN to the GlobalNOC Family All I2 FootPrints Projects Consolidated Into 1 = 1/5 of the Former Notifications Grown by 4 Staff and 1 Robot April 28, 2015

Service Desk Year in Review: Conducted DR Exercise in Early December 2015 with Positive Result Created and Implemented a Major Incident Communication Policy April 28, 2015

Service Desk Activity Metrics for 2014 1.9 million alarms/year ~ 5200/day 30,000 tickets created/year ~ 82/day 15,600 phone calls received/year ~ 43/day 264,000 e-mails sent and received ~ 720/ day April 28, 2015

Year Ahead: Service Desk Pursuing ISO 20,000 certification Why? By When? What Will the Net Effect Be?

2015 Priorities

2015 Focus Areas

Automation

Goal Find the worst things to do by hand. Make a machine do those things. Things that are: Dangerous Slow Annoying

Focus Areas Business Processes on-call button auto-assign issues auto-notify auto-discover devices in a new network Reporting How many times did we call an engineer? Config automation alerting on config drift generate template config for new boxes push & pipeline Incident Advisor auto-fix hints Annoying

Service Management

Goal MINIMIZE unplanned work confusion inconsistency Stay flexibile, agile, and custom

Huh? STANDARDIZE: for processes where consistency is most important ORGANIZE: a simple lightweight structure where custom and novel work happens

2 Parts Part 1: ISO/IEC 20000 Certification Sparked by Internet2 effort, working to reach certification Aligned with ITIL Incident Management Change Management Capacity Management Availability Management etc

2 Parts Part 2: Other service-level improvements Service Dashboard (end users, network owners) Prioritize improvements Faster Turn-up Change Management

So what It s not good enough anymore to talk about boxes and circuits. Everything is more complicated now. We don t deliver networks, we deliver services Requires rigor to make sure those services work, and agility to make sure those services evolve quickly

example What s the availability of everyone s IP Service for Internet2? complexities: multiple sessions connectors back each other up Let s define available! First, a service is down if packets have to be retransmitted So: Up = ALL BGP sessions are established, no loss known At Risk = At least 1 session is down, but at least one route is still in the routing table Down = no routes

Data Model Entity Routed R&E Service BGP Routing Data Peer State Routes BGP Peering BGP Peering ASN Peer IP SLA Reporting Engine Weekly Report

Service Awareness

Corresponding process S y s report generated SLA met? no send to NPT N T P yes outage in GRNOC control? yes recommend changes Dir of Op no Approve Changes? no Recommended Changes N et w or k O w n er Published Report yes Published Report with Outline of Changes

Work Management

Goal Get coherent system to manage our work systems tools disciplines processes In other words, track, prioritize, and measure everything we do.

This means For the people who do work: "Where do I go to see everything I'm supposed to be doing? What should I be doing first? For the managers: "Are we too busy? Are we working on the right things? For the strategic view: "Are we doing well/better than a year ago?

How does work get tracked Tickets Emails Post-its Workflow records Meeting docs Many todo lists

The future Review ticketing Look at structured processes Project management Unified view of workload and results

Recruiting

Goal Make sure we have enough talented people now and 5 years from now

Parts Attract & hire Pipeline Get more students in Improve Development

Attracting How do we attract experts that fit? Challenges Scary job descriptions People don t know what R&E or GlobalNOC does Indiana - No really, it s a nice place!

Pipeline Getting people into the pipeline Students have worked very well Summer of Networking How do we get more? Keeping the talent growing Develop people well Level up!

What s New With GlobalNOC Software?

SNAPP High performance SNMP measurement/visualization tool 3 major revisions, project began in 2002 RRDtool based storage High performance SNMP data collector Web-based data browser and Web-services API

SNAPP 4 with TSDS Moving from RRDtool to a non-relational database TSDS Database based on MongoDB Sophisticated query language: TSQL Rich meta-data integrated with data. Allows for powerful queries; long-term longitudinal analysis General Time Series Data Store, not just SNMP data Ex. NOC activity metrics / key performance indicators; optical characteristics (light levels, loss, etc.); environmental/power data; aggregate flow data; OWAMP; BWCTL

Alertmon Improvements Alert Collapsing Collapse services on a host when host is not reachable Root cause analysis based on dependency graph allows for intelligent collapsing of alerts and suggests root cause of multiple alerts. Monitoring of management VPN endpoints to collapse alerts behind VPN when management network access is impaired

NOAA Operations Portal High-level overview of network status Operational Status Map Performance Measurement Overview Operations Calendars Detailed data pulled from other GlobalNOC tools Multi-network aggregate views

SciPass Science DMZ Campus Networks are enterprise infrastructure large number of small flows security is a required capability not elephant flow friendly could just bypass but that doesn t provide required security what about performance assurance? 19

Combine OpenFlow Switch Bro PerfSonar create reactive system default to secure / slow path use IDS to control what goes on fast path Approach

Reactive Bypass Performance 64 ms - time to detect and bypass 250 ms - doubled throughput of firewall 1.5 sec - same throughput as no firewall

Find Out More Software Page https://globalnoc.iu.edu/sdn/scipass.html Code Repository https://github.com/globalnoc/scipass email globalnoc@iu.edu ebalas@iu.edu

FlowSpace Firewall Developed in partnership with Internet2 Open Source Software OpenFlow Hypervisor Slice OpenFlow 1.0 based on VLAN ID Currently running on Internet2 AL2S Other deployments growing. We re interested in helping get FlowSpace Firewall running on your OpenFlow network More Information/Download: http://globalnoc.iu.edu/sdn/fsfw.html/

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback