Best Practices for Modeling and Managing Today's Network - Part 2
August 23, 2016

Stefan Dietrich
Glue Networks

Share this

Start with Best Practices for Modeling and Managing Today's Network - Part 1

New Features, New Benefits

Network features and related policies can be mapped using these four constructs:

Domains: Apply configuration settings consistently across multiple devices. An example is a QoS configuration which may be different by business units, hence, different QoS domains would allow network engineers to assign QoS policies across all devices associated with specific business units in each region.

Features: Give the configuration settings for one device at a time, enabling functionality that the device can provide by itself. A good example is the configuration of a device-specific routing table where the device should forward incoming traffic.

Globals: Apply these configuration settings throughout the network; these are the same for every device in the network. A good example is NTP (network time protocol) where the central architecture team is defining the only NTP servers permissible for the network.

Custom: There will always be exceptions, so not everything may be practical to model in a general feature or domain concepts, especially specific exceptions to single devices only. For example, a specific set of Access Control Lists (ACLs) may only be needed on a single device. For these cases where no other dependencies with other features exist, just applying configuration data to a device may be acceptable. 

Whatever network policy is needed can be built using a combination of these constructs. Inherent interdependencies can be flagged by network engineers early, so that a network management system can deploy them in the correct sequential order, optimally applying these features to individual devices as well as across the network to create the target policy. Abstracting network functionality into these types of models allows network engineers to re-focus on the actual network architecture and focus less on the mechanics of the management of configuration data. These lead to a number of benefits:

Any hardware, any manufacturer: How a device is configured is now based on how it should perform, by itself or in concert with other devices. As a result, the actual hardware itself, its specific OS/firmware or even the manufacturer no longer matters, as long as the device is capable of performing the desired functionality.

Logical separation: NetOps is logically separated from implementation and maintenance (DevOps). For example, architects can define the features, domains and global settings needed for a given network infrastructure, assemble them into logical groups and resolve any interdependencies. They can then be tested and validated by, for example, the security team. The assembled features, domains and globals are handed over to the operational team, who will deploy them onto the network and manage them over their lifecycle.

Communal wisdom: When networks are modeled through logical constructs, it allows for a wide exchange of best-practice reference designs based on common user requirements. Different teams of architects can exchange information about the models they use for specific network functionalities without having to revert to low-level configuration settings. This opens the possibility of creating network engineering communities that exchange specific models based on their desired use cases with clearly defined interdependencies and conflict resolution against other models.

Managing the Modern Network

What is needed to create a next-generation network management tool? Nothing less than the development of a sophisticated network-aware orchestration engine that is able to detect any interdependencies, resolve them and deploy network policies automatically over the network.

First, consider these non-technical challenges:

■ Users need to firmly believe that the logical network model will, in fact, result in the correct configuration of all devices in the network. Many network engineers are still most comfortable with command line interface (CLI) created from scripts and templates.

■ The primary focus of network engineers is on proper device configurations and ensuring the device is performing as intended. Any next-generation tools have been designed with a network engineering focus in mind, allowing network engineers to use the system with a much shorter learning curve and minimal programming expertise.

■ Get the buy-in of DevOps and NetOps teams, who may be skeptical to trust device configuration to a new management tool.

Technically speaking, here's what today's management tools should include:

■ Management to handle the high degree of customization needed.

■ Zero-touch provisioning so that the onboarding of new devices into the system is as fluid as possible, allowing generalist IT staff to install routers and trigger device provisioning automatically.

■ The ability to limit or flag unauthorized manual device configuration changes with automatic remediation when needed.

■ Configuration preview that allows dry runs of new configurations to understand all changes that may have to be performed, even on other network devices when needed.

■ Step-by-step verification of device provisioning actions with automatic revert on errors.

A New Approach

Organizations can bring their networks into present-day functionality with tools that provide complete abstraction of network functions while providing deeply integrated model interdependency verification, deployment previews and layer-by-layer provisioning. For example, replacing an existing device with a newer model, even if it's from a different vendor, can be detected and automatically provisioned. Such solutions that can resolve any potential conflicts and interdependencies, even across vendors, are becoming increasingly important as network devices are virtualized on common platforms and the individual strength of vendor-specific solutions are combined into one multi-vendor solution.

A model like this that addresses the entire stack provides clarity to architecture and implementation teams because the handoff points are well defined. This, in turn, leads to faster implementation of business requirements and higher reliability. Such a system creates quicker identification of and recovery from network outages, which increases customer confidence and satisfaction and saves money from unexpected downtime.

Dr. Stefan Dietrich is VP of Product Strategy at Glue Networks.

Share this

The Latest

April 26, 2018

The growing urgency of enterprises to digitally transform their business operations and enhance customer experience was the driving force behind much of the growth in outsourcing innovation, contract awards and spending in 2017, according to the ISG Momentum Annual Report ...

April 25, 2018

Organizations are embracing digital transformation, as 89% have plans to adopt or have already adopted a digital-first business strategy, according to the 2018 IDG Digital Business Survey ...

April 24, 2018

Managing emerging technologies such as Cloud, microservices and containers and SDx are driving organizations to redefine their IT monitoring strategies, according to a new study titled 17 Areas Shaping the Information Technology Operations Market in 2018 from Digital Enterprise Journal (DEJ) ...

April 23, 2018

Balancing digital innovation with security is critical to helping businesses deliver strong digital experiences, influencing factors such maintaining a competitive edge, customer satisfaction, customer trust, and risk mitigation. But some businesses struggle to meet that balance according to new data ...

April 19, 2018

In the course of researching, documenting and advising on user experience management needs and directions for more than a decade, I've found myself waging a quiet (and sometimes not so quiet) war with several industry assumptions. Chief among these is the notion that user experience management (UEM) is purely a subset of application performance management (APM). This APM-centricity misses some of UEM's most critical value points, and in a basic sense fails to recognize what UEM is truly about ...

April 18, 2018

We now live in the kind of connected world where established businesses that are not evolving digitally are in jeopardy of becoming extinct. New research shows companies are preparing to make digital transformation a priority in the near future. However most of them have a long way to go before achieving any kind of mastery over the multiple disciples required to effectively innovate ...

April 17, 2018

IT Transformation can result in bottom-line benefits that drive business differentiation, innovation and growth, according to new research conducted by Enterprise Strategy Group (ESG) ...

April 16, 2018

While regulatory compliance is an important activity for medium to large businesses, easy and cost-effective solutions can be difficult to find. Network visibility is an often overlooked, but critically important, activity that can help lower costs and make life easier for IT personnel that are responsible for these regulatory compliance solutions ...

April 12, 2018

This is the third in a series of three blogs directed at recent EMA research on the digital war room. In this blog, we'll look at three areas that have emerged in a spotlight in and of themselves — as signs of changing times — let alone as they may impact digital war room decision making. They are the growing focus on development and agile/DevOps; the impacts of cloud; and the growing need for security and operations (SecOps) to team more effectively ...

April 11, 2018

As we've seen, hardware is at the root of a large proportion of data center outages, and the costs and consequences are often exacerbated when VMs are affected. The best answer, therefore, is for IT pros to get back to basics ...