Unit 8 Network Monitoring Flashcards
Used by network administrators typically to monitor
availability of network services, functionality of network
interfaces, status of critical hardware systems, CPU, memory,
or bandwidth
NMS Network Monitor System
Monitors network for problems caused by overloaded or
crashed servers, network connections or other devices
Network Monitor system
Other stats for Network monitoring system
service or device availability
Network response time
Network route analytics
5 basic functions of Network monitoring system
Discover
Map
monitor
Alert
Report
First function is to find devices on network and how they are connected
Include library of monitoring templates, which define how to monitor a
device
Automatically assigns appropriate device role to each discovered device on
discovered device list. Device roles are type and vendor specific.
Discover Function
Ability to visualize network
NMSs generate network maps display devices and up-to-date status
Many NMSs require significant amount of manual processing to create
network map
Some merely provide drawing tool and rely on network administrator’s
knowledge to map out network
Map Function
Keeps an eye on network; large selection of monitors
NMSs provide turn-key device roles that define what to monitor
Network administrators can modify device roles or create new one
As starting point, monitor the “big 5” for any device on network; Ping,
availability and latency, CPU, memory, disk and interface utilization
Most network monitoring tools provide monitors for other hardware
components like fans and power supplies in switch, and even monitor
temperature in wiring closet
Monitor Function
Notify network administrators when something goes wrong
Deliver alerts via email, text and logging
Threshold based alerting enables network admins to respond to problems
before they impact users, or applications
Can be configured with time element or blackouts
Alert Function
is automated messaging system that sends messages when event
affects network device
Syslog
Provide real-time and historical monitoring data
Enables network administrators to
Validate network designs are delivering desired results
Expose trends that could impact ability of network to deliver performance demanded by
users, applications and mission
Report Function
Deliver monitoring information in webpages called
Dashboards
Detects anomalies with aim of catching hackers before they do
real damage to network
* Scan, audit, and monitor security infrastructure for signs of
attacks in progress
* Work by either looking for signatures of known attacks or
deviations from normal activity
* Placed on network in order to monitor traffic traversing it
* Alerts system administrators an attack may be happening
Intrusion Detection System (IDS)
One of most widely used protocols for monitoring
* Standard protocol that collects data from almost any
network attached device, including: routers, switches,
wireless LAN Controllers, wireless access points, servers,
printers and more
* Most network devices today have SNMP agents installed in
them
Simple Network Management
Protocol (SNMP)
Key functions of SNMP management tool include
querying
agents, getting replies from agents, establishing variables
in agents, and recognizing asynchronous events
Within NMS, the SNMP manager is responsible for
establishing communications with SNMP agents
