Watch the full OnDemand Webcast: http://bit.ly/tuneupnetwork
It’s time to make good on that new year’s resolution. Admit it, in a moment of weakness as the clock hit midnight you resolved to dig in and tune up your corporate network in the new year. Well, the new year is already passing quickly by, so if you haven’t yet made good on that resolution, here is your chance. In these slides from our web seminar, we return to the basics – overall network evaluation, baseline measurements and comparisons, typical yet troublesome network issues, sharing bandwidth in the presence of time-sensitive applications, security, and overall network monitoring and reporting, just to name a few. We focus on practical issues and practical methods for improving the overall health of your network.
In these slides, we will cover:
- Critical elements to consider when evaluating your network
- Common pitfalls and how to avoid them
- Developing and using network baselines
- Optimizing network usage in the presence of competing applications and protocols
- Monitoring and reporting on your well-tuned network
What you will learn:
1. How and where to find the data you need
2. How to automate network monitoring and analysis to ensure the success of your tune up
3. How to quickly diagnose problems when things go wrong
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
Tune Up Your Network For The New Year With WildPackets
1. Tune Up Your Network For The New Year Jay Botelho Director of Product Management WildPackets jbotelho@wildpackets.com
2. Agenda What to consider Resolve to develop baselines Common pitfalls The network battlefield Monitoring for life Troubleshooting as a last resort Company overview Product line overview
4. Know Your Network Traffic levels per segment Mbps? Packets per second? Packet size distribution? Traffic types per segment Data? VoIP? Video? Baselines Establish and re-establish Use automated analysis to identify anomalies
18. 5 Most Common Networking Problems Cabling issues Connectivity problems Configuration Hardware malfunctions Excessive network collisions Collisions are normal and expected Early collisions – first 512 bits – recovery automatic (2 – 3 ms) Late collisions – recovery 100x longer – eg. NIC stuck in TX mode Software problem DNS configuration WINS configuration Duplicate IP addresses
21. Network Traffic: Quantitative Analysis Most network engineers are concerned about the amount of traffic on their networks Utilization (percentage of bandwidth) Throughput (bits or bytes per second) You also need to be concerned about individual utilization components How much bandwidth and throughput can be attributed to each application or process? Clarifies which application traffic may need to be tuned or controlled How well or poorly will the baseline (trended) behavior of each application interact with VoIP Don’t forget to also consider the reverse case – VoIP’s impact on existing applications
23. Network Traffic: Qualitative Analysis The quality of your network traffic is potentially more important than its quantity when it comes to VoIP Many traffic streams are “bursty” in nature Burstiness my occur over long period of time, or may consist of rapid, recurring traffic spikes Prolonged rises in utilization may decrease the number of calls that can occur simultaneously Sharp spikes may cause very noticeable quality issues with ongoing calls Your baseline monitoring should consider not only averages and long-term trends, but also the short-term peaks and dips that characterize your traffic flow
24. Assessing the Monster's Impact While traditional network applications are very tolerant of jitter, latency, and even some degree of packet loss, VoIP is very sensitive to these troubles Levels of jitter, latency, and packet loss that would be easily tolerated on a data network can be devastating on a converged VoIP network Pre- and post-deployment network assessments are critical You must understand your network’s ability to accommodate VoIP Current latency, jitter, and packet loss QoS capabilities Current bandwidth utilization (is there any room for VoIP) You must maintain a constant vigil after deployment to watch for imminent troubles
25. The Impact of "Just One More Call" Although a network link may be able to support a number of concurrent calls, one additional call is often enough to cause quality problems… 1st Call 2nd Call x2111 x1111 x2112 x1112 3rd Call x2113 x1113 Example: The WAN can support 2 simultaneous calls. What happens when a third call is attempted??? Call #3 Causes Poor Quality for ALL Calls
27. Changing Methods - Data Recorders Servers IDS/IPS System Post-incident Real-time
28. Strategy for Monitoring 10G Ethernet Which of the following apply to your strategy for monitoring 10G segments? (Select all that apply) SOURCE:Benchmarking Network and Security Operations: Tools, Processes, and Enabling Technologies Study, 2009, Enterprise Management Associates. n=124
29. 10Gig Network Analysis Workflow Identify Key Analysis Pts Deploy 24x7 Monitoring Alarms/Alerts At 10Gig – 24x7 Is Essential Problem? NO YES Rewind Data Analyze Tune if Necessary
31. Network Recording,Real-Time Statistics, Forensics Search Display TimeLine Graph during capture-to-disk Utilization (Mbits/s) Packets/s unicast/multicast/broadcast Packet sizes VLAN/MPLS Protocols Company and Product Line Overview
32. A Picture is Worth a 1000 Words A graph of latency, jitter, or packet loss can speak volumes about network health, either for proactive or reactive troubleshooting Overlaying this graph with a graph of utilization or total throughput can reveal even more about the causes of VoIP troubles
34. Visual Expert Provides Proof Two requests for data, two quick TCP Acks, but then a long delay before the server sends the requested data ACK fast = Network fast Then the Data gets returned much later Requests and Acks Data slow = System slow
36. Corporate Background Experts in network monitoring, analysis, and troubleshooting Founded: 1990 / Headquarters: Walnut Creek, CA Offices throughout the US, EMEA, and APAC Our customers are leading edge organizations Mid-market, and enterprise lines of business Financial, manufacturing, ISPs, major federal agencies,state and local governments, and universities Over 7,000 customers / 60+ countries / 80% of Fortune 1,000 Award-winning solutions that improve network performance Internet Telephony, Network Magazine, Network Computing Awards United States Patent 5,787,253 issued July 28, 1998 Different approach to maintaining availability of network services
37. What We Do Provide network visibility and intelligence … WatchPoint, OmniPeek, OmniEngines Expert systems – we find the problems for you Superior drill-down capability – trouble-shoot from anywhere Flexible, customizable, extensible – leverage your investment Professional services, training, best practices For all network segments … Data center to desktop to remote office LAN, WAN, Wireless … HTTP, Email, Database, VoIP, Video … To … Network engineers; IT Management; Developers
39. With accurate visibilityinto the network…IT staff can improve: End-user Productivity Network Performance Application Performance Security Compliance
42. WatchPointCentralized Monitoring for Distributed Enterprise Networks High-level, aggregated view of all network segments Monitor per campus, per region, per country Wide range of network data NetFlow, sFlow, OmniFlow, SNMP Web-based, customizable network dashboards Flexible and detailed reports
43.
44. Omnipliance Network Recorders Captures and analyzes all network traffic at the source 24x7 Runs our OmniEngine intelligent probe software Generates vital statistics on network and application performance Intuitive root-cause analysis of performance bottlenecks Intelligent data transport Network data analyzed locally Detailed analysis passed to OmniPeek on demand Summary statistics sent to WatchPoint for long term trending and reporting Efficient use of network bandwidth Expert analysis speeds problem resolution Fault analysis, statistical analysis, and independent notification Multiple Issue Digital Forensics Real-time and post capture data mining for compliance and troubleshooting
45. TimeLine Network Recorder11.7Gbps Sustained Capture Fastest network recording and real-time statistical display — simultaneously Network statistics display in TimeLine visualization format Rapid, intuitive forensics search and retrieval Historical network traffic analysis and quick data rewinding Several pre-defined forensics search templates making searches easy and fast A natural extension to the WildPackets product line Turnkey bundled solution
47. OmniPeek Network Analyzer OmniEngine Manager Connect and configure distributed OmniEngines/Omnipliances Comprehensive dashboards present network traffic in real-time Vital statistics and graphs display trends on network and application performance Visual peer-map shows conversations and protocols Intuitive drill-down for root-cause analysis of performance bottlenecks Visual Expert diagnosis speeds problem resolution Packet and Payload visualizers provide business-centric views Automated analytics and problem detection 24/7 Easily create filters, triggers, scripting, advanced alarms and alerts
48. Key Differentiators High-level network monitoring to root-cause analysis Single solution for today’s converged networks Wired, Wireless, 1GB, 10GB, VoIP, Video, TelePresence, IPTV Reduce and even eliminate network downtime Automated monitoring 24x7 Speedy resolution of network bottlenecks Improve network and application performance Uniquely Extensible Platform – tailored to your needs Plug-ins and APIs for integration and customization
49. Thank You! WildPackets, Inc.1340 Treat Boulevard, Suite 500Walnut Creek, CA 94597(925) 937-3200
Notes de l'éditeur
NetFlowNetFlow is a network protocol developed by CiscoProprietary protocol that runs on Cisco IOSNetFlow accounts for all traffic going in and out of the routerTransit trafficTraffic destined for the routerEach NetFlow record contains a wide variety of information about the flowNetFlow never includes the payloads Sampled NetFlow can be configured for use on busy networks – not 100% accurateIPFIXInternet Protocol Flow Information eXchangeAn emerging, IETF (standard) version of NetFlowBased on NetFlow v9Predicted to rapidly become the industry standardsFlowA standard (RFC 3176), sampling-based mechanism to capture network traffic dataApplicable to higher speed networks (gigabit speeds or greater)An sFlow agent compiles flow recordsFlow records are based on Statistical packet-based samplingTime-based sampling of interface countersStatistically based – not 100% accurateJflowSimilar functionality to NetFlow but provided by JuniperData sampled at a globally configured rateStatistically based – not 100% accurateOmniFlowWildPackets proprietary flow analysis and recording mechanismAnalysis of each and every packetNot statistical – 100% accurateSignificantly exceeds the flow records from other mechanismsProvides detailed flow analysis above Layer 3VoIP/VideoApdexCorrelated event analysisCorrelated to packets for instant troubleshooting using deep packet inspection – a complete solution