Benefits of Network Management Tools

Benefits of net profit Management Tools1. IntroductionThese be the various electronic meshwork wariness tools apply by profits manager to verify network linkup, proctor network parcel of lands, analyse captured packets, troubleshoot network connectively failure, diagnosing network slow performance and identify source of incident in order to gear up the network available 24 hours seven days a week.1.1 Benefits of meshing Management ToolsNetwork manager benefits from network monitoring tools in so many right smarts as described belowEasy migration from old legacy application to new technologiesFor typesetters caseful when network executive developor is migrating form a legacy IOS ground application to LWAPP using Airwave Management Platform softw be tool for wireless network instruction, net work administrator is exitd with centralized control for Wi-Fi networks where roaming entropy and instruction as well as historical entropy are kept as airwave gives a commo n platform to manage the devices. This is right to the network manager beca wasting disease it makes it easy for migration from old legacy applications to new technologies and makes it easy to monitor the network usage only the condemnationQuick identification of network or waiter failure when the server of a portion of the network is down, before users get to nonice the failure network administrator wins a warm and rectified the fault and providing the network manager with means of monitoring and providing network availability round-the-clock.Using network-monitoring tool like ipMonitoring with attributes such as such as reporting, user tracking, gateway point configuration circumspection and rogue AP discoery, network administrator is able to monitor any networked device on the corporate intranet and transmission control communications protocol/IP LAN and receive alerts immediately depending the administrators configuration of receiving alerts this crumb be received thr ough alarm, e-mail, or third-grammatical constituenty software when a connection fails.Diagnosis and troubleshooting,Network monitor atomic number 50 be apply to diagnose why the server computing machine is not communicating with the clients computers on the network on a topical anesthetic area network, for face network administrator can configure network monitor to capture solely the frames on the network, this includes source and destination plow of the computer sending and receiving frames, protocols utilize as well as part of message send. Net work administrator analyses this information to locate the source of problem on the network and troubleshoots it.Checking for connectivity of a computer online for shell using ping command to check if a computer is online helps network manager for representative when user calls and utter they can logon to networked computer to troubleshoot and diagnose the network manager uses ping to find out if the computer in on the network or not. This is beneficial to the administrator be own it helps him to identify where the problem is originating.1.2 Structure of management informationStructure of management information is a network component apply in network management which is employ in simple network management its main role is to define set of module identity, object type and notification type. Structure of management information shows how related managed objects such as object names, types of info that can be stored in an object and how its transmission over the network for example sue done to retrieve vale of an object with codes2. Use Datagram communications protocol user entropygram protocol is a transmit layer protocol that is apply to send packets to computers in networked environments. exploiter Data communications protocol has the following advantages over Transport Control protocolConnectionlessWhen communicating with two computers on the network, user data protocol doesnt treat connection m ingled with the two client computers but just transfers data as its receivedNo Connection StateUser data protocol doesnt maintain and doesnt keep track of any parameters such as buffers move, congestion control and rate which data is transfer for example when used in server environment, user data protocol is able to support more active clients if a particular application is run over it because it doesnt acknowledge packets being sent or received.Small packet header over headUser data protocol has got a smaller header of 8bytes of overhead making it blistering in transferring dataUnregulated send rate, user data protocol doesnt have congested control mechanism and data is sent at rate, which it has been generated by the application in use for example taking into account the CPU, clock rate at the source of data.2.1 Applications layer protocol used by User data protocols as Transport layer protocolDomain Name ServiceIs a database like that converts the computers fully qualified doma in name that are easy to be remembers such as www.yahoo.com into IP address such as 201.171.25.0. 6 that are then used by computers to connect/ state with to each one otherS squading multimediaThis is the continuous transfer of video, voice and digital data that is received and showed/displayed in real time for example podcast and webcastRouting protocolRouting protocol is used to determine which path to be used to sent/ transmit data packets across a network.2.2 Reasons why UDP is preferred over transmission control protocolDomain Name ServiceUser data protocol is preferred over transport control protocol because its used by DNS for name queries and because the information exchange between UDP and DNS is small in size for example the packet size sent through UDP is not greater than 512 bytes. streaming multimediaStreaming multimedia its used by UDP because it compresses audio files in to small packets of data that makes it easy to transmit and continuously streaming and transmitt ing audio files whenever their audio data drops. This doesnt break or cause delay on audio broadcast. The streamed data is sent by the server application to the client application stores the stream data the then displays the data received in real time or playing the voice streamed files as soon as its buffered.Routing protocolOn routing protocol, User data protocol is preferred because routing table updates are sent periodically and some of the data is lost a long the way and updates need to be resent so its up to date on network layer which is unthinkable with transport control protocol2.3 Controversial use of UPD in multimedia applicationsThe use of user data protocol for streaming multiple media application is controversial because user data protocol doesnt have congestion control which is overmuch needed to prevent the network from going into a state in which less or no work can be done, for example if a users sends high figure rate video are sent without using congestion con trol, user depart be unable to see the video messages because of the packet overflow at the router.2.4 Adaptive congestion control schemeOne scheme that would force the use of adaptive congestion control is real time communication scheme which has construction reliability into applications that will force the use of congestion control, for example in mobile application where congestion control is build though the application run over user data protocol, it acknowledges and retransmit packets that get loss during transmissionApplications that perform congestion control user the network more efficiently for example with bits rates being controlled, the network will not go into a state where it can not be used2.5 Advantage of Adaptive congestion schemeBetter performance of the network for example in the case of video when small bit are sent and controlled, the performance improves as the bandwidth will be enough to support bit ratesIt ensures that all packets sent reach destination3. Exchange between Dhcp emcee and Client ComputersDHCP Server and Client ComputersSee Appendix (i)For clients to receive IP addresses from dhcp servers TCP/IP need to be con figured to get IP addressed automatically on the TCP/IP properties dialogue box.Dhcp client computers that are configured to obtain IP address automatically request and receive IP configuration upon booting the client computer.Dhcp clients get IP addresses and other configuration each time the client computers are lend uped and join the network. Dhcp server assigns IP address to a client from a predefines scope for a given duration of time and if that duration expires the IP address is released to the scope and can be designate to other client but if the duration is longer than the lease time, the client requests for and extension before the lease expires.3.1 Router and ComponentsA router is a device that connects one or more computer to create a network environment for example a modem. A router has the foll owing major componentsInput portIs the point is direct connection for physical link and it is the point at which incoming packets enters the port. Input port provides functions such as performing the data link layer encapsulation and encapsulation, a route lookup and sending packets to output port via switching fabric as well as proving quality of service guarantees input port furcate the in a predefined service levelOutput portOutput ports stores packets that are forward via the switching fabric and transmits or schedule packets for service on an output link performing both the reverse data link and physical link functionality as done in input port shift get wind FabricThis connects input ports and output portsRouting dealorExecutes routing protocols, creates and forward routing tables which is used in packet forwarding and performs management functions within the router.3.2 Internet Protocol translation 4Internet protocol random variable 4 is the protocol that is widely in us e in most corporate networks and it uses network layer protocol and its used as internetwork layer protocol on the internet3.3 Internet protocol version 6Internet protocol version 6 is the update version of internet protocol version 4 with much more address space. Its mostly used on the internet bone in Asian countries.Protocol Structure of an IPV4 headerSee Appendix (i)Protocol Structure of an IPV6 headerSee Appendix (iii)Due to the depletion of internet protocol version four and lager routing tables, internet version 4 has been updated to version 6 that provides better certification, more address space. This has made internet version 6 more advantageous in some ways as discussed below.Internet protocol version 6 address space3.4 Advantages of internet version 6Internet protocol version 6 has got more address space as compared to internet version 6 for example version 6 has got 128-bit address space which allows for flexible entry of multilevel, hierarchical and routing infrastr ucture which is not that possible with internet protocol version 4Internet protocol version 6 has got in built credential which is beat and mandate, its offered in all implementation and has no changes the application, for example certification causes such as authentication on packet signing , data encryption and end-to end DHCP, DNS and IPv6 mobility is provided for in security model.4. Wired eq PrivacyWEP is the short term for Wired Equivalent Privacy for a security protocol used in wireless local anesthetic area network that operates at a data link layer and has a security that can be glum of and on once more as defined in 802.11b standards. This standard has been set by the Institute of Electrical and Electronics EngineeringThe main organise of tuner Equivalent Privacy was to provide security via 802.1wireless network where data is sent from one end point to another. For example Key security features of WEP was meant to offer the followingConfidentialityWireless Equival ent Privacy is used to prevent data transmitted on the network from being eavesdropped by some whom the information is not meant to be communicated. unofficial access to wireless networkWireless Equivalent Privacy used to prevent unauthorised access to the networkData integrity, to prevent the alteration of data being transmitted4.1 Advantages of Wired Equivalent PrivacyWEP uses a 2.4 gigahertz radio frequency which provides clear signal for its lower than other frequencies and can get through wall without affecting frequency.WEP is relatively cost telling for example the cost of a router and Wi-Fi card is normally below 55 which makes it cost effective for both big corporations, and home users4.2 Disadvantages of Wireless Equivalent PrivacyStatic encryption key which is used by all the devices on the network make it very easy for packets to be intercepted and crack what the key is making it very vulnerable to hackers. For example when a router is set up on the network, the encryp tion used by the router is then used by almost all the device on the networkWeak keys made it easier for it to guessed and cracked when used at the access pointInitialisation vector in WEP is also ways reused, for example if a user who connects with WEP to access wireless network uses the same key over and over changes, this key can slowly be crackedWEP has its algorithms sent in plaintext which makes it a lot easier for key streams to be determined4.3 Difference between WEP and WPAWireless Equivalent Privacy standard 802.11 and Wireless Fidelity Protected Access are different in so many ways for exampleWEP uses 128bit with 24 integrity value, while WPA used 128 bite with a 48 bit integrity value.WPA has features such as Temporarily Key Integrity Protocol which dynamically changes the keys used for encryption while Key in WEP are static and is shared by all device on the network.The combined used of 48bit integrity values and TKIP, AES makes WPA more security strong as compared to WEP.Weak keys made it easier for it to guessed and cracked when used at the access point.Initialisation vector in WEP is also ways reused for example if a user who connects with WEP to access wireless network uses the same key over and over changes, this key can easily be cracked.WEP has its algorithms sent in plaintext which makes it a lot easier for key streams to be determinedThese weaknesses among others called for a better standard to be adopted which will provide wireless network with better security and this led to the improvement of 802.1 to WPA.4.4 Wireless Fidelity Protected AccessWPA stands for Wireless Fidelity Protected Access for local area network base on the specification of 802.11. This standard was designed to improve on the security weakness of Wired Equivalent Privacy.4.5 Advantages of WPAWPA provides added authentication features to grassroots WEP which provides for stronger encryption mechanisms. The added features includes Advanced Encryption standards protoc ol as used in WPA2, Temporary key Integrity Protocol as used in WPA.When use in windows 2003 environment, WPA provides the strongest wireless security.WPA has bandaging ward compatibility for older applications that use WEP this doesnt call for upgrade.The use of 802.1x Radius servers provides administrators with means of auditing and logging incidents.4.6 Disadvantages of WPAThe set up of the pre-shared key is severe and it not beneficially to home users with less technical knowledge.It has more over head as compared to WPE.Its incompatible with pre 1998 windows operating systems and doesnt support older firmware.Its major cling is the denial of service attacks which can leave the whole network shutdown due to constant different keys that are generated and interpreted by the network as some kind of attack.4.7 Comparing WPA and WEP featuresWPA has enhanced featured that is based on WEP standard. The features in WAP include temporarily key integrity protocol and 802.1 x. This featu res provides dynamic key integrity and mutual authentication to most wireless local area networks48-bit initialisation vectorsLike Wireless Equivalent Protocol, Temporal Key Integrity Protocol uses the RC4 stream cipher provided by RSA security for frame body decryption and CRC for each frame before transmission but the difference here is that WPA has added feature Temporal Key Integrity Protocol that uses a 48bit initialisation vectors that has reduced the re-use of initialisation vectors. This has brought about data confidentiality.While WEP encryption is based on 128bit with 24 integrity value, which means the keys are of smaller size and integrity value making it easy for hackers to crack the keys as the initialisation vector seeds to WEP algorithm coded, this feature has been enhanced by the 48 bit integrity vector in WPA. Data Encryption When data packets are sent, it encrypted separately with RC4 cipher stream, generated by b4 bit RC4 key, the key consist 24 bit initialisatio n vectorPre-Packet key Construction and DistributionWPA generates a new encryption key automatically for each client, for example WPA uses unique and different key for each 802.11 frames and avoid the use of same key as in WEP. This automatic key generation makes it impossible for WPA keys to be cracked by hackers While in WEP the same key is shares by all the devices on the network is static which means due it its consistent nature, its a lot easy for the shared key to be modifiedMessage Integrity codesThe use of Michael prevents against attacks and forgeries, WPA uses a secrete 648bite authentication key that will be shared only between the source and destination where during the process of authentication tagging function takes place and message integrity code. For forgeries to be identified, the destination telephone receiver inputs source into verification predicate and creates another tag code and it this both matches then the message is considerers authentic is created to de tect bit flipping and changes to the source and destination.Unlike WEP that uses 4 byte integrity check value to the standard payload. The receiving client calculates the integrity check value and if the values do match then there is a happen that frames were not tempered with and in case dataCounter mode/ CBC-MACThis is a data confidentiality protocol used for packet authentication and data encryption. For confidentiality for example CCMP uses the advanced encryption standards in counter mode and for encryption and data integrity CCMP deals with Cipher Blocking Chaining Message Authentication Code making this standard more secure as compared to WEP which has got no encryption modeEAP encapsulation over LAN, this is the key standard use n key exchange that is not used in WEP for example this protocol allows for a four way key milkshake as well as a group key handshake while in WEP there is only a two way key handshake.The IEEE802.1x as used in WPA2 provided a sure means of authent icating and authoritative user traffic to secure networks5. A Disaster call backy PlanIs the process of restoring access to the main business applications, data, hardware and software that is required to mother the system operational, Disaster recovery Plan provides information on how to handle information that whitethorn be lost or corrupted during the disaster as well as proving team leaders with procedures of restoring information and data.5.1 Major steps in disaster retrieval processNotification procedureThis is the action interpreted by disaster team members as soon as sine qua non occurs. In the notification stage, systems can be restored functions on a limited basis. For example in a data centre when database team leader receives alert on his/her computer that a file within the database is corrupt, this alert can be sent to the team assessment team either automatically by the system or mailed to the assessment team to analyse the damage snap the extent of the damageThe a nalysis of the damaged cause should be done as soon as possible to determine the level of damage to the applications for example if it a power outrage has occurred in the data centre, the analysis should be able to detailed the applications affected, origin of the incident, work areas that have been affected and if there is another source of power to run the database the this can be powered on for example in case there is UPS backup while further investigating in the outrage is carriedActivation of the meanDepending on the damage cause by disaster and the out come of analysis, the disaster recovery team can make a decision to activate the plan. For example in the case of data centre if the entire database server is down, the team looks at the possible way that the system can be restored with a minimal time, planning for team communication procedures, then the respective team leaders will notify lag members about and start working on their respective tasks to restore the system as agreed by the team members.Execution stageRecovery process at this stage can be looked at under Sequence of Recover activities and Recovery procedures and depending on what has been defined in the data recovery plan for example in case of ordering database, this can be done manually while recovery process is doneSequence of Recovery activitiesRecover process should be carried out according the priority of each disaster and level of disaster damage from the results got from the analysis. For example if the database sever is recovered and this is the main searing business system, then this should be restored first before other servers and all the disaster recovery team should carried out the restoration process as in the disaster recovery plan,.If the business has to be transferred to another site then the critical files associated with the service has to be transferred depending on the plan. For example a plan to transport IT equipment and important data files.Recovery processThis includes having access to the damaged IT equipment in case of the data centre this could database servers, corrupt files, informing users of the applications, getting backup if its not in house, restoring critical systems such operating systems, SQL database, testing the system before if goes operational and connecting the system on the network and informing uses of the application of the success of the restoration. construct processOnes the recovery process has been usefully, the disaster team recovery embarks on the process of transferring all the data recovered back to the original system, or may be totally system that can best support the functionality of data service being offered. The disaster recovery team will continue to monitor for any reoccurrence of incidents, make the necessary network and infrastructure connections, bring down the contingency system upon which the application was running and when the all system is stable the data centre staff can be able to use the o riginal system after full restoration of dataUpdate the disaster recovery planIf new procedures are find out during the process of recovery, its updated on the recovery plan documentation which will be used again in case the same disaster occurs again5.2 traffic perseveration and Disaster Recovery PlanThe IT business continuity and disaster recovery plan for the IT discussion section that I currently work in seeks to deal with the how best to handle emergency in the event of disasters and how best to minimise risk of damage, provide emergency services and recover to normalcy of service operationsThe Business Continuity Institute defines business continuity planning as A holistic management process that identifies potential impacts that threaten an organisation and provides a framework for building resilience with the capability for an effective response that safeguards the interests of its key stakeholders, reputation, brand and value creating activities5.3 Aims of Business Contin uity Planning hindering a disasterAt the initial planning stage, the critical areas of service operation of cultivation Technology is identified, for example within the Information Technology department where I work, servers for crucial systems, hot sites and training of the disasters team leaders are laid down. This initial planning stage is carried out with the aim of minimising the impact of disasters on Information technology resources and services this also ensures that the department is able to recover as fast as possible from a disaster.ContinuityThe procedure of running a Information services using minimum resources during a disaster, this prevents the organisation from being put out of services both internally and externally. For example running applications for only crucial systems to continue operation while recovery is on the processRecoveryThe procedures that are required to restore all systems and resources are identified. This helps in bring all the resources and sys tem to full operation, for example backing up data from off site centre.5.4 Contingency Plan activatingThe activation of the organisations IT service continuity plan can be started at any time.The decision of activating the plan will be the sole function of Estates and Security department with the assistant of ships officer in charge and contingency plan can not be started without the instruction being issued by Estates and security department with assistance from the Officer in charge.In case emergency occurs during business working hours, members of disaster recovery team will be garner and depending on the level and mature or damage the Information technology team will be contacted If the emergency occurs out of business working hours, security is required to call the head of security or his/her deputy who will get in touch with the disaster recovery team with the help of the officer in charge and then the decision to initiate the Information communication technology business continuity planIf the team leaders are not available in the event of the emergency the deputy will take the responsibility and in the event where both the team leader and deputy are not available, next person on the list takes responsibility.5.5 Emergency Management squadTeam leaderHead of information Technology department who is responsible for over seeing all the information system servicesDeputy team leader Systems ManagerResponsible for all the systems applications such as the servers, back up and liaison between the off sites third party centresTeam member Database AdministratorResponsible forInternal databases and well as internal sites tick that a domain account has been set up for the SQL services.The admin backup and standard jobs from SourceSafe InstallationSQL Server 2000Customise the jobs to ensure that server names and paths are correctTeam member Information Technology Security officerResponsible for the security of the internal sites and well as blocking unsafe sit esTeam member Network EngineerResponsible for network connectivity and test our network devices from within our networkRun test network script using DOS command attempt access to the web services-Use government secure intranet network PC or dial-up PC belonging to web team in OCPD to check connection to all websites-Use nslookup to connect to wb-dns1 internal to the organisation and check that website names can be resolvedTest email-An email should be sent to emailprotected and echo. These should respond by sending an email back5.6 Disaster Recovery PlanIs the process of restoring access to the important system data, hardware and software that is required to start the system operational, Disaster Recovery Plan provides information on how to handle information that may be lost or corrupted during the disaster as well as proving team leaders with procedures of restoring information and data.5.7 The main Objectives of the Information Technology Recovery TeamThe Recovery Teams main duti es/ task are toPrevent damages to Information Communication InstallationsDecide the requirements of senior management for other Departmental Recovery Teams and work accordingly to meet the requirements.Carry out tasks that lead to the provision of restoring all Information Communication service to normality as started by the Recovery Team within the disaster constraints or limits.5.8 Disaster Recovery TeamTeam leader Head of Estates and SecurityResponsible for the safe of the building as well as staff and members of the publicDeputy team leader Site ContractorResponsible for building and central serviceTeam member Head of securityResponsible for staff and public refuge5.9Recovery SiteThe recovery site will be conscious by the Information Technology Departmental recovery team leader and the assistant by Disaster recovery Team in case the team leader is absent. The site is located about 3 miles a way from the organisation, In case of serious incidents, the site can be contacted by in formation recovery mobile phone.6. AssumptionsWith regard to the following case scenarios below, the disaster recovery team can take actions base on case scenario that is relative to the real disaster. Its the organisations policy that when incidents occur, staffs are evacuated from the building and entry to the site is not permitted unless staff members are informed by head of Estates and Security.6.1 Case ScenariosBuilding Non-disruptiveThese case scenarios may includeDisaster in the staff car park not affecting the buildingGas licking the building basementSuspicious package found in the public lockersBuilding is partly washed-upScenarios in this case may includeFlood affecting the whole buildingApart of the sever room that supports site B of the building is partly destroyedA part of fame room in site A where frame cabinets E8a and E8b are located is partly destroyed.IT store room is also partly affected.Building is completely destroyedScenario in this case isServer Room on site A of the building including cabinets room E1 and E2 are completely destroyed.6.2 Building Non-disruptive6.3 ActionsIn these case scenarios, all the information technology equipment are not destroyed. The disruption did call for evacuation of staff for healthy and safe issues and as soon as the build is absolved safe, staff members will be allowed in and operations will resume.6.4 Building is partly destroyedIn these case scenarios, some IT equipment are affected partly, it may escalate to a major for example the part destruction of server room in site A and the cabinet room where E8a and E8a may cause staff on this site to loss access to network resources. Here nothing can be done till staff members are not allowed to enter the building. Ones members are allowed in the building, all the equipment in the area affected can the