chapter01走進(jìn)計(jì)算機(jī)技術(shù)世界課件_第1頁(yè)
chapter01走進(jìn)計(jì)算機(jī)技術(shù)世界課件_第2頁(yè)
chapter01走進(jìn)計(jì)算機(jī)技術(shù)世界課件_第3頁(yè)
chapter01走進(jìn)計(jì)算機(jī)技術(shù)世界課件_第4頁(yè)
chapter01走進(jìn)計(jì)算機(jī)技術(shù)世界課件_第5頁(yè)
已閱讀5頁(yè),還剩49頁(yè)未讀, 繼續(xù)免費(fèi)閱讀

下載本文檔

版權(quán)說(shuō)明:本文檔由用戶提供并上傳,收益歸屬內(nèi)容提供方,若內(nèi)容存在侵權(quán),請(qǐng)進(jìn)行舉報(bào)或認(rèn)領(lǐng)

文檔簡(jiǎn)介

Chapter9

NetworkManagementComputerNetworking:ATopDownApproachFeaturingtheInternet,

3rdedition.

JimKurose,KeithRoss

Addison-Wesley,July2004.

1

NetworkManagementChapter9

NetworkManagementCoChapter9:NetworkManagementChaptergoals:

introductiontonetworkmanagementmotivationmajorcomponentsInternetnetworkmanagementframeworkMIB:managementinformationbaseSMI:datadefinitionlanguageSNMP:protocolfornetworkmanagementsecurityandadministrationpresentationservices:ASN.12

NetworkManagementChapter9:NetworkManagementCChapter9outlineWhatisnetworkmanagement?Internet-standardmanagementframeworkStructureofManagementInformation:SMIManagementInformationBase:MIBSNMPProtocolOperationsandTransportMappingsSecurityandAdministrationASN.13

NetworkManagementChapter9outlineWhatisnetwoWhatisnetworkmanagement?autonomoussystems(aka“network”):100sor1000sofinteractinghardware/softwarecomponentsothercomplexsystemsrequiringmonitoring,control:jetairplanenuclearpowerplantothers?"Networkmanagementincludesthedeployment,integrationandcoordinationofthehardware,software,andhumanelementstomonitor,test,poll,configure,analyze,evaluate,andcontrolthenetworkandelementresourcestomeetthereal-time,operationalperformance,andQualityofServicerequirementsatareasonablecost."

4

NetworkManagementWhatisnetworkmanagement?autInfrastructurefornetworkmanagementagentdataagentdataagentdataagentdatamanageddevicemanageddevicemanageddevicemanageddevicemanagingentitydatanetworkmanagementprotocoldefinitions:manageddevicescontainmanagedobjectswhosedataisgatheredintoaManagementInformationBase(MIB)

managingentity5

NetworkManagementInfrastructurefornetworkmanNetworkManagementstandardsOSICMIPCommonManagementInformationProtocoldesigned1980’s:theunifyingnetmanagementstandardtooslowlystandardizedSNMP:SimpleNetworkManagementProtocolInternetroots(SGMP)startedsimpledeployed,adoptedrapidlygrowth:size,complexitycurrently:SNMPV3defactonetworkmanagementstandard6

NetworkManagementNetworkManagementstandardsOSChapter9outlineWhatisnetworkmanagement?Internet-standardmanagementframeworkStructureofManagementInformation:SMIManagementInformationBase:MIBSNMPProtocolOperationsandTransportMappingsSecurityandAdministrationASN.17

NetworkManagementChapter9outlineWhatisnetwoSNMPoverview:4keypartsManagementinformationbase(MIB):distributedinformationstoreofnetworkmanagementdataStructureofManagementInformation(SMI):datadefinitionlanguageforMIBobjectsSNMPprotocolconveymanager<->managedobjectinfo,commandssecurity,administrationcapabilitiesmajoradditioninSNMPv38

NetworkManagementSNMPoverview:4keypartsManaSMI:datadefinitionlanguage

Purpose:syntax,semanticsofmanagementdatawell-defined,unambiguousbasedatatypes:straightforward,boringOBJECT-TYPEdatatype,status,semanticsofmanagedobjectMODULE-IDENTITYgroupsrelatedobjectsintoMIBmoduleBasicDataTypesINTEGERInteger32Unsigned32OCTETSTRINGOBJECTIDENTIFIEDIPaddressCounter32Counter64Guage32TimeTicksOpaque9

NetworkManagementSMI:datadefinitionlanguageSNMPMIBOBJECTTYPE:OBJECTTYPE:OBJECTTYPE:objectsspecifiedviaSMIOBJECT-TYPEconstructMIBmodulespecifiedviaSMIMODULE-IDENTITY(100standardizedMIBs,morevendor-specific)MODULE10

NetworkManagementSNMPMIBOBJECTTYPE:OBJECTTYPSMI:Object,moduleexamplesOBJECT-TYPE:

ipInDeliversMODULE-IDENTITY:

ipMIBipInDeliversOBJECTTYPESYNTAXCounter32MAX-ACCESSread-onlySTATUScurrentDESCRIPTION“ThetotalnumberofinputdatagramssuccessfullydeliveredtoIPuser-protocols(includingICMP)”::={ip9}ipMIBMODULE-IDENTITYLAST-UPDATED“941101000Z”O(jiān)RGANZATION“IETFSNPv2WorkingGroup”CONTACT-INFO“KeithMcCloghrie……”DESCRIPTION“TheMIBmoduleformanagingIPandICMPimplementations,butexcludingtheirmanagementofIProutes.”REVISION“019331000Z”………::={mib-248}11

NetworkManagementSMI:Object,moduleexamplesOBMIBexample:UDPmoduleObjectIDNameTypeComments.UDPInDatagramsCounter32total#datagramsdeliveredatthisnode.UDPNoPortsCounter32#underliverabledatagrams noappatportl.UDInErrorsCounter32#undeliverabledatagrams allotherreasons.UDPOutDatagramsCounter32#datagramssent.udpTable SEQUENCEoneentryforeachport inusebyapp,givesport# andIPaddress12

NetworkManagementMIBexample:UDPmoduleObjectSNMPNamingquestion:howtonameeverypossiblestandardobject(protocol,data,more..)ineverypossiblenetworkstandard??answer:ISOObjectIdentifiertree:

hierarchicalnamingofallobjectseachbranchpointhasname,number.ISOISO-ident.Org.USDoDInternetudpInDatagramsUDPMIB2management13

NetworkManagementSNMPNamingquestion:howtonaCheckoutwww.alvestrand.no/harald/objectid/top.htmlOSI

Object

Identifier

Tree14

NetworkManagementCheckoutwww.alvestrand.no/haSNMPprotocolTwowaystoconveyMIBinfo,commands:agentdataManageddevicemanagingentityresponseagentdataManageddevicemanagingentitytrapmsgrequestrequest/responsemodetrapmode15

NetworkManagementSNMPprotocolTwowaystoconveSNMPprotocol:messagetypesGetRequestGetNextRequestGetBulkRequestMgr-to-agent:“getmedata”(instance,nextinlist,block)MessagetypeFunctionInformRequestMgr-to-Mgr:here’sMIBvalueSetRequestMgr-to-agent:setMIBvalueResponseAgent-to-mgr:value,responsetoRequestTrapAgent-to-mgr:informmanagerofexceptionalevent16

NetworkManagementSNMPprotocol:messagetypesGeSNMPprotocol:messageformats17

NetworkManagementSNMPprotocol:messageformatsSNMPsecurityandadministrationencryption:DES-encryptSNMPmessageauthentication:compute,sendMIC(m,k):computehash(MIC)overmessage(m),secretsharedkey(k)protectionagainstplayback:usenonceview-basedaccesscontrolSNMPentitymaintainsdatabaseofaccessrights,policiesforvarioususersdatabaseitselfaccessibleasmanagedobject!18

NetworkManagementSNMPsecurityandadministratiChapter9outlineWhatisnetworkmanagement?Internet-standardmanagementframeworkStructureofManagementInformation:SMIManagementInformationBase:MIBSNMPProtocolOperationsandTransportMappingsSecurityandAdministrationThepresentationproblem:ASN.119

NetworkManagementChapter9outlineWhatisnetwoThepresentationproblemQ:doesperfectmemory-to-memorycopysolve“thecommunicationproblem”?A:notalways!problem:differentdataformat,storageconventionsstruct{charcode;intx;}test;test.x=256;test.code=‘a(chǎn)’a0000000100000011a0000001100000001test.codetest.xtest.codetest.xhost1formathost2format20

NetworkManagementThepresentationproblemQ:doeAreal-lifepresentationproblem:aging60’shippie2004teenagergrandma21

NetworkManagementAreal-lifepresentationproblPresentationproblem:potentialsolutions1.

Senderlearnsreceiver’sformat.Sendertranslatesintoreceiver’sformat.Sendersends.real-worldanalogy?prosandcons?2.Sendersends.Receiverlearnssender’sformat.Receivertranslateintoreceiver-localformatreal-world-analogyprosandcons?3.Sendertranslateshost-independentformat.Sends.Receivertranslatestoreceiver-localformat.real-worldanalogy?prosandcons?22

NetworkManagementPresentationproblem:potentiaSolvingthepresentationproblem1.

Translatelocal-hostformattohost-independentformat2.Transmitdatainhost-independentformat3.Translatehost-independentformattoremote-hostformataging60’shippie2004teenagergrandma23

NetworkManagementSolvingthepresentationproblASN.1:AbstractSyntaxNotation1ISOstandardX.680usedextensivelyinInternetlikeeatingvegetables,knowingthis“goodforyou”!defineddatatypes,objectconstructorslikeSMIBER:BasicEncodingRulesspecifyhowASN.1-defineddataobjectstobetransmittedeachtransmittedobjecthasType,Length,Value(TLV)encoding24

NetworkManagementASN.1:AbstractSyntaxNotatioTLVEncodingIdea:transmitteddataisself-identifyingT:datatype,oneofASN.1-definedtypesL:lengthofdatainbytesV:valueofdata,encodedaccordingtoASN.1standard1234569BooleanIntegerBitstringOctetstringNullObjectIdentifierRealTagValue

Type25

NetworkManagementTLVEncodingIdea:transmittedTLV

encoding:

exampleValue,5octets(chars)Length,5bytesType=4,octetstringValue,259Length,2bytesType=2,integer26

NetworkManagementTLV

encoding:

exampleValue,NetworkManagement:summarynetworkmanagementextremelyimportant:80%ofnetwork“cost”ASN.1fordatadescriptionSNMPprotocolasatoolforconveyinginformationNetworkmanagement:moreartthansciencewhattomeasure/monitorhowtorespondtofailures?alarmcorrelation/filtering?27

NetworkManagementNetworkManagement:summarynetChapter9

NetworkManagementComputerNetworking:ATopDownApproachFeaturingtheInternet,

3rdedition.

JimKurose,KeithRoss

Addison-Wesley,July2004.

28

NetworkManagementChapter9

NetworkManagementCoChapter9:NetworkManagementChaptergoals:

introductiontonetworkmanagementmotivationmajorcomponentsInternetnetworkmanagementframeworkMIB:managementinformationbaseSMI:datadefinitionlanguageSNMP:protocolfornetworkmanagementsecurityandadministrationpresentationservices:ASN.129

NetworkManagementChapter9:NetworkManagementCChapter9outlineWhatisnetworkmanagement?Internet-standardmanagementframeworkStructureofManagementInformation:SMIManagementInformationBase:MIBSNMPProtocolOperationsandTransportMappingsSecurityandAdministrationASN.130

NetworkManagementChapter9outlineWhatisnetwoWhatisnetworkmanagement?autonomoussystems(aka“network”):100sor1000sofinteractinghardware/softwarecomponentsothercomplexsystemsrequiringmonitoring,control:jetairplanenuclearpowerplantothers?"Networkmanagementincludesthedeployment,integrationandcoordinationofthehardware,software,andhumanelementstomonitor,test,poll,configure,analyze,evaluate,andcontrolthenetworkandelementresourcestomeetthereal-time,operationalperformance,andQualityofServicerequirementsatareasonablecost."

31

NetworkManagementWhatisnetworkmanagement?autInfrastructurefornetworkmanagementagentdataagentdataagentdataagentdatamanageddevicemanageddevicemanageddevicemanageddevicemanagingentitydatanetworkmanagementprotocoldefinitions:manageddevicescontainmanagedobjectswhosedataisgatheredintoaManagementInformationBase(MIB)

managingentity32

NetworkManagementInfrastructurefornetworkmanNetworkManagementstandardsOSICMIPCommonManagementInformationProtocoldesigned1980’s:theunifyingnetmanagementstandardtooslowlystandardizedSNMP:SimpleNetworkManagementProtocolInternetroots(SGMP)startedsimpledeployed,adoptedrapidlygrowth:size,complexitycurrently:SNMPV3defactonetworkmanagementstandard33

NetworkManagementNetworkManagementstandardsOSChapter9outlineWhatisnetworkmanagement?Internet-standardmanagementframeworkStructureofManagementInformation:SMIManagementInformationBase:MIBSNMPProtocolOperationsandTransportMappingsSecurityandAdministrationASN.134

NetworkManagementChapter9outlineWhatisnetwoSNMPoverview:4keypartsManagementinformationbase(MIB):distributedinformationstoreofnetworkmanagementdataStructureofManagementInformation(SMI):datadefinitionlanguageforMIBobjectsSNMPprotocolconveymanager<->managedobjectinfo,commandssecurity,administrationcapabilitiesmajoradditioninSNMPv335

NetworkManagementSNMPoverview:4keypartsManaSMI:datadefinitionlanguage

Purpose:syntax,semanticsofmanagementdatawell-defined,unambiguousbasedatatypes:straightforward,boringOBJECT-TYPEdatatype,status,semanticsofmanagedobjectMODULE-IDENTITYgroupsrelatedobjectsintoMIBmoduleBasicDataTypesINTEGERInteger32Unsigned32OCTETSTRINGOBJECTIDENTIFIEDIPaddressCounter32Counter64Guage32TimeTicksOpaque36

NetworkManagementSMI:datadefinitionlanguageSNMPMIBOBJECTTYPE:OBJECTTYPE:OBJECTTYPE:objectsspecifiedviaSMIOBJECT-TYPEconstructMIBmodulespecifiedviaSMIMODULE-IDENTITY(100standardizedMIBs,morevendor-specific)MODULE37

NetworkManagementSNMPMIBOBJECTTYPE:OBJECTTYPSMI:Object,moduleexamplesOBJECT-TYPE:

ipInDeliversMODULE-IDENTITY:

ipMIBipInDeliversOBJECTTYPESYNTAXCounter32MAX-ACCESSread-onlySTATUScurrentDESCRIPTION“ThetotalnumberofinputdatagramssuccessfullydeliveredtoIPuser-protocols(includingICMP)”::={ip9}ipMIBMODULE-IDENTITYLAST-UPDATED“941101000Z”O(jiān)RGANZATION“IETFSNPv2WorkingGroup”CONTACT-INFO“KeithMcCloghrie……”DESCRIPTION“TheMIBmoduleformanagingIPandICMPimplementations,butexcludingtheirmanagementofIProutes.”REVISION“019331000Z”………::={mib-248}38

NetworkManagementSMI:Object,moduleexamplesOBMIBexample:UDPmoduleObjectIDNameTypeComments.UDPInDatagramsCounter32total#datagramsdeliveredatthisnode.UDPNoPortsCounter32#underliverabledatagrams noappatportl.UDInErrorsCounter32#undeliverabledatagrams allotherreasons.UDPOutDatagramsCounter32#datagramssent.udpTable SEQUENCEoneentryforeachport inusebyapp,givesport# andIPaddress39

NetworkManagementMIBexample:UDPmoduleObjectSNMPNamingquestion:howtonameeverypossiblestandardobject(protocol,data,more..)ineverypossiblenetworkstandard??answer:ISOObjectIdentifiertree:

hierarchicalnamingofallobjectseachbranchpointhasname,number.ISOISO-ident.Org.USDoDInternetudpInDatagramsUDPMIB2management40

NetworkManagementSNMPNamingquestion:howtonaCheckoutwww.alvestrand.no/harald/objectid/top.htmlOSI

Object

Identifier

Tree41

NetworkManagementCheckoutwww.alvestrand.no/haSNMPprotocolTwowaystoconveyMIBinfo,commands:agentdataManageddevicemanagingentityresponseagentdataManageddevicemanagingentitytrapmsgrequestrequest/responsemodetrapmode42

NetworkManagementSNMPprotocolTwowaystoconveSNMPprotocol:messagetypesGetRequestGetNextRequestGetBulkRequestMgr-to-agent:“getmedata”(instance,nextinlist,block)MessagetypeFunctionInformRequestMgr-to-Mgr:here’sMIBvalueSetRequestMgr-to-agent:setMIBvalueResponseAgent-to-mgr:value,responsetoRequestTrapAgent-to-mgr:informmanagerofexceptionalevent43

NetworkManagementSNMPprotocol:messagetypesGeSNMPprotocol:messageformats44

NetworkManagementSNMPprotocol:messageformatsSNMPsecurityandadministrationencryption:DES-encryptSNMPmessageauthentication:compute,sendMIC(m,k):computehash(MIC)overmessage(m),secretsharedkey(k)protectionagainstplayback:usenonceview-basedaccesscontrolSNMPentitymaintainsdatabaseofaccessrights,policiesforvarioususersdatabaseitselfaccessibleasmanagedobject!45

NetworkManagementSNMPsecurityandadministratiChapter9outlineWhatisnetworkmanagement?Internet-standardmanagementframeworkStructureofManagementInformation:SMIManagementInformationBase:MIBSNMPProtocolOperationsandTransportMappingsSecurityandAdministrationThepresentationproblem:ASN.146

NetworkManagementChapter9outlineWhatisnetwoThepresentationproblemQ:doesperfectmemory-to-memorycopysolve“thecommunicationproblem”?A:notalways!problem:differentdataformat,storageconventionsstruct{charcode;intx;}test;test.x=256;test.code=‘a(chǎn)’a0000000100000011a0000001100000001test.codetest.xtest.codetest.xhost1formathost2format47

NetworkManagementThepresentationproblemQ:doeAreal-lifepresentationproblem:aging60’shippie2004teenagergrandma48

NetworkManagementAreal-lifepresentationproblPresentationproblem:potentialsolutions1.

Senderlearnsreceiver’sformat.Sendertranslatesintoreceiver’sformat.Sendersends.real-

溫馨提示

  • 1. 本站所有資源如無(wú)特殊說(shuō)明,都需要本地電腦安裝OFFICE2007和PDF閱讀器。圖紙軟件為CAD,CAXA,PROE,UG,SolidWorks等.壓縮文件請(qǐng)下載最新的WinRAR軟件解壓。
  • 2. 本站的文檔不包含任何第三方提供的附件圖紙等,如果需要附件,請(qǐng)聯(lián)系上傳者。文件的所有權(quán)益歸上傳用戶所有。
  • 3. 本站RAR壓縮包中若帶圖紙,網(wǎng)頁(yè)內(nèi)容里面會(huì)有圖紙預(yù)覽,若沒(méi)有圖紙預(yù)覽就沒(méi)有圖紙。
  • 4. 未經(jīng)權(quán)益所有人同意不得將文件中的內(nèi)容挪作商業(yè)或盈利用途。
  • 5. 人人文庫(kù)網(wǎng)僅提供信息存儲(chǔ)空間,僅對(duì)用戶上傳內(nèi)容的表現(xiàn)方式做保護(hù)處理,對(duì)用戶上傳分享的文檔內(nèi)容本身不做任何修改或編輯,并不能對(duì)任何下載內(nèi)容負(fù)責(zé)。
  • 6. 下載文件中如有侵權(quán)或不適當(dāng)內(nèi)容,請(qǐng)與我們聯(lián)系,我們立即糾正。
  • 7. 本站不保證下載資源的準(zhǔn)確性、安全性和完整性, 同時(shí)也不承擔(dān)用戶因使用這些下載資源對(duì)自己和他人造成任何形式的傷害或損失。

最新文檔

評(píng)論

0/150

提交評(píng)論