ab242 managing your aruba switching ... - hpe partner ready...access switches using lldp 2...
TRANSCRIPT
AB242 – Managing Your Aruba Switching Infrastructure
April 2, 2019
Dipesh KashivBen Lowe
2@ArubaNetworks | #ATM19
Agenda
• Network Management using AirWave• Planning your network• Deploying switches• Managing switches• Monitoring• Alerting• Demo
3@ArubaNetworks | #ATM19
What is AirWave?
MANAGEMENTInstant, Controllers, Switches (ArubaOS-S/CX)
REPORTS & ALERTS Generate custom reports
MULTI-VENDORCisco, Juniper, Meru, Moto, Brocade & ALE
PERFORMANCENetwork Devices, RF Health, AppRF ,UCC
SCALEScale up to 4000 Devices
MONITORINGVisual RF and Wireless Intrusion Detection
INSTANT CLUSTER CONTROLLER ARUBA SWITCHRADIUS, SYSLOG,
TACACS, TRAP RECEIVER
4@ArubaNetworks | #ATM19
Network Management Workflow
- Zero Touch
- ZTP
Orchestrator(NEW)
- DHCP
- Activate
-Network Scans
-Manual Add
Plan Deploy Manage Monitor Alert/Report
- ZTP
Orchestrator(NEW)
- Templates
-GUI
- Topology
-Performance
- Device
- Users
-Historical Trends
- Troubleshooting
-Canned Reports
-Custom Reports
-Configurable
Thresholds/Filters
-Alerts via
SNMP/Email
- PoE Alerts(NEW)
-Config
Backup/Restore
-Config Audit
- Partial Config
Audit &
Remediation(NEW)
-Config Snippets
- Firmware Update
5@ArubaNetworks | #ATM19
Secure
Unified Experience across Wired and Wireless
Automated
Centrally Managed
Empower Experience Edge – Requirements
6@ArubaNetworks | #ATM19
Access Policies based on User Context on Wireless Infrastructure
Access Policies based on User Context on Wired Infrastructure
Downloadable User Roles (DUR) from ClearPass
User-Based Tunneling (UBT)
Empower Experience Edge – Dynamic Segmentation
MOBILITY
CONTROLLER
ACCESS SWITCH
7@ArubaNetworks | #ATM19
ARUBA OS-CX CORE AND AGGREGATION
SWITCHES
ACCESS SWITCH
MOBILITY
CONTROLLE
R
1 UBT on Access Switches
2 LAG configurations on Access Devices
4 Node Hierarchy, MC configs on MM
3 DUR, Whitelist Access Devices on ClearPass
Empower Experience Edge - Challenges
ACCESS SWITCH
MOBILITY
CONTROLLE
R
MOBILITY
CONTROLLER
ACCESS SWITCH
Planning Network for Switches
ZTP Orchestrator
9@ArubaNetworks | #ATM19
ARUBA OS-CX CORE AND AGGREGATION
SWITCHES
ACCESS SWITCH
MOBILITY
CONTROLLE
R
Folders in AirWave
ACCESS SWITCH
MOBILITY
CONTROLLE
R
MOBILITY
CONTROLLER
Campus 1
Building 1 Building 2 Building 3
Plan Deploy Manage Monitor Alert/Report
ACCESS SWITCH
10@ArubaNetworks | #ATM19
Planning using ZTP Orchestrator
Plan Deploy Manage Monitor Alert/Report
1 Create a Group in AW
2 Add ClearPass
3 Add Mobility Master
Add Aruba OS-CX Aggregation Switches4
ARUBA OS-CX AGGREGATION SWITCHES
Deploying Switches
ZTP Orchestrator
12@ArubaNetworks | #ATM19
Deploying Devices using ZTP Orchestrator
1 Automatically discovers Mobility Controllers and Access switches using LLDP
2 Automatically configures Node hierarchy, MC on MM using APIs
Plan Deploy Manage Monitor Alert/Report
3 Automatically creates a template with UBT and LAG configurations for Access Switches on AW
Automatically whitelists Access Devices on ClearPass4
ARUBA OS-CX AGGREGATION SWITCHES
MOBILITY
CONTROLLER
ACCESS SWITCH
13@ArubaNetworks | #ATM19
Deploying Devices using ZTP Orchestrator – Flow
Plan Deploy Manage Monitor Alert/Report
ARUBA OS-CX AGGREGATION SWITCHES
ACCESS SWITCHMOBILITY CONTROLLER
Discovered via LLDP SNMPTriggers MC Config
Generation
Config Push
MC Whitelisted
Discovered via LLDP SNMP
Config Push
Switch Whitelisted
Tunnel for UBT
Managing Switches
Config Snippets and Partial Config Audit & Remediation
15@ArubaNetworks | #ATM19
Config Jobs
Plan Deploy Manage Monitor Alert/Report
1 Ability to push subset of CLI commands
16@ArubaNetworks | #ATM19
Select Devices
2 Choose devices for config snippet push
1 Ability to push subset of CLI commands
Plan Deploy Manage Monitor Alert/Report
17@ArubaNetworks | #ATM19
When to push the snippet?
1 Ability to push subset of CLI commands
2 Choose devices for config snippet push
3 Schedule the config push
Plan Deploy Manage Monitor Alert/Report
18@ArubaNetworks | #ATM19
Confirm
1 Ability to push subset of CLI commands
2
3
Choose devices for config snippet push
Schedule the config push
Confirm config push4
Plan Deploy Manage Monitor Alert/Report
19@ArubaNetworks | #ATM19
Pre-defined Snippets
Plan Deploy Manage Monitor Alert/Report
20@ArubaNetworks | #ATM19
Audit and Remediate Job
1 Ability to audit and remediate a subset of CLI commands
Plan Deploy Manage Monitor Alert/Report
21@ArubaNetworks | #ATM19
Select devices
2 Choose devices for Audit and Remediate
1 Ability to audit and remediate a subset of CLI commands
Plan Deploy Manage Monitor Alert/Report
22@ArubaNetworks | #ATM19
When to audit?
1 Ability to audit and remediate a subset of CLI commands
2 Choose devices for Audit and Remediate
3 Schedule the Audit Job
Plan Deploy Manage Monitor Alert/Report
23@ArubaNetworks | #ATM19
Confirm
1 Ability to audit and remediate a subset of CLI commands
2
3
Choose devices for Audit and Remediate
Schedule the Audit Job
Confirm Audit Job4
Plan Deploy Manage Monitor Alert/Report
24@ArubaNetworks | #ATM19
Check compliance
5 Check job status
Plan Deploy Manage Monitor Alert/Report
25@ArubaNetworks | #ATM19
Remediate
6 Remediate if “Non-Compliant”
5 Check job status
Plan Deploy Manage Monitor Alert/Report
26@ArubaNetworks | #ATM19
When to remediate?
5 Check job status
6 Remediate if “Non-Compliant”
7 Schedule Remediate
Plan Deploy Manage Monitor Alert/Report
27@ArubaNetworks | #ATM19
Confirm
5 Check job status
6
7
Remediate if “Non-Compliant”
Schedule Remediate
Complete8
Plan Deploy Manage Monitor Alert/Report
Monitoring
Switch Monitoring, Dynamic Segmentation Monitoring
29@ArubaNetworks | #ATM19
Switch Monitoring – Device KPIs Summary
Plan Deploy Manage Monitor Alert/Report
1Summarized device information, including port & hardware status
30@ArubaNetworks | #ATM19
Switch Monitoring – Switch Faceplate
2Port details, PoE, VLANs, client and neighbor devices
1Summarized device information, including port & hardware status
Plan Deploy Manage Monitor Alert/Report
31@ArubaNetworks | #ATM19
Switch Monitoring – Alerts and Troubleshooting
3Integrated monitoring, trends, troubleshooting
2Port details, PoE, VLANs, client and neighbor devices
1Summarized device information, including port & hardware status
Plan Deploy Manage Monitor Alert/Report
32@ArubaNetworks | #ATM19
Dynamic Segmentation Monitoring – Switch Faceplate
Plan Deploy Manage Monitor Alert/Report
33@ArubaNetworks | #ATM19
Dynamic Segmentation Monitoring – Client Diagnostics
Plan Deploy Manage Monitor Alert/Report
34@ArubaNetworks | #ATM19
Dynamic Segmentation Monitoring – Traffic Analysis
Plan Deploy Manage Monitor Alert/Report
Alerts
PoE Alerts
36@ArubaNetworks | #ATM19
PoE Alerts
Plan Deploy Manage Monitor Alert/Report
1 Power Loss
2 Not Enough Power
3 PoE consumption is almost at capacity –Per Port
Overcurrent4
5 Redundant PSU not enabled
6 Redundant PSU failure
7 Non-802.3bt device connected
Non 802.3at/af device connected8
37@ArubaNetworks | #ATM19
ARUBA OS-CX CORE AND AGGREGATION
SWITCHES
ACCESS SWITCH
MOBILITY
CONTROLLE
R
Intelligent Edge using AirWave
ACCESS SWITCH
MOBILITY
CONTROLLE
R
ACCESS SWITCH
MOBILITY
CONTROLLER
38@ArubaNetworks | #ATM19
Summary
Monitor
Monitor and Troubleshoot your network with Unified Wireless and Wired Monitoring
1Plan
Empower Intelligent Edge using AirWave
2
3
Deploy
Onboarding access devices using ZTP Orchestrator
Manage
Day-to-Day management with configuration snippets, audits and remediation
4
Alerts and Reports
PoE Alerts5
39@ArubaNetworks | #ATM19
Thank You