1. Electric Power Research Institute
1.1. Project Background
China Electric Power Research Institute, a scientific research unit directly under the State Grid Corporation of China, is a multidisciplinary and comprehensive scientific research institution in China's power industry.
In the construction of the power core backbone network - the optical chip network system, the Electric Power Academy needs to develop an EPON network management system for managing the optical chip network. In an optical chip network, usually an OLT device is connected to 8 PON devices, each PON device is connected to 1-8 ODN devices, and each ODN device can be connected to up to 64 ONU devices. Maintaining the relationship between these huge devices manually results in a huge amount of maintenance and is very error-prone. When the network changes, the relationship between network devices cannot be updated in time.
1.2. Core Requirements
Realize the management, monitoring and maintenance of the configuration, performance, safety and fault of the OLT and ONU equipment in the EPON system. The configuration, status, performance and other data of the equipment in the system come from the related data of the OLT and ONU equipment obtained by the ARM system in the OLT equipment, and can be displayed and operated through lists, graphics, and images.
- OLT, PON, ONU automatic discovery;
- Fault monitoring, TRAP monitoring, performance collection, configuration management and other functions;
- The requirements for fault detection are higher. In the optical chip network, because it is the core business of the State Grid, the requirements for fault detection are higher, and the expectation is within 1-3 seconds.
1.3. Solutions
The Zhihe network management platform fully meets the network management requirements of user equipment topology, fault management, performance management, configuration management and security management, and truly solves the user's equipment management and control, function realization, operation and maintenance, and expansion and integration problems. In response to the needs of the Electric Power Research Institute, Zhihe ICT provides the following specific solutions:
- Using the technology of automatic search and intelligent discovery, the network management system automatically discovers the network device relationship in the background, and automatically stores the device relationship in the database, and directly presents the latest network device connection relationship and running status through the client management interface.
- Based on the Zhihe network management platform, using the company's original topology map components, SNMP components, network management software development platform, and intelligent network management software products to meet the needs of the Electric Power Academy for new equipment and new functions.
- The network management system layer adopts the mechanism of real-time fault reception and absolute priority reporting. Through the WebService interface technology, the fault is quickly pushed to the administrator's operation interface, so that the average processing time for the administrator to find the fault through the interface is within 1 second.
1.4. Program Outcomes
In the previous solution, the relationship between these huge devices was maintained manually, which resulted in a huge amount of maintenance and was very prone to errors. When the network changed, the network device relationship was too late to update in time. In the optical chip network management system, the technology of automatic search and intelligent discovery is adopted. The network management system automatically discovers the network device relationship in the background, and automatically stores the device relationship in the database, and directly presents the latest current through the client management interface. Network device connection relationship and operating status.
2. Institute of Data Communication
2.1. Project Background
The Institute of Data Communication Science and Technology is a high-tech enterprise under the Datang Telecom Technology Industry Group.
The data communication institute undertakes the construction of a national business private network system for a certain unit. This business private network includes CISCO, Huawei, H3C network equipment, Windows servers, Linux servers, proprietary servers, virus servers, etc. This is mainly faced with the following problems: First, operation and maintenance monitoring. Managers are faced with complex networks and cannot effectively grasp the overall situation, which is very unfavorable for management work; Often, the equipment is searched after a fault occurs, and the cause is diagnosed after the equipment is found. The processing efficiency is low, which affects the normal work. The third is the performance management of the network system of the entire enterprise, how to scientifically reflect the performance bottleneck of the network system, This provides a theoretical basis for improving decision-making in network optimization architecture.
2.2. Core Requirements
In the service private line system, the administrator can manually increase the service topology, and then issue corresponding commands to these devices and routers through the network management software to form a real service private line. For the established business private line system, administrators can view and manage these business private lines. The specific requirements are as follows:
1. Topology delivery function
Supports topology distribution based on Centec physical switches, supports manual distribution, supports running multiple network topologies in parallel, and supports displaying currently running network topologies. Capacity, the delivery response time is within 5 seconds, and it supports fault monitoring of the delivered network topology. If the link is interrupted, an alarm can be issued.
2. Network management function
Supports the management of devices from various manufacturers, can monitor multiple indicators (CPU, traffic, memory), can automatically discover devices and generate corresponding service topology, and monitor link status in real time (custom monitoring can be customized for each link). Period, respond within 5 seconds, and the network topology status changes accordingly), support notification prompts such as alarm sounds, emails, and text messages, and support maintenance and viewing of fault solutions.
3. Network topology function
The network topology can be added with its own background (including the Chinese map background by default). The font, size and color of the text displayed in the network topology can be adjusted. The overall network topology is beautiful and generous (subject to the requirements of the leaders), and the network topology can be enlarged or reduced. There are traffic links in the network topology. The network topology can be exported in formats such as pictures. The network topology supports hierarchical display. For example, the top layer displays the security zone. Double-click the icon to display the topology inside the security zone.
2.3. Zhihe ICT Solutions
After fully researching and understanding the requirements of the data communication institute, Zhihe Telecom proposed to independently develop the unique requirements of data communication on the basis of the general network management platform. In this scheme, Zhihe ICT makes full use of the existing functions of the software to meet various customized needs in the shortest time.
1. Automatic discovery and topology functions
Adopt a variety of physical link algorithms (LLDP, CDP, ICMP, ARP, etc.) to automatically discover switch/router devices in the network, identify device manufacturers and models, and a set of software can monitor and manage devices of various types, manufacturers, and models at the same time. Analyze the network topology and automatically draw the real physical topology of the entire network.
2. Failure notification and performance monitoring
The leading second-level monitoring capability and multi-threaded task concurrency technology increase the monitoring frequency to the second level to ensure the real-time and accurate monitoring data. The minimum monitoring frequency can be set to 5 seconds, which provides technical support for efficient real-time monitoring of key equipment indicators. Failures can be notified through interface colors, alarm lists, sounds, SMS, Email, etc.
3. Service topology distribution and viewing
The user configures the topology directly on the network management software interface. After the configuration is completed, the network management software sends commands to the switches/routers through the SSH/Telnet protocol in the background to achieve automatic configuration.
2.4. Program Outcomes
After the development of the topology control and management system of the Data Communication Research Institute is completed, the network administrator can generate the corresponding business topology through the platform, and can monitor all the devices on the business system on the platform, which facilitates the management and viewing of the business system.
3. Guangxi University Network Operation and Maintenance Project
3.1. Project Background
Guangxi University is located in Nanning, the capital of Guangxi Zhuang Autonomous Region. With the continuous expansion of the campus network of Guangxi University, various problems come at any time. First of all, after ten years of digital construction of the campus network, during which the capacity was continuously expanded and network equipment was added, resulting in numerous and complex network equipment, different brands and wide distribution, which brought great inconvenience to the operation and maintenance management of the information department. The primary problem currently facing; secondly, every autumn, a large number of freshmen flock to the campus, and the number of online users soars. However, some students do not obey the management of the Internet access requirements by the information department, and download and upload a large number of files on the Internet without permission, causing the campus network to be congested and slow. , which brings inconvenience to the normal office and life of teachers and students, and at the same time leads to the rampant virus and the surge in management costs. Faced with this situation, the staff of the Information Section became like firefighters, and they went to troubleshoot wherever there was a problem.
3.2. Core Requirements
It is easy to troubleshoot faults in the network, so a network management software that meets the requirements is required. In the subsequent stage, it is necessary to connect multiple departments, teaching buildings, dormitories, reading halls, laboratories, office buildings, medical offices, etc. into a large switching network. Administrators need to monitor all switches and connected PCs. In order to better meet their own needs, finally choose to customize the development on the network management platform.
1. General functions of network management, including basic functions of network management software such as device topology, fault management, performance management, configuration management and security management;
2. Check the access status of the access PC device, and process the report information of the device;
3. Record students' online MAC and IP for security control;
4. The platform architecture is flexible and scalable;
5. On the basis of existing functions, it can achieve rapid development and complete its own business needs in the shortest time;
6. For the problems encountered in the development, there can be special after-sales and complete documents.
3.3. Solutions
The Zhihe network management platform fully meets the network management requirements of user equipment topology, fault management, performance management, configuration management and security management, and truly solves the user's equipment management and control, function realization, operation and maintenance, and expansion and integration problems. According to the needs of Guangxi University, the specific solutions provided by Zhihe ICT are as follows:
1. The Zhihe network management platform already includes the basic functions of network management software such as device topology, fault management, performance management, configuration management and security management, which users can use directly;
2. The Zhihe network management platform supports a variety of development modes to meet the development of different needs from fast to individual functions;
3. The Zhihe network management platform is composed of a multi-level architecture model, which is divided into modules and layers according to the characteristics of the telecom network management system, which not only meets the requirements of network management services, but also ensures that it is easy to implement, maintain and expand in software;
4. Reduce the cost of network user management and maintenance, and reduce the labor intensity and workload of management personnel;
5. Zhihe network management development platform provides a full set of documents, provides training, and provides remote online, telephone and on-site support services.
3.4. Program Outcomes
Zhihe network management platform assists Guangxi University to build a healthy and green campus network platform. Through the application of Zhihe network management platform, teachers and students generally reported that the network running speed has been improved and the failure rate has been reduced. From now on, the operation and maintenance personnel of the information department have changed the embarrassment of the firefighters of "going to where the fault is", and can maintain the network easily and calmly. Through the whole network monitoring and advance warning mechanism, the Zhihe network management platform can easily cope with the operation and maintenance problems of the campus network of Guangxi University.
4. Jiangnan Computer Institute
4.1. Project Background
Jiangnan Institute of Computing Technology is the earliest large-scale comprehensive computing technology research institute in my country that combines computer science and engineering. It has completed hundreds of national, ministerial and provincial key scientific and technological projects and developed more than 100 high-tech products. As the scale of the network expands, it is important to better supervise the entire network, and at the same time, to have a clear understanding of the link situation of the entire network. Network managers need to integrate all kinds of related equipment into a unified platform for management, but network equipment has different brands, different performances, and different levels. Therefore, a network management software is needed to manage the equipment under the network in a unified manner.
4.2. Core Requirements
A network management software is needed to better monitor the hosts and servers in the network and take remote control actions for network devices such as switches, routers, and PCs, such as closing ports, opening ports, controlling network access, and setting ACLs.
1. Port and Vlan management, including division, assignment and status display;
2. Port parameter management;
3. Switch security control, including MAC-IP and ACL;
4. Automatic detection of network topology;
5. The location of the illegal access device, and generate an alarm to remind the administrator;
6. Can be integrated into the existing system operation and maintenance framework, including configuration management interface integration and rights management integration.
4.3. Zhihe ICT Solutions
Based on the customized development of Zhihe network management platform, commercial network management software products can be developed on the basis of the original topology map components, SNMP components, network management software development platform, and intelligent network management software products. It avoids the problem of 'high investment, high cost, and high risk' that customers face from scratch, and achieves a development model of "more, faster, better, and less". In response to the specific needs of Jiangnan Computer Institute, Zhihe Telecom has proposed the following specific solutions:
1. Based on 802.1x port vlan standard, set Vlan for port or MAC;
2. Provide a graphical network port panel diagram interface, the panel diagram displays the status and operation information of the network port in real time, and the panel diagram displays port enable/disable, alarm information, and the port can be remotely closed or opened;
3. Obtain the corresponding relationship between MAC and IP in the network, which can be queried by MAC or IP. When there is a blacklisted MAC or IP in the network, the system will record it;
4. The network topology map can be automatically adjusted based on the increase of devices in the network, and a new network topology map can be generated in real time. After adding new network devices, the topology layout can be used to automatically expand the layout, and re-layout and display according to tree, arrangement, sector, etc.;
5. Receive the illegal computer access information sent by the intranet monitoring system, perform correlation analysis and comparison, and locate the information of the switch connected to the illegal host and the physical port information of the corresponding switch.
4.4. Program Outcomes
Zhihe network management platform provides a comprehensive and intelligent network operation and maintenance solution, which reduces the cost of independently developing the network management system and saves time. After the customized software of Zhihe network management is completed, all the equipment of Jiangnan Computer Institute are integrated into the network management software for centralized management, no longer need to log in to each device for management operations as before, and can be clearly displayed in the form of topology map. Displaying the link relationship between devices provides convenience for optimizing the network.
5. All Roads
5.1. Project Background
Beijing Quanlu Communication Signal Research and Design Institute is a second-level wholly state-owned enterprise under the central enterprise China Railway Communication Signal Group Corporation managed by the State-owned Assets Supervision and Administration Commission of the State Council. It is a leading enterprise in the field of rail transit safety control and information technology in China. In order to improve the application and management level of the safety data network of the signal system of the passenger dedicated line, the China Railway Corporation organized the compilation of "Technical Specifications for the Safety Data Network of the Signal System of the High-speed Railway 3.0". According to the requirements of the specification, a network management system should be set up on the signal safety data network for the management of the signal safety data network. The basic network networking form of the signal security data network is shown in the figure.
5.2. Core Requirements
Better management of different manufacturers and different types of equipment under the signal security data network, including Hessman switches, Mosha switches, EMS servers, EMS terminals, and Goldnet God-net 1000 firewalls provide a unified management interface, when the network When there is a fault in the middle, quickly find the faulty equipment, and improve the efficiency of the staff.
1. The network management system has the function of monitoring switches of different brands;
2. The network management system cannot affect the security and communication services of the signal security data network, and cannot reduce the closedness of the original system;
3. The network management system should support smooth and seamless expansion and upgrade when new network elements are added;
4. The capacity of the EMS network management access equipment of the line should be no less than 150 switches, and the NMS network management can view all the EMS statuses within the jurisdiction;
5. In the integrated network management system, the EMS network management should have functions such as remote software upgrade, configuration update, terminal traffic monitoring, event reporting, and alarming.
6. The network topology device alarm playback function, for the selected network, can play back the alarm change process of the devices in the network (direct devices, excluding network and subnet devices) within a historical time range;
7. The EMS should be synchronized with the clock of the network management platform, and the EMS should be synchronized with the switch clock.
5.3. Solutions
In response to the needs of Quanlutong, Zhihe ICT proposed a customized solution based on the Zhihe network management platform. In this solution, most of the common functions, such as topology, domain, fault, performance, etc., directly utilize the existing functions of the platform. In order to monitor different lines and road bureau computer rooms, the network management system is divided into line EMS network management level and road bureau NMS network management level. The EMS network manager is responsible for supervising the online operation status of the network equipment of the line signal safety data network (including the online operation status of the adjacent line interconnection equipment), as well as the operation status of the equipment between the EMS and the signal safety data network. The NMS network management is responsible for supervising the running status of all line signal safety data network equipment in the management of the road bureau, as well as the running status of the network equipment (including network security equipment) between the EMS and the NMS.
1. Zhihe network management platform supports common SNMP, JMX, WMI, JDBC and other protocols to achieve unified management of various types and brands of equipment;
2. Provide many reusable and extensible framework modules and in-depth code-level development models, which will not affect the security and communication services of the signal security data network;
3. The bottom layer of the platform adopts the "Universal Management Framework Design" with unique technology, and adds a middle layer of equipment management to shield the management differences of various devices and facilitate later expansion;
4. Alarm playback function, support to select time period to playback alarms, provide fast forward, rewind, previous, next and other functions;
5. According to the Mib provided by the corresponding device, obtain the ring network blocking point through the ObjectSNMP component;
6. The network management has its own ntp time server, and the EMS obtains the time from the network management platform;
7. Through the JAVA concurrency technology in the background, the scattered status information is summarized into the current working status, and an alarm is generated. After the corresponding filtering mountain packet mechanism, the user is notified through the alarm sound, email and SMS, and the abnormal equipment is displayed on the topology interface. One-click to locate the corresponding device.
5.4. Program Outcomes
It provides a unified operation interface for switches of different brands, and meets all the network management requirements of the technical specification for signal security data network V3.0. The topology view and various alarm mechanisms of the Zhihe network management platform can quickly locate the location of the fault when the device fails. After deployment, it has been well received by network management personnel.
6. Electronic Technology Group
6.1. Project Background
China Electronics Technology Group is the first telecommunications technology research institute established in New China. It is a state-authorized first-class qualification unit for electronic engineering professional contracting and a first-class design unit for electronic engineering. All kinds of equipment developed by Electronic Technology Group, each equipment has its own unique management and control platform. With the increase of equipment types, a single management platform can no longer meet the needs of network managers, and it takes time to manage different devices between switching management platforms. There is too much useless time. Therefore, a management software is urgently needed, which can centrally manage all kinds of communication equipment and communication transmission network produced by the group.
6.2. Core Requirements
This system is mainly used to realize the centralized management of various communication equipment and communication transmission network developed by Electronic Technology Group. management style.
1. Support the editing and operation of various types of topology diagrams, including general network topology diagram, communication station rack type topology diagram, communication station equipment composition type topology diagram, equipment panel type resource view, equipment board/card composition type resource diagram Wait.
2. When the current topology map shows the communication station topology map or the device topology map, the device status data monitoring window can be displayed in the right area of the current interface (that is, the node attributes and status display area are replaced at runtime), and the display content is preset. information, which can support menu right-click or button update;
3. The system fault alarm display window only displays the alarm information statistics of the communication stations that currently have alarms, each communication station displays one, and the displayed information includes the name of the alarm station, the number of serious alarms, the number of major alarms, the number of minor alarms, and the first occurrence of the highest alarm. Time, the latest occurrence time of the highest alarm, the highest alarm severity, remarks, etc.
4. System alarm information real-time statistics window: take the fault communication station (vehicle) as the statistical object, classify and count according to its current highest fault state level, and present the statistical results in the form of a bar chart.
5. Support the selected topology map as the default topology map to display it in full screen, and prompt when there is a serious fault alarm (when the alarm is not related to this topology); it has the means to return to the normal display mode (ESC key, return button or right-click menu, etc.);
6.3. Zhihe ICT Solutions
In response to the needs of the electronic technology group, the technical personnel of the Zhihe network management platform carried out a professional analysis, and proposed a solution for the group according to the actual situation of the 54 electronic technology group.
1. The system provides device parameter setting/query template editing or configuration functions, and supports editing or configuration according to device type or device board configuration. Each device has multiple management parameters, which can be divided into one or more parameter groups (each The group parameters can be in different TAB page interface forms), and the operating parameters of the device can be set or queried according to the device object to be operated and its type device function template.
2. When the extension management mode is adopted, the secondary network management software is installed on the network management computer in the communication station (vehicle), and is responsible for the monitoring and management of the communication equipment in the station (vehicle) and the status monitoring of the communication station (vehicle) and the external communication link. At the same time, it has the function of network management agent, which supports the forwarding of network management instructions between the first-level network management and the equipment of the station (vehicle); the first-level network management software is fixedly installed on the network management server of the communication system, and is responsible for the communication of the communication stations (vehicles) and stations of the whole network. Centralized monitoring and management of (vehicle) communication equipment.
3. The system is deployed on both the network center and the communication station (vehicle). The software system of the network center can monitor and manage the communication equipment in the communication station (vehicle) only through the software on the communication station (vehicle).
4. The general configuration interface of equipment and resources is a comprehensive interface with a tree-shaped menu structure. Click different menu items to switch a single configuration interface, and realize the general configuration interface of equipment and resources through the configuration xml file.
6.4. Program Outcomes
The customized development of network management software based on Zhihe platform fulfills the need for centralized management of various communication equipment and communication transmission networks developed by 54. By adopting multi-level network management, it can be deployed on one platform, not only for the communication center monitoring, and even monitoring of scattered communication stations.