Smart Network
Designed and implemented automatic network device discovery,
real-time topology based monitoring, and
Automatic security compliance checks and actions
Motivation (Why)
An American privately held global food corporation was looking for a solution that will make their networking devices smart, stable, and secure. I took this responsibility to build and implement a solution that is robust, almost real-time, and works 24x7 automatically.
Techtics (What & How)
Network devices used such as routers, switches, load balancers, firewalls, etc. are needed to have good connectivity in the offices, appliances and between datacenters. They are very important to have a smooth and functioning work environment.
Whenever a new device was installed in any new office anywhere in the world to expand the work connectivity, we used a BMC ADDM tool (Atrium Discovery and Dependency Mapping) to discover the hardware instantly and register in the CMDB (configuration management database) for the network devices.
Once this device was registered to the CMDB, a SAS BObj tool was set to poll the CMDB for any changes and if there were any new changes seen, it generated a text report and stored it in a Windows server. 
The windows server was connected to the Linux server on which the monitoring tool was installed using a CIFS mount point (Common Internet File System). There was a scheduled cronjob for every 5 min to poll these text file entry changes and if there were any changes found, a bash script was written to run to add these new devices to the monitoring tool MicroFocus NNMi (Network Node Manager).
Once added to NNMi, the network hardware was monitored 24x7 for any observed anomalies using ICMP (Internet Control Message Protocol) and SNMP (Simple Network Management Protocol) the required OID (Object Identifier) for the device was added via preloaded MIB (Management Information Base) files. We also configured automated SNMP Trap capture to get alert as soon as there was any issue with any of the added network device.
Finally, to make the network secure, these new device entries were automatically passed from NNMi to HPE Network Automation Tool for checking network compliances and ACL checks (Access Control List) to ensure no external breaches.
Additionally, I used a location based topology mapping so that it becomes very easy for the Operations team to locate the faulty device and fix it in matter of minutes. For example, if the device was installed in London and faced a CPU spike, in the automated ticket generated using the integration with BMC Remedy and TrueSight tool, location information of the device will be passed; based on which correct support team will automatically be notified to take required action. For someone who is monitoring the dashboard on the NNMi tool, they will be able to see the topology node turn red indicating an issue in that location.
Reflection & Application (now & next)
This end-to-end solution and implementation reduced a lot of effort that was put into finding the Root Cause and spotting the location of the faulty device. Enabling smoother communication experience to the whole company in their every branch of the world. This solution was implemented for a very large-scale environment consisting of around 24 thousand network devices.
It also reduced a lot of manual work to register device details in CMDB and manually add the device in NNMi and HP Network Automation tools. Kept the CMDB and Monitoring data in sync making the information reliable and easier to work upon.
I received appreciation from the Client for taking proactive measures to integrate diverse tools and crafting a robust automated network solution.
Tools & Technology
Creators
Suryakant Sahoo