|
This chapter provides general information on operations and maintenance. It is assumed that all of the components of this solution have been correctly installed, configured, and provisioned, and that a basic solution network is in service.
For an overview of the topics in each chapter, refer to Document Organization, page Document Organization.
This chapter covers the following major topics:
Note This guide is meant to provide a high-level view only, and does not attempt to cover all the features and details of the related applications. Always rely on the standard documentation for those applications for the details of installing, using, and troubleshooting. Links to the latest documentation are provided in the appropriate chapters of this guide. While this document has tried to be as current as possible, the documentation for applications is subject to revision. Information is subject to reorganization, section headings are subject to renaming, and hyperlinks are subject to change. |
To properly operate and maintain the Cisco network-based IPSec VPN solution Release 1.5, make sure you have read the following documents:
These are available at the Network-Based IPSec VPN website, at the following URL:
http://www.cisco.com/univercd/cc/td/doc/product/vpn/solution/index.htm
There are a variety of tasks that we recommend you attend to on a routine basis. Other tasks can be performed as needed, although you may want to schedule certain critical tasks depending on the needs of your network. This section presents the following topics:
Table 1-1 identifies, at a high level, the tasks that service providers must perform on a daily, weekly, monthly, and annual basis to operate and maintain the health of their Cisco network-based IPSec VPN solution Release 1.5 network.
Table 1-1 Routine Operations and Maintenance Tasks
To maintain your solution network, follow these general best practices:
Table 1-2 lists general operations and maintenance guideline links for the hardware components of the Cisco network-based IPSec VPN solution Release 1.5.
Table 1-2 General Operations and Maintenance Guidelines for Solution Components
Component | Maintenance Guideline Links |
---|---|
http://www.cisco.com/univercd/cc/td/doc/product/core/7204/7204ig/main4icg.htm |
|
http://www.cisco.com/univercd/cc/td/doc/product/core/7206/7206ig/addpr6ug.htm |
|
Any RADIUS server (such as Cisco Access Registrar) that understands Cisco AV pairs can be used. See http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122cgcr/fsecur_c/fsecsp/scfrad.htm#79543 |
The Cisco IP Solution Center (ISC) Version 3.0 provides management of IPSec VPN services throughout the service life cycle including service provisioning and activation on customer-edge and provider-edge routers, service auditing and service-level agreement (SLA).
For service providers using the IPSec or MPLS transport framework, the Cisco ISC Version 3.0 provides a full complement of provisioning, monitoring, and administration tools that simplify the inherent complexities of managing a VPN infrastructure.
You can use ISC Version 3.0 to direct the operations of the following components of the Cisco network-based IPSec VPN solution Release 1.5:
You can also us the Cisco ISC Version 3.0 application to direct the operations of the following customer premise equipment:
For information on using the Cisco ISC Version 3.0, refer to Cisco ISC Version 3.0 documentation at the following URL: http://www.cisco.com/univercd/cc/td/doc/ .
Use ISC Version 3.0 to perform the following operational tasks.
It is critical to monitor the operating environments of network devices, such as voltage, temperature, and airflow, and ensure that they are operating within specifications. Software components such as buffers and memory can have a significant impact on the protocols running on the device.
CPU utilization is a useful performance indicator on the Cisco devices. By measuring CPU use over time, a trend can be established to determine traffic patterns. Devices running constantly at high utilization levels can affect the overall performance of forwarding and processing packets. CLI commands on the Cisco devices can display the CPU utilization and information on running processes. You can access information returned on the CPU load by means of objects defined in MIB files.
The Cisco IOS software CLI manages the following components of the Cisco network-based IPSec VPN solution Release 1.5:
The following paragraphs provide references to URLs for Cisco IOS, system error messages, and debug commands.
For the details of Cisco IOS software Release 12.2, refer to the following URL: http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/
The system software sends these error messages to the console (and, optionally, to a logging server on another system) during operation. Not all system error messages indicate problems with your system. Some are purely informational, and others may help diagnose problems with communications lines, internal hardware, or the system software.
See Cisco IOS System Error Messages, Cisco IOS Release 12.2 at the following URL: http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122sup/122sems/
For details on debugging commands, refer to Cisco IOS Debug Command Reference, Cisco IOS Release 12.2, at the following URL:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122sup/122debug/
Posted: Tue May 20 12:29:53 PDT 2003
All contents are Copyright © 1992--2003 Cisco Systems, Inc. All rights reserved.
Important Notices and Privacy Statement.