nanog mailing list archives

Re: OOB

From: Christopher Morrow <morrowc.lists () gmail com>
Date: Tue, 26 Jul 2011 10:14:21 -0400

On Tue, Jul 26, 2011 at 10:03 AM, Paul Stewart <paul () paulstewart org> wrote:

We do everything in-band with strict monitoring/policies in place.


what do you do if your in-band fails? if a router/switch/ROADM is
isolated from the rest of your network?
(isn't that the core point of the OP?)

-----Original Message-----
From: harbor235 [mailto:harbor235 () gmail com]
Sent: Tuesday, July 26, 2011 9:57 AM
To: NANOG list
Subject: OOB

I am curious what is the best practice for OOB for a core
infrastructure environment. Obviously, there is
an OOB kit for customer managed devices via POTS, Ethernet, etc ... And
there is OOB for core infrastructure
typically a separate basic network that utilizes diverse carrier and diverse
path when available.

My question is, is it best practice to extend an inband VPN throughout for
device management functions as well?
And are all management services performed OOB, e.g network management, some
monitoring, logging,
authentication, flowdata, etc ..... If a management VPN is used is it also
extended to managed customer devices?

What else is can be done for remote management and troubleshooting
capabilities?

Mike

Current thread:

OOB harbor235 (Jul 26)
- RE: OOB Paul Stewart (Jul 26)
  - Re: OOB Eric Clark (Jul 26)
  - Re: OOB Christopher Morrow (Jul 26)
    - RE: OOB Jensen Tyler (Jul 26)
    - Re: OOB Jeff Kell (Jul 26)
    - RE: OOB Leigh Porter (Jul 26)
    - RE: OOB Paul Stewart (Jul 26)
    - Re: OOB Christopher Morrow (Jul 26)
    - Re: OOB bmanning (Jul 26)
    - Re: OOB Måns Nilsson (Jul 26)
    - Re: OOB Christopher Morrow (Jul 26)
    - Re: OOB Joel Jaeggli (Jul 26)
    - Re: OOB Måns Nilsson (Jul 26)

(Thread continues...)