Electrical computers and digital processing systems: multicomput – Network computer configuring
Reexamination Certificate
1999-02-12
2001-06-05
Coulter, Kenneth R. (Department: 2758)
Electrical computers and digital processing systems: multicomput
Network computer configuring
C709S224000
Reexamination Certificate
active
06243747
ABSTRACT:
FIELD OF THE INVENTION
The present invention is directed to configuration management of communications networks, and more specifically to an apparatus and method for defining and enforcing configuration policies for configuration management of network devices.
BACKGROUND OF THE INVENTION
Configuration management in communications networks is the task of keeping an inventory of network devices, knowing the configuration of each device, resetting or updating configurations as the need arises, and scheduling configuration changes. In the past, many of these tasks were done manually or by software packages built specifically for a particular device.
A “configuration” is defined as a particular setting of device parameters that govern the operational characteristics of a network device. In communications networks, the devices that are routinely configured are routers, bridges and hubs, and examples of device parameters include port thresholds, on/off switches, access security, etc.
In the prior art, one method of network configuration is to manually configure a network device. In this case, a user physically attaches a dumb terminal to the network device and issues configuration commands through the terminal's keyboard. A disadvantage of this method is that one cannot retrieve or store information regarding the configuration of a device.
A second known method is to make configuration changes with a software package built specially for a network device type. A disadvantage of this method is that one cannot configure different device types simultaneously. Examples of commercially available tools that allow one to configure a single type of device include the following: (1) Site Manager, Wellfleet Communications, Inc., 8 Federal Street, Billerica, Mass. 01821; and (2) Cisco Works, 1525 O'Brien Drive, Menlo Park, Calif. 94025.
Thus, the primary disadvantages of the prior art include:
a user can manually configure only one device at a time;
a user must know the desired configuration before making a change;
a user must manually check to see if in fact the desired change took place;
existing tools utilize only one network management protocol (e.g., the simple network management protocol—SNMP) to manage the device; and
existing tools are specialized for one particular type of device (e.g., Cisco routers).
A third known method is to define a number of individual devices of specific types as policy domains, and apply policies to the policy domains. A disadvantage of this method is that this method is only applicable to a limited number of specific types of devices. Examples of commercially available tools that allow one to define specific types of devices as groups include the following: Tivoli Works, TIVOLI Systems, Inc., 6034 West Courtyard Drive, Suite 210, Austin Tex. 78730; and MaestroVision, Calypso Software Systems, Inc., 1 Sundial Avenue, Suite 410, Manchester, N.H. 03103.
In general, the prior art methods are time-consuming, expensive, error prone, and limited in terms of the operations that can be performed.
SUMMARY OF THE INVENTION
The present invention is directed to a method and apparatus for configuration management of a communications network, and which performs one or more of the following functions:
enables configuration of several network devices at the same time;
enables retrieval of a configuration from a device, storage of a configuration, and downloading of the configuration to other devices;
verifies that configurations have taken place and generates reports and/or alarms when configuration operations are unsuccessful;
enables automatic scheduling of configuration retrieval, loading and/or verification;
enables configuration of a wide variety of different network devices.
The present invention utilizes a database of models, each “model” representing an associated network device and including attribute values for the parameters of that device. A configuration manager accesses a set of model types, each “model type” having an associated set of attributes. The configuration manager creates a template by selecting a model type and one or more attributes from the associated set of attributes, and then screens a selected model with the template to retrieve the values for each of the attributes in the template from the attribute values in the database, to create a configuration record for the model. The configuration record may then be stored, modified, transferred to a model, and/or displayed to a user on a user interface. Also, multiple templates can be used to create a composite configuration record. Multiple configuration records may be transferred to multiple models in the database, for reconfiguring multiple network devices. In one alternative embodiment, a template may be created from a pre-existing configuration record by extracting the attributes of that record. Other features include the generation of alarms to indicate whether or not a transfer or reconfiguration has been successful, and maintaining a scheduler for automatic capture, load or verification of configuration records.
The terms “model” and “model type” will be more specifically described in regard to the following detailed description. Generally, a model type is analogous to a “class” in object-oriented terminology. Note that a reference to “model type name” is meant to be the same as “model type”.
The term “model” is analogous to an “instance of a class” or an “object” in object-oriented terminology. So, a model is an instance of a model type. Again, a reference to “model name” means the same as just “model”.
These and other advantages of the present invention are both particularly described in the following detailed description and drawings.
REFERENCES:
patent: 5193152 (1993-03-01), Smith
patent: 5261044 (1993-11-01), Dev et al.
patent: 5509123 (1996-04-01), Dobbins et al.
patent: 5557747 (1996-09-01), Rogers et al.
patent: 5751967 (1998-05-01), Raab et al.
patent: 5838918 (1998-11-01), Prager et al.
patent: 5867713 (1999-02-01), Shrader et al.
patent: 5872928 (1999-02-01), Lewis et al.
patent: 5889953 (1999-03-01), Thebaut et al.
patent: 0 609 990 A2 (1994-08-01), None
K. Heiler et al.; Policy Driven Configuration Management of Network Devices; IEEE Network Operations and Management Symposium; vol. 1, pp. 674-689, Apr. 1996.*
Jonathan D. Moffett and Morris S. Sloman, “Policy Hierarchies for Distributed Systems Management”,IEEE Journal on Selected Areas in Communications, vol. 11, No. 9, Dec. 1993, pp. 1404-1414.
Jonathan D. Moffett and Morris S. Sloman, “Policy Conflict Anaylsis in Distributed System Management”,Journal of Organizational Computing, 4(1) 1994, pp. 1-22.
Sloman, Network and Distributed Systems Management, Addison-Wesley Publishing Company, Wokingham, England (1994) “Domains: A Framework For Structuring Management Policy” (Chapter 16, pp. 433-453) Moffett, “Specification of Management Policies and Discretionary Access Control,” (Chapter 17, pp. 455-480).
Weis, Journal of Network and Systems Management, Plenum Publishing Corp., “Policies In Network And Systems Management—Formal Definition And Architecture,” Plenum Publishing Corp., (1994).
Roos et al., Integrated Network Management III, “Modelling Management Policy Using Enriched Managed Objects,” Elsevier Science Publishers, North holland, pp. 207-215 (1993).
Cheriton et al., “Host Groups: A Multicast Extension For Datagram Internetworks,” Data Communciations Symposium, Sep. 1985, pp. 172-179 (USA).
“Method For Assigning Network Applications To Users and Groups,” IBM Technical Disclosure Bulletin, vol. 37, No. 4b, Apr. 1994 (New York, USA).
Kaikini Prasan
Lewis Lundy
Malik Rajiv
Rustici Eric
Scott Walter
Cabletron Systems Inc.
Coulter Kenneth R.
Wolf Greenfield & Sacks P.C.
LandOfFree
Method and apparatus for defining and enforcing policies for... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Method and apparatus for defining and enforcing policies for..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method and apparatus for defining and enforcing policies for... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2474236