Title: MSC 696 Professional Project
1MSC 696 Professional Project Domingo
Chang Remote Management and its integration into
the Regis University Academic Research Network
2 Initial Situation -No available networking
environments to support lab modules The first
Networking Lab Practicum (NLP) Group -First met
summer of 2000 -Slow start, from ground up on
everything
3Central Tenets Student Supported System
Administration The Tier Support System Remote
Support for Lower Tier Students Lab Module
Support and Coordination Issues Disk Imaging
Technology Standardized Images Remote Management
4Student Supported System Administration
NLP Students are the sysadmins Tier Structure
used for task assignment Remote Access and Tier
Three Support
5Tier Structure used for task assignment Tier
Level Experience/Knowledge Level None
to minimal exposure both to computers and
network operating systems and
hardware. Career Changers Computer Novices
1
6Tier Structure used for task assignment Tier
Level Experience/Knowledge Level Has more
than minimal training in computer and network
operating systems and can supervise Tier One
students in accomplishing documented
procedures. Experienced Lower Level Techs End
Goal of NLPs
2
7Tier Structure used for task assignment Tier
Level Experience/Knowledge Level Has
extensive hands-on experience and training
with computer and network operating systems.
Can teach procedures and troubleshoot
networks with no supervision. Experience
Network Managers/Techs
3
8Remote Access and Tier Three Support -Tier 3 can
remote in to supervise -Troubleshoot using same
visual reference points -Assumes working TCP/IP
connectivity
9Lab Module Support and Coordination
Issues Part of NLPs mission is to support
designated lab modules - Initial coordination
challenges - The existing coordination model -
Supported Lab Modules
10Lab Module Support - Initial Coordination
Challenges -Faculty not knowing or understanding
capabilities offered by initial ARN networking
environment at DTC Campus. -Incomplete
requirements, usually given very close to actual
lab date. -No central point for coordination, all
ad-hoc
11Lab Module Support - Existing Coordination
Model -Central Point of Contact (POC) in the
form of a Tier One NLP Student. -POC attends a
courses first night of class to get
requirements. -POC ensures networking environment
is ready on the day the lab module is scheduled.
12Lab Module Support - Supported Lab
Modules Networking Essentials JAVA Class Voice
over IP Packet Sniffer Software SQL Plus ORACLE
Workstation/Server
13Disk Imaging Technologies What is it? Base
Images and time savings Standard module specific
images Storage and Distribution
14Disk Imaging What is it?
Exact copies of working computer disk
partitions Symantec Ghost Server and
Multicasting -Across the wire image
transfers -Local Images -Images on Network
Shares Requires exact same hardware configurations
15Disk Imaging Base Images and Time
Savings Baseline NT 4.0 Workstation/Server
Images -Average of 2-3 hours to install /
configure NT 4.0 Workstation or
Server -Average of 30 minutes to clone a
Server or Workstation
16- Disk Imaging - Standardized Images to support Lab
Modules - JAVA Café
- -Microsoft NetMeeting
- -SQLPlus
- -Oracle Client and Server
- -Sniffer Software
17Disk Imaging Storage Distribution -Networked
Storage MaxAttach or File Server -CDROM
Archival Images split to fit
CDs -Distributed to other campuses from DTC
Campus
18- Initial Network Design
- Network Operating System (NOS) choices
- NT, Novell, UNIX
- Mirror business world NOS choices
- Network Topology choice STAR
- Available expertise in initial NLP group
- -Available computer hardware at NLPs outset
19Proof of Concept Networking-Environment DTC
Campus Outside/Inside Networks
Windows NT 4.0 Network 10BaseT ? 100BaseT
Backbone
20The Outside Network _at_ DTC ARN Static IPs
21The Inside Network _at_ DTC ARN DHCP
22Network Infrastructure/Model
23Proxy/Admin Server
-Proxy Server functions -Proxy -Filter
List -Remote Management Portal -Additional
Networking Functions
24Proxy/Admin Proxy Function -Provide Internet
connectivity to inside machines -Microsoft
Proxy Server 2.0 -Proxy Client on Standard Disk
Image for workstations -Allows private IP
addressing on internal LAN -Only one routable IP
needed on Proxy Server
25Proxy/Admin Filter List -Denies all but
specifically allowed traffic -Allows traffic by
TCP/IP Port Number HTTP 80 Control-IT
4568 VNC 5900 SQLPlus 1591 -Blocks NETBIOS
traffic by default
26Proxy/Admin Remote Management Portal -Always
On portal computer -Has the three standard
Remote Control Packages Remotely Possible -
4568 PC-Anywhere - 1494 Virtual Network
Computing (VNC) 5900 -Remote Tier 3 establishes
control session on Proxy/Admin then successive
inward control sessions from Proxy/Admin
27Proxy/Admin Additional Networking
Functions -Dynamic Host Configuration Protocol
DHCP IP address assignment -Primary Domain
Controller PDC for Windows NT 4.0 Domain
Authentication -Windows Internet Naming Service
WINS Matches Machine Names to IP addresses
28Models Deployment to Colorado Springs First
duplication of baseline ARN networking
environment Created and maintained by NLP
Students - Clones prepared at DTC, moved to
CS - Cabling all created by NLP students Deltas
from original networking environment in DTC
Campus - Online storage - Linux - No public
servers
29Procedures Documentation
-Cookbook style instructions -Procedures
demonstrated by Tier 3s -Created by Tier 1
students then tested by other Tier 1
students -Approved procedures stored for
reference - Lab Manual - ARN Website Contact
Info Schedule Info Pictures Files
30Examples of Procedures -Install Windows NT 4.0
Workstation and Server -Image updated NT 4.0
Workstation or Server -Clone disk image onto
multiple workstations -Configure cloned machines
to be individual machines
31Remote Management Concepts -Infers someone
coming in from the outside to your
network -Client Agent on target machines -Remote
manager software establishes session with such
client agents -Same as being therealmost -File
Transfer is key -Encryption of session traffic
required
32- Remote Management Configuration
- Three Remote Control (RC) Packages provide
redundancy - -Assumes working Internet connectivity
- -Remotely Possible and PC-Anywhere provide
encryption - -VNC for interior control sessions
33Remote Management Software Installation
Configuration -File Transfer used for uploading
updates/patches/fixes to target machine -Remote
Reboot -Remote Administration
34Remote Management Monitoring -Third Party
Monitoring software Whats Up -PING Probe
every minute -Email alert after ten failed
PINGs -Alerts the on-call Tier 3
35Summary -Creation of prototype ARN Networking
Environment -Tenets Student Sysadmins Disk
Imaging/Cloning Remote Support -Network
Environment description -Remote Control Software
part of standard images -Proxy/Admin Functions
36QUESTIONS?