Centralized Configuration Management
Every installation of the Network Manager in a large network has a huge database of connected devices, including routers, switches, wireless access points, firewalls, and more. This database is in most cases built using network discovery.
Configuration of all these devices can be periodically retrieved by the central server and backed up to the server database. In most cases, this requires no additional configuration, except for specifying devices' auth credentials.
System operators are immediately warned if a configuration change is detected by the periodic configuration polling or a change event was received from a device (e.g., in the form of a Syslog message or SNMP trap). This enables real-time network-wide monitoring of reconfiguration activities and quick isolation of incidents related to wrong configurations.
All historical configurations are stored in the central database until pre-configured expiration conditions force their deprecation. Those conditions, as well as backup schedules and network segments included in the backup process, can be customized by system administrators.
Administrators can browse the historical configuration database at any time and easily compare several configurations in a visual difference viewer. Several types of comparisons are supported:
- Comparison between historical versions of one configuration
- Comparison of different devices' configurations
- Comparison of several configuration types, e.g. startup to runtime
Any historical configuration can be re-uploaded to a device in a few mouse clicks. The baselining feature allows marking one, several or all device configurations as "known to work" and quickly revert to them in case of troubles.
AggreGate Network Manager can perform automatic reconfiguration of network devices by executing the so-called configuration scripts. Those scripts solve typical configuration change tasks, such as:
- Changing device's ACL
- Registering a new VLAN
- Shutting down or rebooting a device
- Modifying ARP table
- Enabling IP SLA or NetFlow
Configuration scripts are normally executed by the server through an SSH or Telnet session. Scripts are not static, they can refer to any server-side or device-side data to ensure that each device receives its own customized set of commands.
The scripting engine supports two different syntax variants for writing simple line-by-line scripts and implementing custom logic based on device replies.
All configuration scripts can be applied to multiple devices in a bulk mode at once. The execution can be started on-demand, scheduled or initiated by an alert.