enterprise network management system
Transcription
enterprise network management system
ITOTS Networks, LLC ‐ Enterprise Network Management Proposal CSC Proposal No.1 ENTERPRISE NETWORK MANAGEMENT SYSTEM PRELIMINARY DESIGN DOCUMENT FOR NETWORK MANAGEMENT DATA COLLECTION AND NOTIFICATION SYSTEM (NMDCNG) ITOTS Control Number: 1 DOCUMENT CONTROL NUMBER: REVISION No. 1 14 December 2009 Prepared By: ITOTS Networks, LLC 7981 Eastern Avenue, Ste C10 Silver Spring, MD 20910-4863 (Enterprise Datacenter Facility) Prepared For: Computer Science Corporation 7459A Candlewood Rd. Hanover, MD 21076 Americas ITOTS Network, LLC • 7981 Eastern Avenue, Ste C10 • Silver Springs, MD 20910 • No. 240‐997‐0016 • [email protected] • Page 2 ITOTS Networks, LLC ‐ Enterprise Network Management Proposal CSC Proposal No.1 MONDAY, DECEMBER 14, 2009 CSC Project Manager Computer Science Corporation 3170 Fairview Park Drive Falls Church, VA 22042 Dear CSC Project Manager: We appreciate the opportunity to provide an “Enterprise Network Management” System to Collect, Assess, Analyze, Notify and Dispatch (optional) with CSC’s network initiative. To reiterate, ITOTS Networks has an elite team of engineers with skills to make this a successful implementation. ITOTS has a track record of exceeding client expectations by keeping in mind the most important asset, “THE CLIENT”. ITOTS can quickly respond to your business requirements by providing a cost‐effective solution. By recognizing time‐to‐value driven pressures, ITOTS is equipped to manage your technological investment and enhance you business operations and capabilities statements. We are confident that this proposal will effectively demonstrate ITOTS’ flexibility of service and total commitment to quality. Our support staff remains committed to serving you with the highest levels of standard of quality and performance. If you have any questions regarding the information contained in this document, please refer to the contact information list below. Please be aware that all materials and information contained in this document are proprietary to ITOTS and are to be treated confidentially to all recipients. Acceptance and delivery of this document constitutes acknowledgement of the confidential relationship under which disclosure and delivery are made. No part of this document may be reproduced or transmitted outside this endeavor without ITOTS’ expressed written consent. Thank you again for your interest in our service offering. Respectfully, C. Todd Sanders, Sr. Partner Enterprise Network Architect 7981 Eastern Avenue, Ste. C10 Silver Spring, MD 20910 Tel: (240) 997‐0016 Email: [email protected]/[email protected] ITOTS Network, LLC • 7981 Eastern Avenue, Ste C10 • Silver Springs, MD 20910 • No. 240‐997‐0016 • [email protected] • Page 3 ITOTS Networks, LLC ‐ Enterprise Network Management Proposal Table of Contents 1 INTRODUCTION .................................................................................................................................... 5 1.1 1.2 1.3 1.4 1.5 2 PURPOSE .................................................................................................................................................. 5 SCOPE OBJECTIVES ..................................................................................................................................... 6 DELIVERABLE OVERVIEW ............................................................................................................................. 7 ASSUMPTIONS ........................................................................................................................................... 8 PRICING .................................................................................................................................................... 9 ITOTS (CAND) INFRASTRUCTURE MANAGEMENT................................................................................... 2 2.1 2.2 3 CSC Proposal No.1 INFRASTRUCTURE ADMINISTRATION .............................................................................................................. 2 MONITORING AND ARCHITECTURE ................................................................................................................ 3 INFRASTRUCTURE STATUS REPORTING ................................................................................................. 5 A. APPENDIX ‐ ITOTS PERSONNEL CHART .............................................................................................. 7 B. APPENDIX ‐ REFERENCES ....................................................................................................................... 8 ITOTS Network, LLC • 7981 Eastern Avenue, Ste C10 • Silver Springs, MD 20910 • No. 240‐997‐0016 • [email protected] • Page 4 ITOTS Networks, LLC ‐ Enterprise Network Management Proposal CSC Proposal No.1 1 Introduction 1.1 Purpose Computer Science Corporation (CSC) has requested that ITOTS Networks, LLC (ITOTS) provide a comprehensive network management solution to monitor and provide data-collection from various locations for Maryland Public Safety Agencies. CSC will outsource its business to a small business to provide enterprise network operations and management support to Maryland Public Safety Agencies. ITOTS Network, LLC (ITOTS) (Information Technology Office of Technical Services) 7981 Eastern Avenue, Ste C10 Silver Spring, MD 20910 ITOTS Networks located in downtown Silver Springs Maryland will provide CSC with a three (3) tiered approach to Collect, Assess and Analyze, Notify and Dispatch services. ITOTS Networks has been business for three (3) years with engineers with total collective experience in an Enterprise Network Management and Computing Environment (IT) for over 30 years. ITOTS will provide and support CSC with network monitoring, implementation and integration of various networking solutions. ITOTS will provide CSC with real-time, daily and weekly reports from various network monitoring applications to help identify anomalies, define base lines and provide recommendations and solutions from information gathered from Maryland Public Safety Radio sites. ITOTS will provide numerous COTS (Commercial Off-The-Shelf) and Open-source applications to help identify problems before problems occur. ITOTS Network, LLC • 7981 Eastern Avenue, Ste C10 • Silver Springs, MD 20910 • No. 240‐997‐0016 • [email protected] • Page 5 ITOTS Networks, LLC ‐ Enterprise Network Management Proposal CSC Proposal No.1 ITOTS will provide CSC the most competitive price for the various geographically dispersed sites. Since systems vary in hardware and software complexity, ITOTS will also provide system programming engineers to assist with design schemes if problems occur with retrieving Simple Network Management Protocol (SNMPv1-3) to our Network Operations Center. Notification from our 24/7 NOC will be implemented from a networking management facility in Silver Spring Maryland. The overall goal and design will provide support to CSC who will be supporting all of Maryland Public Safety Agencies (Fire, Police, etc) within minutes. CSC has requested that ITOTS to lead an initiative to provide network management methods around the State of Maryland, this initiative will provide one unified centralized management solution. Network Maryland communications initiative aims to develop an enterprise-wide communication solution ranging from monitoring SNMP (ASN.1 standards) aware network devices. This initiative is one of several strategic IT initiatives associated with Network Maryland IT consolidation effort which further supports the support agencies “ONE” network vision. ITOTS Networks has the expertise and experience to help design solutions to support Maryland Public Safety Agency enterprise networking management initiative. The initiative, known herein as the Collect, Analyze, Assess, Notify and Dispatch (CAND) project, will meet CSC scope of work objectives. 1.2 Scope Objectives The proposed Enterprise Network Management (known from this point as ENM) solution will alleviate inefficiencies as well as meet the CSC monitoring goals by meeting current and future functional and technical communication requirements. The desired result of the ENM Project communication initiative incorporates three primary elements. Collection: the system will consist of a distributed architecture consisting of high bandwidth LAN/WAN/SAN solution to collect and gather information from probes put in the field by Motorola. ITOTS Network NOC will monitor, collect and analyze information obtained by CSC. Assess and Analyze: the system infrastructure will be monitored ITOTS Networks. ITOTS Networks NOC will assist and analyze problems identified by Computer Science Corporation’s systems and provide notification if an anomaly or outage occurs. ITOTS will provide an integrated enterprise network management solution that will provide network baselines, automated updates and responses to networking issues. Notification: the ENM system will provide a uniform and intuitive enterprise networking management solution that will seamlessly integrate with numerous networking applications from COTS (Commercial Off-The-Shelf) products to customized OpenSource applications to help identify problems before problems occur. Dispatch (Optional): ITOTS will provide numerous dispatching methods to CSC or Motorola staff members to ensure problems are quickly resolved. The ENM will provide statistical information, baseline identification, notification and other informational gathering processes. ITOTS will monitor 400 – 600 dispersed sites with possibly 8 to 33 target points per site (19,800 devices or 20,000 devices total). ITOTS will work with CSC to get a better understanding of the various devices and methods of data transfer from the various sites (SNMP is the protocol of choice). ITOTS Network, LLC • 7981 Eastern Avenue, Ste C10 • Silver Springs, MD 20910 • No. 240‐997‐0016 • [email protected] • Page 6 ITOTS Networks, LLC ‐ Enterprise Network Management Proposal CSC Proposal No.1 ITOTS will implement a distributed architecture (more than one site performing the monitoring) in the event of a catastrophic or event or loss of one of our Network Operations Center (NOC). ITOTS will provide and operate the ENM system and adhere to CSC Project Management and Service Level Agreements identified by CSC. Additionally ITOTS will adhere to CSC record management and security standards (National Record keeping standards). ITOTS is also aware of the National Records Management and Archiving (NARA) procedures to assist CSC in providing the most up to date documentation. ITOTS will work with CSC to determine various levels of accessibility (access to the network, the network could be down) based on CSC’s level of access to ensure proper monitoring and data-transfer procedures are met. ITOTS will provide ongoing reports to CSC ranging from outage, notification and/or dispatch reports for management review. Reporting will be based on numerous templates but specific tailoring of these reports can be achieved on a case-by-case basis. 1.3 Deliverable Overview In accordance with ENM Contract # 1, ITOTS is pleased to deliver the ENM Preliminary Draft Design (PDD). The proposed ITOTS PDD will give CSC a 50,000ft view of the layout and scheme of our network management plan. ITOTS will provide a detailed Operational Process and Procedures (OPP) guide for the initial 20,000 devices. As part of this document, ITOTS will also design for a base system for 20,000 devices with a capacity to grow in incremental blocks of 10,000 devices. The first key deliverable as part of the PDD tasking was to first draft a design document based on the baseline requirements identified by CSC SOW, herein referred to as SOW. This PDD is a follow-up CSC requested for an Enterprise Network Management solution. The initial draft will be delivered on December 14th, 2009. This PDD incorporates additional system requirements identified by ITOTS during ITOTS facilitated design workshops and subsequent CSC workgroup meetings and conference calls. In addition, this updated design document also incorporates initial comments received from questions and comments from other bidders in the project. Finally, at the request of the CSC Executive Sponsor, the updated design document includes a change in numerous areas of communication involving Notification Procedures/Process, Time Synchronization, SNMP v1-3, SNMP Message Syntax (MIB), SNMP Users, SNMP Groups, SNMP AES Community String Encryption (40bit), probe access (policies) and Bandwidth Utilization (pipe size). The PDD addresses both high level and some detailed sections of the technical OPP design aspects including: ENM Solution: NimBus, HP SIM, OpenManager, Nagios or Zabbix, Collection: Data Gathering and ENM procedures, Assessment and Analysis: Automated and Human data review Notification: SMS, PDA, Email, Phone, and Dispatch: This feature is optional that is outside the scope of work (additional cost) ITOTS Network, LLC • 7981 Eastern Avenue, Ste C10 • Silver Springs, MD 20910 • No. 240‐997‐0016 • [email protected] • Page 7 ITOTS Networks, LLC ‐ Enterprise Network Management Proposal CSC Proposal No.1 The PDD Document does not address operational items such as day-to-day operational procedures, configuration management, Service Level Agreement (SLA) reporting, detail backup and recovery procedures, etc. These items will be incorporated during the implementation phase as part of the internal ITOTS Concept of Operations (CONOPS) documentation. Additionally, the PDD (Preliminary Design Document) does not specify actual IP addresses, service accounts, actual ports used in the routers, Virtual Local Area Network (VLAN) numbers, SNMP user groups and community strings etc. These items will be incorporated during the operations aspect of the internal CSC "As-Build" documentation. 1.4 Assumptions In developing the PDD design, ITOTS has adhered to the following assumptions: CSC should provide a list of Points of Contact (POC) in the event of an outage and provide secondary points of contact if the POC is not available. Escalation procedures will be put in place to help mitigate any of the unforeseen risks. Maps of the different device locations and address information to our call center staff (as needed). CSC will provide ITOTS Network Management engineers with connectivity access to and from the DMZ (VPN, GRE, IPSEC, SSL tunnels are preferred). If a DR site is required by the CSC, scheduled pricing will negotiated between CSC and ITOTS. CSC will provide access to the circuits between various government agencies and to the DR site (optional) through the Maryland’s Network (Network Maryland). ITOTS assumes 2-4 times of scheduled routine maintenance (network outages) to ensure reliability of systems. Downtime will be scheduled across the board to help alleviate network outages on ITOTS end (routine maintenance). ITOTS will schedule time around CSC outage schedule. ITOTS will involve their ISP to provide additional monitoring if the primary site is down (short durations as part of the service). ITOTS suite of systems must be treated equally by all agencies as an integral part of Maryland’s datacenter. All agencies must configure their individual firewalls to allow ITOTS network traffic will be clear from impediments. CSC and ITOTS will ensure traffic hazardous to all will not be permitted across the Maryland-Network backbone. ITOTS will provide primary and backup personnel names, numbers, pager numbers or E-mail addresses for reporting to CSC Network and/or Security Personnel to ensure access to Network Maryland’s environment. ITOTS is requesting that CSC or the State to provide the certificate from their certificate authority. This will ensure SNMP community strings are encrypted using a certificate from a known and trusted source. ITOTS is requesting that CSC delegate RADIUS or TACACS servers to validate the users when they access monitored devices, this will help us determine if a system has been compromised from within or from an external source. ITOTS Network, LLC • 7981 Eastern Avenue, Ste C10 • Silver Springs, MD 20910 • No. 240‐997‐0016 • [email protected] • Page 8 ITOTS Networks, LLC ‐ Enterprise Network Management Proposal CSC Proposal No.1 1.5 Pricing Setup/Installation Price Description No. of Locations (Est) Devices (Est) One Time Setup Quantity Unit Price Total Cost 1 18,000 18,000 Monthly Total Cost 18,000 Monitoring Price Description Monitoring Cost No. of Locations (Est) 400 Devices (Est) Term Unit Price Subtotal (mo.) Total Cost 8 12 1.15 3,680 44,160 Yearly Total Cost 44,160 Total Price for the Year Description Monitoring Cost One Time Setup Yearly Total Cost No. of Locations (Est) 400 Devices (Est) Term Unit Price Subtotal (mo.) Total Cost 8 12 1 1.15 18,000 3,680 18,000 44,160 18,000 62,160 ITOTS Network, LLC • 7981 Eastern Avenue, Ste C10 • Silver Springs, MD 20910 • No. 240‐997‐0016 • [email protected] • Page 9 ITOTS Networks, LLC ‐ Enterprise Network Management Proposal CSC Proposal No.1 2 ITOTS (CAND) Infrastructure Management The ITOTS facility will be the network management resource for CSC Remote management. The ITOTS facility will perform the required administration, management and operational support services for CSC. 2.1 Infrastructure Administration The ITOTS on-site administration facility is designed to support a broad range of hosts and applications required to manage and secure Maryland’s Official Network infrastructure. A few of the tools that will be used to manage the data received from CSC are listed below: Trouble Ticket System (TIS) access and Network management applications CSC will also have an access to the ITOTS help desk system (Mantis or Zentrack) which stores and manages device outages. Through this access, agent ITOTS will provide service status of all alarms resolution and update to the monitoring staff at the ITOTS NOC. CSC will have visibility to these service activities via a secure web interface into the Mantis or Zentrack system. This will provide status on all network trouble tickets entered by our 24/7 staff. ITOTS Network, LLC • 7981 Eastern Avenue, Ste C10 • Silver Springs, MD 20910 • No. 240‐997‐0016 • [email protected] • Page 2 ITOTS Networks, LLC ‐ Enterprise Network Management Proposal CSC Proposal No.1 2.2 Monitoring and Architecture The infrastructure monitoring architecture consists of a Simple Network Management Protocol (SNMP) management platform for network and server monitoring The network management station will periodically poll the CSC’s network infrastructure devices which in turn will forwards the status of the poll to the ITOTS monitoring platforms. The web server provides an interface for viewing the performance, capacity, and fault reports. The Web interfaces and ITOTS NOC facility will provide a distribute architecture regarding the entire monitoring process. ITOTS Network, LLC • 7981 Eastern Avenue, Ste C10 • Silver Springs, MD 20910 • No. 240‐997‐0016 • [email protected] • Page 3 ITOTS Networks, LLC ‐ Enterprise Network Management Proposal CSC Proposal No.1 ITOTS base platforms will be configured to correlate events and provide an automatic ticket generation function. The trouble tickets will be created in the ITOTS Web ticketing systems by office staff as well. The ENM solution will provide efficient data collection, reporting, and troubleshooting functions. All of the devices will be located in a designated collection cabinet configured specifically at the ITOTS Silver Spring facility as part of ENM deliverable. The solution will poll the managed devices, store required information and forward the information and alerts to the CSC for action. The ENM Solution functions as a web Portal providing secure access to view a wide variety of performance and management reports. ITOTS Network, LLC • 7981 Eastern Avenue, Ste C10 • Silver Springs, MD 20910 • No. 240‐997‐0016 • [email protected] • Page 4 ITOTS Networks, LLC ‐ Enterprise Network Management Proposal CSC Proposal No.1 3 Infrastructure Status Reporting ITOTS will utilize the NimBus, OpenManager or SNMPc reporting system to be used as cross reference tools to validate findings. ITOTS will deliver standardized reports that show components of the Network Maryland infrastructure that are exceeding or are candidates to exceed thresholds, down or reports errors with graphical views into device centric anomalies, historical traffic patterns and trends. ITOTS will deliver these reports via the secured web site (reports can be run at anytime from the CSC NOC team from the web interface provided). Nightly scheduled reports consist of "Service Level" and "Health" reports with additional monthly "Health", performance, capacity or security reports. ITOTS Network, LLC • 7981 Eastern Avenue, Ste C10 • Silver Springs, MD 20910 • No. 240‐997‐0016 • [email protected] • Page 5 ITOTS Networks, LLC ‐ Enterprise Network Management Proposal CSC Proposal No.1 By signing this document, this is an acceptance of our statement of work and the work to be performed at the location indicated above. Please be advised. ITOTS Networks, LLC COMPUTER SCIENCE Company (ITOTS) Company CORPORATION (CSC) Name Todd Sanders Signature Date December 14, 2009 Name Signature Date December 14, 2009 ITOTS Network, LLC • 7981 Eastern Avenue, Ste C10 • Silver Springs, MD 20910 • No. 240‐997‐0016 • [email protected] • Page 6 ITOTS Networks, LLC ‐ Enterprise Network Management Proposal CSC Proposal No.1 A. APPENDIX ITOTS Personnel Chart ITOTS Network, LLC • 7981 Eastern Avenue, Ste C10 • Silver Springs, MD 20910 • No. 240‐997‐0016 • [email protected] • Page 7 ITOTS Networks, LLC ‐ Enterprise Network Management Proposal CSC Proposal No.1 B. APPENDIX REFERENCES REFERENCES Client AO US Courts (SRA Prime Contractor) – Paul Mallard Project JMAP Contract Contract No. 12239.050.001.00 Census Bureau (Harris Corporation – Prime Contractor) – Max Gonzales (POC) Census 2010 Project Census Bureau CONTRACT NO: YA132306CN0012 TSA Security (UNISYS Corporation – Prime Contractor, Chris Lapworth) TSA Security Project TSA Security Project USAR Command Datacenter Consolidation Project – (John Malyevac (Subcontracting Organization Blue Parrot) USAR Datacenter Consolidation Project Data Center Consolidation 4TEG21032533 ANSWER Contract GS09K-99-BHD-0001 Description Provide support to various Federal Courts throughout the US ranging from Redhat, SAN, Network, Network Management Support Provide support to Census Bureau, responsibilities include Network Design, Integration, Security & Network Management Procedures, Architecture, Altiris Project Implementation Project consisted of Datacenter Architectural design for the 2010 Census Project. SNMPc was used to monitor Unisys Labs United States Army Reserve Command Chief Information Officer, G6, Architectural designs and recommendations ITOTS Network, LLC • 7981 Eastern Avenue, Ste C10 • Silver Springs, MD 20910 • No. 240‐997‐0016 • [email protected] • Page 8