Perle Systems Application Note
Out-of-Band Management: Government Initiatives
Implementing Remote IT Management in Government Network Infrastructures
To protect citizens, governments have an overall responsibility to respond quickly and make sure the right people are in the right places at any given time. There is a constant need to expand the use of technology so that various government databases can communicate fluidly to support the needs of intelligence gathering, law enforcement, and healthcare.
What challenges are unique to Government Networks?
The federal governments and related local agencies are under pressure to expand technology, secure greater services at lower costs, and meet public demand for a more efficient and effective government. A key element is to enhance the government’s enterprise architecture and improve information technology security. Thus, the government needs robust solutions that can rapidly integrate many discrete sources of data into integrated and actionable sets of information.
The government would find it impossible to work without access to network computers or enterprise-wide systems. The ability to monitor and manage these networks and keep them up and running is pivotal to running the country. Network Administrators have the responsibility to ensure that servers supplying mission-critical applications are functioning 24/7 and that faultless secure access to the data is maintained for a multitude of users. When networks crash, productivity does too and the longer a network is down, the greater the impact on the government and citizens.
Government agencies use wide area networks spanning many remote sites. These networks must support a great number of remote users nationally and worldwide and provide secure access to enterprise data. The stakes are high to maintain both availability and performance of the government network, regardless of how widely dispersed the network infrastructure is. It is too costly, and inefficient to have people with the technical expertise and necessary skills to administer such systems located at each site. The issue becomes how to expand the capabilities of network management personnel within the government to better maintain the variety of network infrastructures presently being deployed, and to minimize network downtime and performance loss.
How does Out-of-Band Management solve these challenges?
When a Network Administrator needs to monitor, manage, troubleshoot, or re-boot critical IT assets, they will generally access the devices directly over an Ethernet network. However, when 24/7 uptime is expected this single point of access is not enough. Given that the network administrator is generally off-site, or simply in a different building, they need a secure way to remotely access the USB or RS232 console management port of every device on the network. This is accomplished via a secure dedicated alternate access method into the IT network infrastructure.
The primary benefit of an out-of-band management interface is its availability when the network is down, a device is turned off, in sleep mode, hibernating, or otherwise inaccessible. OOBM can be used to remotely reboot devices, like routers, switches, firewalls, servers, power, storage, and telecom appliances, that are powered-down or have crashed. This preserves 24/7 uptime of the backbone communication framework for the government. While software management tools can be used for performance monitoring, and some remote troubleshooting, they only work when the network is up. During system or network outages, a Console Server is a single hardware solution that provides secure OOBM to monitor IT assets and devices from multiple vendors. The Console Server gives administrators access to multiple USB or RS232 console ports from anywhere, anytime, and any platform, as if they were locally connected through a direct serial console port connection.
Console Servers also maximize system administrators' productivity. A single interface provides them with simultaneous connectivity to multiple appliances and system consoles from any location. Most Console Servers offer Port Buffers of varying sizes to ensure data from the attached devices is not lost. Without Port Buffers, any data sent from a device, while an administrator is not attached, is lost. With Port Buffers this data is captured and can be viewed later to aid in problem diagnosis.