CONTACT US
1-844-4ZPE-SYS
ZPE CLOUD

Providing Out-of-Band Connectivity to Mission-Critical IT Resources

Home » Remote Network Management » Out of Band Management » Page 21

Why Out-of-Band Remote Access is Critical for Branch Networking

by | Feb 28, 2022 | Out of Band Management, Remote Network Management

Social,Network,Illustration

Branch locations—retail stores, shipping warehouses, and satellite offices—present a big network management challenge to the engineers supporting them. Traditional remote network management requires a WAN link to each branch, but what happens if that link goes down? Out-of-band remote access, also known as OOB, solves this problem by separating the network management plane from the data plane, and giving you a dedicated alternate connection to your remote infrastructure.

Why out-of-band remote access is critical for branch networking

To illustrate the importance of out-of-band remote access, let’s walk through a few branch networking scenarios that many IT professionals encounter during their careers.

Scenario 1: Your network and systems are suddenly offline

You’re an on-call network engineer working for a retail company headquartered in Seattle, WA. At 3 a.m., you receive a phone call from the Tampa, FL branch saying their network and all systems are entirely offline. Their store opens in a few hours. How do you determine and fix the root cause from the other side of the country?

Without OOB remote access, you’re left with a few options. You and the store manager could walk through some basic diagnostic troubleshooting over the phone. Still, unless they’re savvy with technology, you’re unlikely to progress very far with this method. You could pay for a local tech to work on it, but unless you already have a consultant on retainer, it could take hours or even days to schedule the service. As a last resort, you could fly across the country at a high cost to your company, both in terms of travel expenses and the hours of lost revenue while the branch is waiting for you to arrive and fix the problem. In conclusion, without remote OOB, any approach you take will be very costly and time-consuming.

Scenario 2: A virus is quickly spreading across your network

You’re a SOC (security operations center) engineer working in the home office of a national logistics company. You receive an alert that a warehouse computer across the country is infected with a Trojan virus, and it’s quickly spreading across the branch network. How do you isolate that branch network and remove the virus?

Taking the branch offline is crucial to prevent the virus from jumping to the enterprise network and spreading even further. However, once you lose WAN access, you’ll be unable to remove the virus or assess and mitigate the damage it caused. Your options in this scenario are even more limited due to the severity of the issue. You can’t walk someone through this process over the phone, and if you’re going to hire an outsider, it needs to be a trusted partner with security expertise. More likely, you’re looking at a truck roll, which again means travel time and expenses. To put it in a nutshell, all of these options mean more time for the virus to infect more of your network and compromise your business on a grander scale.

Scenario 3: You learn about a security vulnerability in your switch’s firmware

Your company has a satellite office in an isolated, rural location with only a skeleton crew of essential staff on-site, which is currently unavailable when the update needs to occur. You learn about a security vulnerability in their switch’s firmware, so you need to update the BIOS. How do you access the BIOS menu and power cycle the switch across a WAN connection?

Often, a switch must be managed from an HTTP or HTTPS session in a web browser. However, you need to power cycle the device and get into the menu before the switch fully boots up to access the BIOS menu. Plus, once the update is complete, the device will automatically power off, and then you’ll be unable to remotely turn it back on. It’s hard to justify the expense of a truck roll for such a simple procedure, but you also can’t leave the device exposed to potential threats. Without OOB, you’re more likely to delay critical updates and security patches, which increases the chances of a hacker finding and exploiting vulnerabilities to breach your enterprise network.

In each of these scenarios, you could save time, money, and trust with out-of-band remote access.

OOB lets you remotely diagnose, troubleshoot, and fix issues with your critical branch infrastructure through a dedicated cellular connection. You’ll have access even if your ISP has an outage, or if you need to temporarily sever the WAN link. You can also use OOB to manage powered down devices, simplifying BIOS updates and other essential maintenance. That’s why out-of-band remote access is critical to branch networking.

However, not all out-of-band solutions provide the same level of control, flexibility, and security. For instance, some OOB products only work within that vendor’s ecosystem, which means you can’t manage any of your other appliances or solutions, or you’re locked into their products and features.

You may also find branch network automation a challenge with your OOB solution—often, the appliances themselves have limited automation capabilities, and are challenging to integrate with third-party orchestration platforms. Plus, many OOB devices lack essential security features like single sign-on (SSO), multi factor authentication (MFA), and zero trust security, which could leave your branches exposed to potential threats and negatively impact your reputation and customer trust.

See how Nodegrid out-of-band remote access can simplify your branch network management

Nodegrid is a 3rd-gen out-of-band management solution, meaning you get reliable remote access to your branch networks without any of the limitations of a typical OOB product.

In the Nodegrid demo, you’ll see how the open, x86 Nodegrid OS makes it easy to integrate all of your Linux-based solutions for complete control and flexibility. We’ll also demonstrate how Nodegrid OOB delivers true end-to-end network automation and orchestration capabilities, with support for Ansible, Puppet, Chef, RESTful APIs, and more. Plus, all Nodegrid solutions are designed with security at the forefront, including zero trust security, SSO, MFA, and advanced authentication with unlimited fallback methods.

Learn more about out-of-band remote access for branch networking.

Visit our OOB learning center or request a free demo of the Nodegrid out-of-band solution.

Watch A Demo

Watch agile networking in action with these Nodegrid demos

by | Dec 16, 2021 | Modernize Legacy Environments, NetDevOps, Network Automation, Out of Band Management, Power Management, Streamline Deployments, Uncategorized, Zero Touch Provisioning (ZTP)

title_demoreel

Watch agile networking in action with these Nodegrid demos

 

ZPE® Systems Network Solutions Architect Rene Neumann shows you how easy it is to enable agile networking. See Nodegrid and ZPE Cloud first hand with our collection of demo videos. You’ll learn how to:

 

  • Use true zero touch for automatic deployments
  • Fully set up environments using rich orchestration
  • Remotely configure and manage edge workloads

Demo: Deploy Networks Fast with ZPE Cloud’s Zero Touch Provisioning

Demo: Fully Provision Edge Network Workloads with Nodegrid

Demo: Orchestrate Branch Network Devices Using Nodegrid

 

View More Videos    Schedule a Demo

HEAnet: providing network uptime for education

by | Nov 15, 2021 | Case Studies, Failover Connectivity, Increase Productivity, Out of Band Management, Pillar 2 - Critical Remote, Zero Touch Provisioning (ZTP)

 

HEAnet logo

If there’s one sector that relies on network uptime more than ever before, it’s the education sector. For both in-person and virtual learning, students and staff connect to crucial resources around the world to share information. The infrastructure that enables this connectivity is critical, and in the country of Ireland, this infrastructure is deployed and maintained by HEAnet.

As the national education and research network, HEAnet is a provider who must adhere to stringent service levels in order to keep entire education communities online. But they recently faced a few major challenges as their out-of-band (OOB) management solution neared its end-of-life (EOL) date. This system was crucial to maintaining network uptime, as it gave engineers remote access to their 50+ nationwide locations. They needed to quickly roll out a new solution, but they were faced with a second challenge — limited staff.

It seemed HEAnet was stuck between a rock and a hard place. They would surely need to outsource the job, and that’s when they turned to Rahi, the world-renowned MSP who introduced them to ZPE Systems’ Nodegrid.

The rest is history, and for a deep dive into that lesson, download the full HEAnet case study below.

But before you do, here’s a quick refresher on critical infrastructure and why network uptime can be difficult to maintain.

Critical infrastructure and network uptime

Critical infrastructure is made up of the systems that connect sites to each other and to the rest of the world. The data center is an obvious example of where critical infrastructure is deployed. Points-of-presence (POPs) and colocations are other somewhat obvious examples. All of these house components, such as servers, switches, and routers, which are essential to handling data and traffic that organizations rely on.

Here are more examples of where critical infrastructure is commonly found:

  • Warehouses: servers, routers, and Wi-Fi access points help humans and their automated counterparts track inventories, fulfill orders, and communicate with vendors.
  • Manufacturing plants: operationalized technology like sensors and IoT devices collect data from gauges, robots, and machining equipment to ensure accurate measurements, maintain quality control, and streamline fabrication processes.
  • Cellular base stations: compute, storage, and failover devices process signals, store data, and provide backup connectivity for critical cell site components.

Organizations must maintain high levels of network uptime for their critical infrastructure, since it supports the lifeblood of everything they do. But this can be a challenge because these components are not always located within convenient reach of skilled engineers.

Why can network uptime be so challenging to maintain?

Maintaining network uptime can be challenging even for fully-staffed locations. This difficulty is amplified — quite dramatically — when organizations have to recover and maintain sites that are located far off the beaten path.

Imagine this: you’re responsible for monitoring and troubleshooting critical infrastructure for a network of college campuses in your region. One of your most remote sites, which serves more than one thousand students and faculty on any given day, experiences sudden disruptions and eventually goes offline. It’ll take close to four hours for you to put skilled staff on site to recover the network, which puts you at risk of breaching your SLA. You and your team are stressed out and scrambling, while students and teachers have no option but to cancel some or all of their activities.

Now imagine that you have a tool that allows you to respond instantly and restore the network before anyone even notices. That’s the kind of power you can achieve with a deep, robust out-of-band management solution, which is one of the tools HEAnet deployed to keep disruptions from reaching users.

There’s more that can go wrong, however. Your sites could suffer an ISP outage, leaving locations in the dark if they don’t employ any wireless backup connections. Or if your customer has a multi-vendor MSP solution that you’re part of, the other vendor’s components may be to blame, and you need a tool that can help you quickly diagnose the root cause.

Download the HEAnet case study

To see more challenges you might face when maintaining network uptime, download the HEAnet case study. You’ll also discover how Nodegrid gave them seamless backup connectivity and allowed a single Rahi engineer to deploy two sites in a single day. Get the case study now.

3 Tips to Improve Edge Network Resilience

by | Sep 22, 2021 | Failover Connectivity, Out of Band Management, Remote Network Management

ZPE Systems and Palo Alto Networks

When it comes to improving edge network resilience, traditional WAN architectures can easily get in your way.

Suppose you’re setting up an electrical substation, cellular base station, or other distributed remote infrastructure to incorporate cloud-based networking. To deploy, you need to configure a slew of cloud-enabled devices, from IoT sensors, to routers, firewalls, SD-WAN boxes, and out-of-band and cellular failover appliances. The physical footprint alone is intimidating, and is rife with points of failure. On top of all this, you need the right management tools to ensure everything runs smoothly. You might need visibility on power grid sampling, application performance, or user experience, with management software that lets you troubleshoot individual components of your infrastructure.

It’s not just your network or your business riding on your shoulders — it’s people’s livelihoods, whether they rely on you for delivering essential utilities or keeping them connected to the world.

That’s why it’s so important to boost edge network resilience and shield your customers from outages. And it’s why ZPE Systems now hosts Palo Alto Networks’ Prisma SD-WAN offering. Read the full press release, and download the brief below for details.

But before you do, here are three tips to help you improve edge network resilience.

How to improve edge network resilience

1. Respond fast with out-of-band

It’s 8pm, and suddenly a surge of customer tickets crowds your support desk. You quickly scan the issues and realize that one of your towers is offline, causing an outage for many of your rural customers. One of your on-call technicians is standing by for dispatch, but the hour-long drive means your teams will be fielding complaints for at least 60 minutes. Meanwhile, customer satisfaction begins to drop and one star reviews pour into your online channels.

This is all too common with edge network support, and it highlights why out-of-band management can be a life saver. Instead of having to dispatch IT support technicians to establish a physical connection and allow HQ to remote-in for troubleshooting, what if you could respond instantly from anywhere? With out-of-band, you get an isolated management network that’s separate from your production network, and you can establish a connection using cellular, broadband, DSL, or even phone lines. This means you can quickly gain access to your infrastructure, and with an advanced out-of-band solution like Nodegrid, you can simply open your web browser to troubleshoot and resolve issues — whether you need to reboot a network switch, reconfigure a firewall, or analyze and adjust traffic flows.

No matter your deployment, out-of-band is essential to improving edge network resilience.

2. Stay connected with cellular backup

Part of boosting edge network resilience involves diversifying the types of connections at each location. But this doesn’t mean adding more layers of physical connections.

Although T1, T3, and MPLS links can serve as reliable backups, these physical connections most likely follow the same path as your main connection. So when a flood sends currents your way or a construction crew sinks a thousand-pound excavator bucket into your main line, chances are your physical backups will go down, too.

Backhoe digging a large trench, putting underground communication lines at risk.

If you have 5G/4G LTE cellular, you can keep your locations online through all this. Your cellular connections can serve as failover paths, but also provide reliable backup for out-of-band networks. Download the joint solutions brief below and see how Nodegrid’s failover helped a large oil and gas company eliminate the majority of their continuity issues at the edge.

3. Go vendor-neutral to centralize control

One of the biggest drawbacks to managing traditional WAN architecture is vendor lock-in. When you purchase one provider’s SD-WAN or security solution, you’re limited to using their unique management tools and integrating only pre-approved solutions (usually from them as well). This can make edge network resilience difficult to maintain, since you’ll have to learn several different systems, protocols, interfaces, commands, etc.

When you centralize control, however, you get access to all the tools you need, using a single gateway. The best platforms for this feature a vendor-neutral operating system and rich API library that can accommodate your custom and third-party integrations.

Imagine no longer needing to log in and out of every solution in your stack, and instead using single sign-on to gain access to your SD-WAN’s cloud controller, next-gen firewall, application performance monitoring app, and every part of your edge infrastructure. For a major digital security company, this meant cutting resolution times in half using a single tool that helped them provide continuous monitoring and achieve instant response times.

See how Palo Alto Networks and ZPE Systems boost edge network resilience

Prisma SD-WAN and Nodegrid help companies streamline deployment, configuration, and management of their edge networks. Download the brief for full details.

Out-of-Band Network Management: Fundamental Principles & Use Cases

by | Aug 12, 2021 | Out of Band Management, Remote Network Management

shutterstock_1006041130

Out-of-band network management gives enterprises secure and remote access to critical network infrastructure, even during outages and service interruptions. It separates your production network from your management plane, allowing you to remotely troubleshoot, monitor, and administer your infrastructure without relying on a LAN or ISP connection.

Let’s take a closer look at the Out-of-band network management fundamental principles, use cases, and their benefits.

Out-of-band network management fundamental principles

Out-of-band (OOB) network management provides a secure, remote connection to your network that’s available during outages, breaches, and other service disruptions. It does this using a network that’s specifically dedicated to infrastructure management and is completely independent of your primary network. OOB uses serial console servers to create an alternate path to critical network devices with a separate management plane, typically using a 4G LTE cellular connection to provide you with uninterrupted access to your network.

You implement out-of-band network management by deploying these serial console servers at every office, remote branch, data center, and other physical sites. By physically connecting your OOB serial consoles to critical network devices like routers, switches, and servers, you ensure engineers and administrators can always reach those devices without an IP address. That means your management plane is always available, even if your ISP connection goes down.

OOB network management provides higher-level remote access and control capabilities for multiple devices from one pane of glass. If your primary network experiences an outage, you can use OOB to reboot routers, troubleshoot connection problems, or perform device health checks. 

The best part is that you can access your out-of-band serial console servers from anywhere in the world – so your team can respond to issues at remote sites just as quickly as at your main office.

 

 

Out-of-band network management use cases and benefits

shutterstock_1936608907

The ability to remotely manage your infrastructure from a dedicated network presents many business advantages. Let’s examine some out-of-band network management use cases and benefits in greater detail.

Remote troubleshooting

Imagine getting a phone call at 3 a.m. because a remote site on the other side of the country has gone dark, and nobody knows why. This scenario is every network engineer’s nightmare for a good reason—in the past, you’d have to pack a bag and hop on a plane just to get any sort of visibility on the infrastructure and what the problem might be. The cost of an outage like this, both in travel expenses and the hours of business downtime, can be devastating. For example, in a recent Information Technology Intelligence Consulting survey, four in ten enterprise organizations said an hour of downtime now costs their firms from $1 million to over $5 million. Now imagine how many hours it would take just to fly to your remote site to get eyes on the problem.

  • Benefits of out-of-band network management in this scenario

With out-of-band network management, this exact scenario is much easier to manage. As soon as your branch office goes dark, you can use your OOB management solution to connect and begin troubleshooting in a matter of minutes. Using the figure above, three hours of downtime while your technician travels to your remote site could cost up to $15 million. With OOB management, you could potentially avoid those hours of travel and downtime, saving your business a lot of money.

If your enterprise has many remote sites spread out over a wide geographical area, out-of-band network management can simplify remote infrastructure troubleshooting and support. Rather than hiring a technician for each region or paying to fly out your engineers every time there’s an issue, your team can fully support all your remote sites from a centralized location.

Remote infrastructure management

Without any sort of unified infrastructure management, engineers must work with many different devices and interfaces. Needing to learn and configure so many systems and constantly hop from machine to machine and interface to interface increases the potential for mistakes. According to ITIC, misconfigurations and other human errors are the top cause of unplanned downtime, so it’s critical to look for ways to simplify infrastructure management and reduce staff mistakes.

  • Benefits of Out-of-band network management in this scenario

Out-of-band network management isn’t just for outages—it’s a dedicated network you can use to manage all your critical infrastructure from one unified tool. OOB allows you to monitor, manage, and manipulate servers and appliances remotely. You can check event logs, monitor temperature, and even remotely control the keyboard and mouse to manage server operating systems. In addition, OOB network management consoles can automate some commands and functions, further simplifying your infrastructure management.

Data center admins and service providers need to manage a huge amount and variety of network infrastructure so having a unified out-of-band solution can help them realize many benefits. Using OOB to monitor and manage servers and appliances remotely, engineers can control multiple facilities from one central console, saving time and reducing the number of staff required at each location.

Network isolation and security

With in-band network management, all your administration and management ports are connected to the production network. If an attacker breaches your production network, they could use those ports to access more sensitive parts of your infrastructure. Plus, if your production network goes down, so does your management network. With out-of-band network management, all your administration functions are on an entirely independent network, separating user and management traffic. In the event of a breach, engineers can use their OOB console to isolate parts of the network, restrict access, and secure the management plane.

Another security pain point addressed by OOB network management is keeping colocation infrastructure protected while still ensuring adequate visibility. Often, physical access to colocation hardware is restricted for security purposes, so if there’s an outage or breach, you may not be able to get visibility on the problem.

  • Benefits of out-of-band network management in this scenario

With out-of-band network management, you can remotely access and manage your colocation infrastructure even when the ISP connection is down. This allows you to fully control your hardware and remediate issues quickly without compromising facility security.

Network security should be on every enterprise’s priority list right now. Cyberattacks are common and can be economically disastrous—according to a recent IBM study, the average cost of a data breach is $3.86 million. Investing in an out-of-band network solution that allows you to isolate your production network from your management plane and gain visibility on physically secure devices could prevent such a breach from occurring and save you money in the long run.

 

The right out-of-band network management solution

Out-of-band network management provides numerous benefits to any organization seeking to improve its remote infrastructure management capabilities. Using OOB, you can remotely troubleshoot network issues from anywhere in the world, even if the primary ISP is down. OOB solutions also simplify remote infrastructure management by providing a unified control panel to monitor, manage, and manipulate all your servers and appliances. 

Finally, you can improve your network security by segregating all device management from your production network while still maintaining remote and colocation hardware. All of this is possible with a unified out-of-band network management solution, like ZPE Systems’ Nodegrid.

Nodegrid is a complete out-of-band network management solution that offers you total network control from any location.

To learn more about how ZPE Systems can help you streamline your remote infrastructure management, contact us online or call 1-844-4ZPE-SYS.

Contact Us

ZPE Systems announces Nodegrid Data Lake, app marketplace, and sensors to help organizations uncover valuable data for edge operations

by | Aug 9, 2021 | Data Logging, Monitoring & Reporting, News & Announcements, Out of Band Management, Press Releases

CloudApps
Fremont, CA, August 10, 2021 – ZPE Systems launches a new applications marketplace, along with a portfolio of USB-type environmental sensors, meant to help organizations leverage valuable data generated by their IT components. As networks and users become more distributed, it’s imperative that organizations uncover hidden data to optimize availability and user experiences. Nodegrid sensors allow organizations to collect critical data points, for deep insights into their infrastructures, systems, and security logs, among other categories.

Enterprises in telco, content delivery, manufacturing, and other industries can benefit from Nodegrid Data Lake. This application gathers previously uncollected data points to give network admins and engineers visibility into key performance indicators (KPIs). Nodegrid Data Lake helps inspect and visualize data points for:

  • Infrastructure components, such as power, cooling, relay, dry contact
  • Environmental conditions, such as temperature, humidity, air flow
  • System utilization, such as disk usage, processes, memory
  • User experience applications, such as Office365, Zoom, point of sale
  • Security, such as system logs, data logs, GPS data
  • Networking, such as data traffic, application profiling, antenna/tower traffic
  • Previously hidden server and switch logs from IPMI and RS232 serial console

Gartner considers Nodegrid Data Lake a killer app, as it’s indispensable to maximizing business continuity and avoiding downtime.

ZPE Cloud’s additional applications help enterprises and resellers gain further insights and convenience. These applications include:

  • Extended Storage — Save time with centralized file management and add disk space via the cloud
  • Generic Forwarder — Secure distributed users with software-defined perimeter gateways on-prem or cloud-delivered
  • Reports — Drive smart decision making with comprehensive reports on device availability and other metrics
  • Palo Alto Prisma Access — Easily manage Palo Alto security solutions using centralized access
  • ZPE Cloud mobile — Never lose sight of network performance using the ZPE Cloud mobile app, available free on App Store and Google Play

These applications begin an extended product roadmap designed to optimize the configuration, access, and management capabilities offered via ZPE Cloud.

ZPE Systems also launches USB-type environmental sensors, to help ensure optimal utilization of critical physical infrastructure components. These sensors can be managed independently via Nodegrid devices, or via Nodegrid Data Lake for complex event processing. Nodegrid sensors support alert triggers and tracking, and integrate seamlessly with ZPE Cloud’s management interface. Available sensors include:

  • Temperature and humidity
  • Airflow and temperature
  • Smoke
  • Particulate
  • GPIO
  • Relay
  • Proximity
  • Beacon (no alarm)
  • Beacon (with alarm)
  • Door lock with RFID tag

“IT staff struggle with downtime, yet their infrastructure generates so much valuable data that goes to waste,” says Arnaldo Zimmermann, CEO and Cofounder of ZPE Systems. “Our apps and sensors help capture this information. They can use it to prevent device failures, adjust cooling systems, or pinpoint why their Zoom app is suddenly lagging, for example.”

Nodegrid Data Lake and ZPE Cloud apps are now available. Get a free 90-day trial by visiting the ZPE Cloud Apps page.

Nodegrid sensors are also available. Learn more on the Nodegrid Environmental Sensors page.

Explore ZPE Cloud Apps
Read the official press release

About ZPE Systems, Inc.

ZPE Systems frees enterprises from today’s networking challenges.

Nodegrid’s Intel-based serial consoles & modular services routers deliver power to datacenter & branch applications, while the Linux-based Nodegrid OS replaces vendor lock-in with limitless flexibility. With ZPE Cloud for fast & secure provisioning, this platform streamlines networking using virtualization, prevents downtime using automation, and offers convenience via remote management capabilities.

Intel-based serial consoles & modular services routers deliver unparalleled power to datacenter & branch applications, while the Linux-based Nodegrid OS replaces vendor lock-in with limitless flexibility. With ZPE Cloud for fast & secure provisioning, it’s the only networking platform to streamline the stack using virtualization, prevent downtime using automation, and offer convenience using in-depth remote management capabilities.

ZPE collaborates with best-in-class technology partners, to add value by integrating with SD-WAN, firewall, IoT, and other solutions. The world’s top companies trust ZPE Systems to provide advanced out-of-band management, Secure Access Service Edge (SASE) platforms, and SD-Branch networking.

Top companies trust ZPE Systems to provide advanced out-of-band management, Secure Access Service Edge (SASE) platforms, and SD-Branch networking.

ZPE Systems is based in Fremont, California with offices worldwide. Visit ZPE Systems website at
www.zpesystems.com.