Method and apparatus for defining and enforcing policies for configuration management in communications networks
First Claim
1. A method for managing configurations of network devices connected in a network comprising the steps of:
- grouping at least one network device to create a network group;
applying a policy to the network group by modifying a database to associate a configuration record with the network group, the step of applying a policy including the steps of;
applying a first policy having a first ordering index to the network group;
applying a second policy having a second ordering index to the network group; and
loading, over the network, a configuration described by the configuration record into each network device in the network group, the step of loading including loading a first configuration defined by the first policy and a second configuration defined by the second policy in an order defined by the first ordering index and the second ordering index.
7 Assignments
0 Petitions
Accused Products
Abstract
Apparatus and method for monitoring parameters that govern the operational characteristics of a network device, including the use of templates for generating configuration records of network devices of a selected model type. A database of models is provided, each model representing an associated network device and including attribute values for the parameters of the associated network device. Templates are used to screen a model in order to retrieve values for each of the attributes and create a configuration record. The configuration records may be stored in the configuration manager or other storage device, and/or transferred to the pre-existing model database for use by a network management system in reconfiguring the associated network devices. Additionally, a method and apparatus is provided that defines network groups, defines network policies for groups, determines conflicts, and resolves conflicts among groups and devices. This system for configuration management is less time consuming, expensive, and error prone than prior systems.
629 Citations
40 Claims
-
1. A method for managing configurations of network devices connected in a network comprising the steps of:
-
grouping at least one network device to create a network group; applying a policy to the network group by modifying a database to associate a configuration record with the network group, the step of applying a policy including the steps of; applying a first policy having a first ordering index to the network group; applying a second policy having a second ordering index to the network group; and loading, over the network, a configuration described by the configuration record into each network device in the network group, the step of loading including loading a first configuration defined by the first policy and a second configuration defined by the second policy in an order defined by the first ordering index and the second ordering index. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method for enforcing policies that apply to a device in a network, the method comprising the steps of:
-
triggering an enforcement; determining whether any conflicts exist among policies that are applied to the network, the step of determining whether any conflicts exist including the steps of; determining at least one group of which the device is a member; determining applicable policies for the at least one group, the applicable policies each having a configuration record that includes attributes associated with attribute values; and determining whether a first applicable policy of the applicable policies has a first configuration record that includes a first value associated with a first attribute, and a second applicable policy of the applicable policies has a second configuration record that includes a second value associated with the first attribute, a conflict existing when the second value is different from the first value; when the step of determining determines that a conflict exists, resolving the conflict. - View Dependent Claims (9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20)
-
-
21. An apparatus for managing configurations of network devices connected in a network comprising:
a database that includes an association of a configuration record with at least one network device in a network group, the database including; an association of a first policy having a first ordering index with the network group; and an association of a second policy having a second ordering index with the network group; and means for loading, over a network, a configuration described by the configuration record into each network device in the network group, the means for loading including means for loading a first configuration defined by the first policy and a second configuration defined by the second policy in an order defined by the first ordering index and the second ordering index. - View Dependent Claims (22, 23, 24, 25, 26, 27)
-
28. An apparatus for enforcing policies that apply to a device in a network, the apparatus comprising:
-
a trigger; an inference engine that determines whether any conflicts exist among policies that are applied to the network and resolves the conflicts that exist, the inference engine including; means for determining at least one group of which the device is a member; means for determining applicable policies for the at least one group, the applicable policies each having a configuration record that includes attributes associated with attribute values; and means for determining whether a first applicable policy of the applicable policies has a first configuration record that includes a first value associated with a first attribute, and a second applicable policy of the applicable policies has a second configuration record that includes a second value associated with the first attribute, wherein a conflict exists if the second value is different from the first value. - View Dependent Claims (29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40)
-
Specification