Buy or Renew
Buy or Renew
Cisco DNA Center is now Catalyst Center. New name, same great product. Learn more about Catalyst Center here.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1093
Views
0
Helpful
8
Replies

Assurance Feeds from Endpoints to DNAC, how?

Go to solution
lowfell
Level 3
Level 3

‎03-26-2020 10:19 AM

I'm a total newbie to DNA & DNAC. Can someoen please tell me in a sentence or two, how health assurance data gets from client endpoints to the DNAC, is it some sort of SNMP get from the endpoints, is DNAC, like an SNMP probe?

 

How does DNAC get this info ?

Thanks in advance.

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
ammahend
VIP
VIP

‎03-27-2020 06:17 PM - edited ‎03-27-2020 06:22 PM

DNAC Assurance used streaming telemetry (network telemetry), which is a publisher subscriber model. IOS-XE switches like 9K act as publisher, publishing live data about the device, this method is a push model, is more effective unlike SNMP which is a pull model for most deployments and do not scale very well in today's network.

DNAC pushes streaming telemetry configuration to the switches as part of automation and act as a subscriber to the published data. DNAC uses AI for correlation and analysis of the data received (which are important part of overall Assurance)

On the switches you can run the command to see what information about subscribers.
show telemetry ieft subscription all

Since its an IEFT standard, IOS-XE switches streaming telemetry data can also consumed by third part tools like Kibana.

All streaming telemetry data between switch and DNAC is encrypted over TLS tunnel.

I will encourage you to read this blog, there also plenty of Cisco live sessions available for free on Assurance.

https://blogs.cisco.com/developer/its-time-to-move-away-from-snmp-and-cli-and-use-model-driven-telemetry

 

-hope this helps-

View solution in original post

0 Helpful
8 Replies 8

Go to solution
Preston Chilcote
Cisco Employee
Cisco Employee

‎03-26-2020 01:53 PM

DNA-Center ingests all the information it can get its hands on.  SNMP, netflow, show commands, Wireless telemetry, syslogs, ip device tracking and probably more I'm forgetting.

 

More details here, if you need them:

 

https://www.cisco.com/c/en/us/td/docs/cloud-systems-management/network-automation-and-management/dna-center-assurance/1-3-3-0/b_cisco_dna_assurance_1_3_3_0_ug/b_cisco_dna_assurance_1_3_2_0_chapter_01.html

0 Helpful

Go to solution
lowfell
Level 3
Level 3
In response to Preston Chilcote

‎03-26-2020 11:57 PM - edited ‎03-26-2020 11:58 PM

Hello and thank you. So, it's taking feeds from syslog & snmp servers, so they would have to grant Read only access to DNAC for this info then and is this acces assumed when you are setting up the design in DNA or do you need to creat firewall rules for DNA for this read only access?

0 Helpful

Go to solution
Preston Chilcote
Cisco Employee
Cisco Employee
In response to lowfell

‎03-31-2020 10:50 AM

Yes, DNA-C still depends on syslog and SNMP.  You will setup the SNMP credentials in the Design pages and this is required for DNA-C to manage the devices.  If there is a firewall between your appliance and the network devices, please be sure to open all the necessary ports, listed in the install guide:

 

https://www.cisco.com/c/en/us/td/docs/cloud-systems-management/network-automation-and-management/dna-center/1-3-3-0/install_guide/2ndGen/b_cisco_dna_center_install_guide_1_3_3_0_2ndGen/b_cisco_dna_center_install_guide_1_3_2_0_M5_chapter_01.html#refer...

0 Helpful

Go to solution
lowfell
Level 3
Level 3
In response to Preston Chilcote

‎04-01-2020 12:35 AM

Great. thanks for your help Preston it's greatlu appreciated.

Brian

0 Helpful

Go to solution
ammahend
VIP
VIP

‎03-27-2020 06:17 PM - edited ‎03-27-2020 06:22 PM

DNAC Assurance used streaming telemetry (network telemetry), which is a publisher subscriber model. IOS-XE switches like 9K act as publisher, publishing live data about the device, this method is a push model, is more effective unlike SNMP which is a pull model for most deployments and do not scale very well in today's network.

DNAC pushes streaming telemetry configuration to the switches as part of automation and act as a subscriber to the published data. DNAC uses AI for correlation and analysis of the data received (which are important part of overall Assurance)

On the switches you can run the command to see what information about subscribers.
show telemetry ieft subscription all

Since its an IEFT standard, IOS-XE switches streaming telemetry data can also consumed by third part tools like Kibana.

All streaming telemetry data between switch and DNAC is encrypted over TLS tunnel.

I will encourage you to read this blog, there also plenty of Cisco live sessions available for free on Assurance.

https://blogs.cisco.com/developer/its-time-to-move-away-from-snmp-and-cli-and-use-model-driven-telemetry

 

-hope this helps-
0 Helpful

Go to solution
lowfell
Level 3
Level 3
In response to ammahend

‎03-28-2020 03:08 AM

Great & thanks for your helpo.

0 Helpful

Go to solution
Nickolus Looper
Level 1
Level 1
In response to lowfell

‎04-01-2020 12:26 PM

How do we view or search the raw syslog data?

0 Helpful

Go to solution
Preston Chilcote
Cisco Employee
Cisco Employee
In response to Nickolus Looper

‎04-01-2020 02:22 PM

If needed, DNAC's command runner can easily get you the "show log" from an individual device.

Once you get used to using Assurance, you'll find that you won't need to dig through reams of network wide syslogs anymore. You'll be able to easily time travel to the time of the problem (within the last 2 weeks), and DNA-C will provide any Issues it found, which is data it correlates from SNMP, syslog, telemetry, etc. That said, nothing prevents your devices to also send syslogs to an existing syslog server (in addition to DNA-C).

If you haven't seen it in action, I encourage everyone to register for an ATX Assurance Demo: https://learningnetwork.cisco.com/s/cisco-dna-ask-the-experts

-Preston
Customer Success Specialist
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents