Viptela

Viptela is a software-defined wide area networking (SD-WAN) solution.
DX NetOps Virtual Network Assurance
collects inventory and performance metrics from Viptela to support
DX NetOps Performance Management
and
DX NetOps Spectrum
SD-WAN monitoring.
cavna37
Viptela is a software-defined wide area networking (SD-WAN) solution.
DX NetOps Virtual Network Assurance
collects inventory and performance metrics from Viptela to support
DX NetOps Performance Management
and
DX NetOps Spectrum
SD-WAN monitoring.
The Viptela plug-in collects inventory for the following items:
  • Sites
    Viptela sites map to site groups in Performance Center. If desired, you can manage your site groups in Performance Center to update a site name.
  • vEdge router
  • cEdge router (16.x and 17.x)
  • vEdge interfaces
  • cEdge interfaces (16.x and 17.x)
    cEdge Interface is available for NetOps 20.2.4 or higher versions.
    Performance stats are not supported for cEdge.
  • Tunnels
  • Application/SLA Paths
  • Alarms and events raised on vEdge routers
    DX NetOps Spectrum
    consumes these alarms.
    For more information, see the Cisco SD-WAN documentation.
  • vManage
  • vBond
  • vSmart
Viptela collects the following performance metrics:
Item Types
VNA Metric Families and Metrics
SNMP Metric Families
NFA Metric Families and Metrics
Devices
  • CPU
    • Utilization
  • Storage Disk Capacity
    • Disk Utilization
  • Memory
    • Memory Utilization
  • Availability
  • Device Unique Identifier
  • Environmental Sensor - Fan
  • Environment Sensor - Power Supply
  • Environmental Sensor - Temperature
  • ISDN
  • Reachability
  • SNMP Statistics
  • System
Interfaces
  • Interface
    • Incoming Bytes
    • Outgoing Bytes
    • Incoming Packets
    • Outgoing Packets
    • Incoming Dropped Packets
    • Outgoing Dropped Packets
    • Incoming Errors
    • Outgoing Errors
    • Interface Speed
  • Interface
  • NetFlow Statistics
    • Top Enterprise Hosts by Volume
    • Top Enterprise Protocols by Volume
    • Top IP Interface Utilization (Flow)
    • Top Flows by Volume
    • Interfaces Over Threshold
    • Routers with the Most Flow Traffic
    • Top Conversations
    • Top Hosts
    • Top Protocols
    • ToS Summary
Tunnels
  • Network Interface
    • Jitter
    • Latency
    • Packet loss
    • Time in Up State
    • Time in Down State
    • Time in Unknown State
    • Pct Time in Up State
    • Pct Time in Down State
    • Pct Time in Unknown State
    • Bytes In (Gauge)
    • Bytes Out (Gauge
    • Packets In (Gauge)
    • Packets Out (Gauge)
  • VPN Interface
  • IPSec Tunnel Aggregate
Application/SLA Paths
  • Network Interface
    • Percentage of Jitter SLA Threshold
    • Percentage of Packet Loss SLA Threshold
    • Percentage of Latency SLA Threshold
  • Application Route SLA Class
  • Application Route Statistics
Supported Releases
DX NetOps Virtual Network Assurance
supports the following Viptela releases:
  • Viptela 19.x.
  • Viptela 18.4
  • Viptela 18.3
  • Viptela 17.2.0
  • Viptela 17.1.0
Requirements
  • The vManage port must be open to the
    DX NetOps Virtual Network Assurance
    host.
  • For application/SLA path data, when you provision tunnels in a Viptela network, you must create policies that define the SLA classes for the different types of traffic. If no sla-class policies are defined,
    DX NetOps Virtual Network Assurance
    can discover tunnels, but cannot create application/SLA paths.
    For more information, see the Cisco SD-WAN documentation.
Plug-in Configuration Example
Configure the Viptela plug-in to access Viptela vManage with a user other than the ‘admin’ user.  The Viptela user that is used in the plug-in configuration must be granted the ‘operator’ role for the Viptela plug-in to function properly.
Viptela locks out a user after excessive unsuccessful login attempts. If the password of the plug-in user is changed in Viptela, prevent the plug-in from locking out the user from vManage by updating the Viptela plug-in configuration with the new password. If Viptela data is missing, check whether the user can log in to vManage. If the user is locked out, unlock the user account.
For more information about how to unlock a user, see the “request aaa unlock-user” command in the Command Reference section of the Cisco SD-WAN documentation.
The following JSON example shows the Viptela plug-in configuration:
In CA VNA 3.7.1, the
OUT_OF_BAND_MGMT_VPN_ID
property has been removed and the
DEVICE_MODEL_PATTERN_VS_OOBM_VPN_ID_PAIRS
property has been added.
{
"PLUGIN_CONFIG": {
"VMANAGE_IP": "10.241.1.5",
"VMANAGE_PORT": 8443,
"VMANAGE_USER_NAME": "capm",
"VMANAGE_PASSWORD": "capm",
"PROTOCOL": "https",
"VMANAGE_PROXY_IP": "0.0.0.0",
"VMANAGE_PROXY_PORT": "0",
"VMANAGE_PROXY_PROTOCOL": "https",
"VMANAGE_PROXY_USER_NAME": "",
"VMANAGE_PROXY_PASSWORD": "",
"USE_PROXY": "FALSE",
"DEVICE_MODEL_PATTERN_VS_OOBM_VPN_ID_PAIRS": "{ .*=512 }",
"INVENTORY_POLL_RATE": "0 */10 *",
"INVENTORY_DELTA_TIME": 600,
"INVENTORY_REQUEST_COUNT": 5000,
"PERFORMANCE_POLL_RATE": "0 */30 *",
"PERFORMANCE_DELTA_TIME": 1800,
"PERFORMANCE_REQUEST_COUNT": 1000,
"VEDGE_PERFORMANCE_SAMPLE_INTERVAL": 300,
"INTERFACE_PERFORMANCE_SAMPLE_INTERVAL": 300,
"TUNNEL_PERFORMANCE_SAMPLE_INTERVAL": 300,
"TIMEZONE": "GMT",
"AVAILABILITY_POLL_RATE": "0 */5 *",
"AVAILABILITY_DELTA_TIME": 300,
"NOTIFICATION_POLL_RATE": "0 */1 *",
"NOTIFICATION_DELTA_TIME": 60,
"SLA_CLASS_POLL_RATE": "0 0 0",
"SLA_CLASS_DELTA_TIME": 86400,
"MAX_NOTIFICATION_COUNT": 10000,
"DOMAIN_ID": 0
}
}
The default values for the Viptela plug-in configuration balance performance with efficiency. Gaps might appear in dashboards that display data collected at intervals longer than the dashboard resolution. You can change the dashboard resolution or increase the polling frequency. Increasing the polling frequency increases the load on the vManage host.
  • VMANAGE_IP
    The IP address of the vManage host.
  • VMANAGE_PORT
    The vManage port.
    Default:
    8443
  • VMANAGE_USER_NAME
    A vManage user with the netadmin role.
  • VMANAGE_PASSWORD
    The password for the vManage user.
  • PROTOCOL
    The HTTP security scheme for vManage.
    Default:
    https
  • VMANAGE_PROXY_IP
    The IP address of the vManage proxy.
  • VMANAGE_PROXY_PORT
    The port of the vManage proxy.
  • VMANAGE_PROXY_PROTOCOL
    The HTTP security scheme for the vManage proxy.
  • VMANAGE_PROXY_USER_NAME
    The user name of the vManage proxy.
  • VMANAGE_PROXY_PASSWORD
    The password of the vManage proxy.
  • USE_PROXY
    Whether to use the vManage proxy
    Allowed values:
    TRUE or FALSE
  • DEVICE_MODEL_PATTERN_VS_OOBM_VPN_ID_PAIRS
    Represents a device model pattern and the value is the corresponding VPN id of the management interface.
    Default:
    ".*
    For example, to configure VPN Id 512 only for device models vedge-1000 and 1 for the rests, use the following property value:
    "DEVICE_MODEL_PATTERN_VS_OOBM_VPN_ID_PAIRS": "{ vedge-1000=512, .*=1 }"
  • INVENTORY_POLL_RATE
    How often the product collects inventory data.
  • INVENTORY_DELTA_TIME
    The time difference between inventory polls (in seconds).
  • INVENTORY_REQUEST_COUNT
    The default paging size for the Viptela inventory.
  • PERFORMANCE_POLL_RATE
    How often the product collects performance data.
  • PERFORMANCE_DELTA_TIME
    Difference between polls (in seconds) for performance data requests.
  • PERFORMANCE_REQUEST_COUNT
    The response entry count for performance data requests.
  • VEDGE_PERFORMANCE_SAMPLE_INTERVAL
    How often Viptela records vEdge device performance.
  • INTERFACE_PERFORMANCE_SAMPLE_INTERVAL
    How often Viptela records interface performance data.
  • TUNNEL_PERFORMANCE_SAMPLE_INTERVAL
    How often Viptela records tunnel performance data.
  • TIMEZONE
    The time zone of the system, which must match the vManage time zone.
    Set this parameter correctly to prevent the following issues:
    • Incorrect timestamps might appear on performance data.
    • Performance data might be missing.
    • Alarms and events might not be collected.
  • AVAILABILITY_POLL_RATE
    How often the product polls the availability of the controller.
  • AVAILABILITY_DELTA_TIME
    Difference between polls (in seconds) for availability data requests.
  • NOTIFICATION_POLL_RATE
    How often the product collects alarm and event data.
  • NOTIFICATION_DELTA_TIME
    Difference between polls (in seconds) for alarm and event data requests.
  • SLA_CLASS_POLL_RATE
    How often the product collects SLA class data.
  • SLA_CLASS_DELTA_TIME
    Difference between polls (in seconds) for SLA class data requests.
  • MAX_NOTIFICATION_COUNT
    The maximum number of historical active alarms to pull during the first run.
  • DOMAIN_ID
    DX NetOps Virtual Network Assurance
    assigns inventory from this plug-in to the specified domain.