Enforcement of network device configuration policies within a computing environment
    1.
    发明授权
    Enforcement of network device configuration policies within a computing environment 有权
    在计算环境中执行网络设备配置策略

    公开(公告)号:US08799980B2

    公开(公告)日:2014-08-05

    申请号:US11326128

    申请日:2006-01-05

    摘要: A network management system is described for assuring that a network device complies with a device-specific configuration policy. One example of the network management system contains one or more business rules that describe a business policy regarding a computer network in a network-independent form. In general, the business rules refer to high-level business requirements and not to device-specific configuration information. The network management system uses the business rule to determine which business policies are currently in force. In addition, the network management system contains one or more network design rules that describe relationship between the business policy and one or more device-specific configuration policies. The network management server uses the network design rules to determine whether to deploy a device-specific configuration policies. In this manner, an administrator or other user may create high-level business rules without regard to particular network devices or topologies, yet device-specific configuration polices are deployed to the network devices to assure compliance even if the network management system is bypassed.

    摘要翻译: 描述了网络管理系统以确保网络设备符合设备特定的配置策略。 网络管理系统的一个示例包含一个或多个商业规则,描述与网络无关的形式的关于计算机网络的业务策略。 一般来说,业务规则是指高级业务需求,而不是针对特定于设备的配置信息。 网络管理系统使用业务规则来确定当前有效的业务策略。 另外,网络管理系统包含描述业务策略与一个或多个特定于设备的配置策略之间的关系的一个或多个网络设计规则。 网络管理服务器使用网络设计规则来确定是否部署特定于设备的配置策略。 以这种方式,管理员或其他用户可以创建高级业务规则而不考虑特定的网络设备或拓扑,但是即使绕过网络管理系统,将设备特定的配置策略部署到网络设备以确保遵从性。