NetBrain auto-discovers your entire hybrid network, including traditional components, software-defined LAN and WAN, and the cloud, making all its information about configuration, performance, and flow of traffic easily accessible to any operator or engineer as part of our visual management and automation console.
NetBrain’s discovery engine continuously inventories all devices, their configurations, the connectivity, and the protocols, including IPv6 addresses. The result is an exact “digital twin” of the end-to-end network in real-time—every device, every platform, every firmware version – which contains all the topology data and baseline configuration, and performance analysis. It then provides this information in an easy to navigate and intuitive visual management console.
NetBrain allows easy identification of historical trends and changes. It runs a benchmark task after doing the discovery of the hybrid network. The digital twin dynamic data model enables NetBrain to interact with the infrastructure as needed, interactively, or by applying automated tasks.
NetBrain redefined the concept of network mapping by offering the industry’s only real-time network Dynamic Maps which continuously discover, model, and visualize the entire hybrid network – from the public cloud all the way down to the network edge. And because the data model also includes the ability to do historical data comparisons, it’s easier to identify changes and potential sources of problems. Operations teams can now use network mapping software to visualize, navigate, investigate and troubleshoot hybrid network issues in a single consolidated view (including data programmatically collected from third-party monitoring applications) to display:
Network inventory physical configurations:
Unlike static diagrams, high-level Dynamic Maps are rendered on-demand based upon actual live data for every point(s) in the network in a single pane of glass. NetBrain’s digital twin and the associated Dynamic Maps solution provide the perfect foundation for NetBrain’s network automation capabilities.
NetBrain’s Dynamic Maps become the foundation to visually interact with the network. For any desired task or investigation, NetBrain will create a real-time and intuitive contextualized map of the relevant part of the network.
The search bar in NetBrain acts like a Google search for any data within your network. Search leverages the power of big data network mapping by quickly finding and visualizing relevant network information. Entering a free text string into the bar will run a search across the entire data model for matching any data element, and you can combine it with a description to narrow your search even more. For instance, you might be looking for a “CISCO” router running IOS version “15.5” and located in “Atlanta.”
Once the search identifies the device in question, it creates a map of the device and its immediate neighbors, which can also be expanded or contracted depending on the view desired and the problem being addressed.
As part of automatic network mapping, sometimes you will need complete documentation for an entire existing site or branch office. Since NetBrain maintains a real-time digital twin of the entire network throughout the network mapping process, it can create these needed maps at the touch of a button to be used elsewhere for remedial, operations or compliance purposes. And since NetBrain’s visual network mapper also includes geographic and organizational attributes, it helps your teams focus on the network topology in terms most familiar to their operational processes.
The logical relationships between sites can be grouped for analysis and then visualized in a single overview map (e.g., North America, United States, Boston, Boston DC 1). Users can then take advantage of specific functions within NetBrain’s network mapping tool to drill into any site to see the L2 or L3 relationships of devices within that site.
A Device Group is a collection of devices configured with the same routing protocol or categorized by other logical conditions. Device groups can better organize network devices, critically important for operations at scale. These are the types of device groups:
IP Address Management, or IPAM, provides precise information on the state of the network and the IP addresses being used at a given time. IPAM has become a critically important part of quickly analyzing and troubleshooting any network and providing a better understanding of its performance.
NetBrain’s One-IP table records the physical connections for all IP addresses in the workspace. It is retrieved using the network map software during the Layer 2 topology discovery, and it can be used to troubleshoot any layer 2 connection issues. Once opened, it will automatically group IPs by LAN segments.
Given this table, navigation can be as simple as searching for a unique address and then dragging it to the map to create a visual que of the device and its network neighbors. In addition, using network infrastructure mapping, you can export any One-IP table to applications like Microsoft Word or Excel as needed
Users can also save their existing Dynamic Map view(s) and export it into native and editable Microsoft Visio with the click of a button. The amount of detail on the map at the time of the export is reflected in the resulting file.
Users can save their maps and export them directly to a formatted reference document including all associated design and inventory data with the automatic network map including diagnostic data, full configuration files, routing tables, etc.
NetBrain’s Function Portal enables network engineers and operators to collaborate with their colleagues and others in related support organizations (SecOps, DevOps, etc.) who do not normally use the NetBrain system, but who are critical for expeditious cross-domain problem resolution. Real-time collaboration reduces the number of hand-offs and associated delays typically seen with manual processes.
Improving team productivity and collaboration through accessibility is one of the key goals of MAP EVERYWHERE. With Function Portal, external users from different teams (IT engineers, security engineers, etc.) can gain fast and free access to use selected NetBrain functions and resources through a website, including dynamic network mapping, A/B path calculation, and One-IP table query.
NetBrain allows users to visualize, analyze and interact with dynamic traffic paths across complex networks, taking into account:
NetBrain provides a historic view of traffic paths so that users can visually compare the traffic flow patterns over time.
NetBrain’s dynamic path feature visualizes the forwarding of the packet and emulates the real packet forwarding process by looking up route tables in your live network and provides end-to-end visibility across any network path. In addition to looking up route tables to find the next hop, it can also investigate PBR, NAT, ACL, firewall policy, and other traffic control technologies to ensure the correctness of a path. And it understands that forward and reverses paths can be different because its data model for visualization is based on the actual device tables, between the two points.
NetBrain includes specific support for the control plane logic of hardware devices from more than 300 vendors and over 5000 of their hardware models, interfaces, and firmware versions. Given this native access, any A/B path can be calculated end-to-end, across any complex technology including:
While many organizations treat cloud-based services as black boxes (which allow little if any network visibility), NetBrain offers complete native network support for all the major public cloud providers. This enables true end-to-end path calculation in a hybrid/multi-cloud environment- even if both ends are in the public cloud! With multi-cloud support, your network automation, visibility, and control no longer stop at the cloud.
NetBrain doesn’t generalize device type modeling but instead has direct support for the control plane logic of more than 5000 devices from over 300 vendors. With this native control plane access, any A/B path can be calculated end-to-end, across any complex technology including:
Compared with a unicast path, various calculation logics are available for a multicast path. The system adds a “Multicast Route Table” and uses it to look up L3 next-hop devices during a path calculation.
Note: For the first-hop device, the system looks up its next-hop device based on the original routing table. When checking ACL/Policy on interfaces, the system checks whether the group IP as a destination is matched and continues path calculation based on the matching result.
The path at the port level can be used to calculate the paths for TCP, UDP, or other protocols. As shown below, the TCP traffic to the F5 load balancer’s port 80 is load balanced to 3 different endpoint servers.
Path Intent and Intent-based new Trigger Automation Framework (TAF) and other Path related function enhancements, enable users to baseline, document, and define the diagnosis logic for application path efficiently when the network is healthy to help network engineers resolve application slowness issues much more efficiently during troubleshooting, or to do application impact analysis efficiently when issues occur on a network device or device interface.
Add Path Intent into Intent Cluster (when the network is healthy)
When a network is healthy, you can calculate critical application flows for live network data with full documentation behind the path logic, and you can programmatically define logic for path-related baseline data and diagnosis logic inside path Intent without any coding. You can add predefined Path Intents into a NIC as static member intents. You can define trigger diagnosis using the NIC and define the NIC filter condition with path source/destination properly.
TAF receives the ticket sent by the third party and triggers the execution of NIC according to the logic defined in TAF. NIC executes its associated member NI according to the defined logic. For path, all the main path NIs need to be associated with the corresponding NIC. Path NI executes according to the logic defined in NIC and then sends the alert message to the Incident pane.
During troubleshooting, access the pre-documented application path intuitively via the A|B path dialog by any network troubleshooter. The pre-documented path results along with the pre-built diagnosis automation will accelerate the slow application troubleshooting.
During troubleshooting, users can re-calculate live paths, and compare paths between live and cached data to reveal various issues behind a slow application.
The associated path intent can be re-calculated via a live network, then the user can check the intent diagnosis results directly.
Demand for robust data center networks continues to increase as organizations struggle to achieve business agility for application deployments. This has led to the growing adoption of Software Defined Network (SDN) solutions as part of a data center architecture evolution. Cisco’s Application Centric Infrastructure (ACI) and those from VMware are the industry’s most popular solutions to address these demands.
Network teams must now understand this new architecture and manage it effectively, along with the rest of the traditional network it connects to. Without effective tooling support, the task of managing such an evolving heterogeneous network has proven to be very challenging. NetBrain’s Dynamic Mapping and automation technologies help network teams demystify the complexity of a virtualized infrastructure, allowing them to realize the full benefits of SDN without the operational challenges. NetBrain treats these logical network connections, although virtualized and software-defined, as just another part of the topology. This continues to support true end-to-end visibility and automation for infrastructures that include these logical approaches to connectivity.
NetBrain’s deep discovery and modeling engine don’t stop when it gets to VMware-powered NSX environments. NetBrain treats NSX as any other network and creates a data model that serves as the foundation for automation, analytics, and workflow enhancement for operational IT Tasks. NetBrain makes it possible to quickly understand and support the deployed NSX infrastructure in the following aspects:
The NetBrain system provides end-to-end visibility for VMware vCenter network resources as well as their physical and virtual relationships. With NetBrain, you can quickly understand a vCenter environment in the following aspects:
A growing reliance on distributed organizations, SaaS, and unified communications is driving the adoption of SD-WAN as an essential business component that must be understood during problem resolution. Single-site operational domains are a thing of the past. With NetBrain, it’s easy to discover and dynamically map your WAN connectivity. NetBrain auto-discovers Cisco SD-WAN, Cisco Meraki, Versa, Aryaka, and CloudGenix SD-WAN connectivity architectures.
NetBrain automatically and remotely connects to devices using their native interfaces or directly through their management controllers and retrieves their live production data. Operational and production data includes the configuration, route table, NDP/MAC/ARP table, and device/parameters.
L3 topology builds Layer 3 topology from IPv4 addresses in the device configuration files. L2 topology builds Layer 2 topology from NDP tables (such as CDP, LLDP, and FDP), ARP tables, and MAC tables. NDP tables calculate the connections between switches, and NDP/MAC/ARP tables calculate the connections between switches and other types of network devices.
Basic L3 traffic path — discover and map L3 traffic paths based on routing tables presented to the remainder of the network, while basic L2 traffic forwarding paths are also maintained through our ongoing discovery processes which map L2 traffic paths based on L2 topology.
NetBrain auto-discovers your end-to-end hybrid-cloud infrastructure and provides native support for Amazon Web Services (AWS), Microsoft Azure, and Google Cloud environments. NetBrain visualizes these with Dynamic Map to show application dependencies across clouds, SDN, and on-premises infrastructure. Automation helps users collaborate and resolve issues faster accelerating troubleshooting via runbook automation. NetBrain Dynamic Map technology provides a single consolidated view of end-to-end operational data that is integrated with the cloud providers’ own native cloud monitoring, logging, and billing tools.
Its discovery engine continuously inventories all devices, their configurations, the connectivity, and the protocols with support for thousands of accounts and millions of virtual servers. This enables NetBrain users to:
Mapping a multi-cloud traffic path is as simple as entering two endpoints (via IP or hostname).
Path logic assesses many traffic-forwarding characteristics like Security Groups and ACL across subnets, VPCs, network virtualization appliances like firewalls, direct connections, ExpressRoute, VNets, and more.
In addition, NetBrain uses a self-designed algorithm to calculate the Virtual Route Table (NCT) for various networking nodes including VGW, Direct Connect Gateway, etc., which is not in the routing table on the cloud console but provides a clearer connectivity understanding for NetBrain users.
NetBrain can discover AWS public cloud resources, visualizing not only all AWS resources like TGW, VGW, EC2 but also topology and techniques like Direct Connect and Site-to-Site VPN used from on-premises to AWS cloud.
NetBrain can discover Microsoft Azure public cloud resources, visualizing not only all Azure resources like Load Balancer, NAT Gateway, VPN Gateway, ExpressRoute Router, VM but also topology and techniques like ExpressRoute Connection and Site-to-Site VPN used from on-premises to Azure cloud.
NetBrain can discover Google Cloud public cloud resources, visualizing not only all Google Cloud resources like Load Balancer, Cloud NAT, Cloud VPN, Cloud Router, VM but also topology and techniques like Partner Interconnect, Dedicated Interconnect, and Site-to-Site VPN used from on-premises to Google Cloud.