A key component of the Uplogix Local Management Platform is out-of-band (OOB) connectivity. While the Uplogix Local Manager (LM) can operate autonomously when the network is down and communicate with managed devices over a console connection, OOB ensures that centralized dashboard tools can continue to receive information on remote devices as well as provide technicians with secure remote access to gear.
When the network is functioning properly, Uplogix LMs use an Ethernet-based connection to connect and transmit data to the Uplogix Control Center through the in-band network (also referred to as the primary network connection). However, when the primary network connection is lost, the Uplogix LM immediately establishes remote connectivity using a dial-up modem, cellular network, or satellite communications.
By providing persistent connectivity to the devices you need to manage, Uplogix enables you to:
- Maintain management access and control over distributed locations, even when the network is down or degraded.
- Enforce security policies even during network outages to maintain compliance.
- Log all changes and the results of those changes, and inspect the logs in real-time for problems.
- Continuously monitor critical statistics and user interactions with managed devices via an always-on, serial connection.
Uplogix uses two categories of out-of-band (OOB) methods to reach remote Local Managers:
- Phone home | When detecting an outage, the LM initiates a phone home connection automatically.
- Dial-in | A user manually connects to a remote LM via a secure dialer applet launched from the Uplogix Control Center (UCC.)
When the Uplogix Local Manager detects a network outage it will initiate an OOB connection in order to create an alternative path back to the NOC. A variety of technologies can be used to create the OOB connections including analog phone lines, cellular, DSL or alternate networks, and satellites.
The OOB connection allows the LM to resume communication with the Uplogix Control Center as well as other network monitoring tools.
Users will be alerted when the OOB connection is initiated and the UCC will display the LM’s new IP address. Users can connect to the OOB LM via SSH and will be authenticated as if the user were connecting via the in-band network.
But maybe sometimes you might want to phone in to a local manager. To do this a user establishes a dial-in connection to the LM, usually due to an in-band connection failure. Then the user logs into the UCC and launches a secure dial applet for the desired LM. The dial applet runs on the user’s local workstation and establishes a TLS encrypted connection to the LM via the Remote Access Server.
If normal AAA passwords are not cached, the administrator will need to define a user and password in the UCC that will exist in case AAA servers are not reachable. Once the administrator logs out of the LM, the encrypted connection between the user’s workstation and the LM is torn down.
We haven't even touched on satellite options here, but many Uplogix customers use their Local Managers in networks that are quite off the beaten path. Maybe they are at sea, or on the battlefield where POTS lines are non-existent and cellular coverage is intermittent at best. For these deployments, satellite connections over Iridium or Inmarsat provide the same secure connections and two-way access. For more information, see the Uplogix website or this previous blog post.