ExtremeCloud IQ Site Engine

The full lifecycle of network management is supported. Site Engine supports the initial deployment planning stage with the use of configuration templates to predefine site, port, service, reference firmware, and fabric attributes, to the deployment stage with Zero-Touch Provisioning Plus (ZTP+). The ZTP+ capability enables the automated deployment of a new switch through templates and workflows. It supports daily and on-demand operations, such as adding new services and VLANs. Maintenance-related tasks (RMAs and service maintenance windows) can be implemented. Site Engine also supports configuration and firmware updates across third-party networking devices, reducing lengthy and error-prone manual onboarding and updates.

ExtremeCloud IQ Site Engine provides cross-domain workflow automation capabilities through an intuitive graphical approach to easily automate network tasks. It includes built-in automation and workflow tools and support for common scripting languages, such as Python. These features deliver the ability to create sequential execution of tasks in workflows for customized orchestration. Various settings in ExtremeCloud IQ Site Engine can be set through the API, and they can interact with both Extreme and non-Extreme devices. For example, a workflow can configure multiple wired, wireless, third-party, or a combination of devices with a single click. These capabilities help reduce CLI-based management, while alleviating the burden on IT personnel and the impacts of unintended downtime.

A workflow can be triggered by any event, such as when a threshold is reached or a Syslog message or trap is received, by a user action, or even by an external API call. The workflow can reconfigure the network or interact with third-party automation solutions. For example, if the reboot of a device is detected, technical logs and details can be gathered, and a help desk ticket can be created by the workflow itself. If a high CPU utilization is detected, the workflow can automatically gather additional information about the running processes. Site Engine can change a 3:00 AM wake-up call to a 10:00 AM follow-up.

ExtremeAnalytics is integrated with Site Engine to provide advanced capabilities. These capabilities include a granular view of users, devices, and applications with an easy-to-understand dashboard inventory and network topology. When Site Engine is used with ExtremeAnalytics, it speeds up troubleshooting by separating network performance from application performance, so users can quickly identify root causes. It monitors shadow IT, identifies and reports malicious or unwanted applications, and helps with security compliance. The Analytics Engine within ExtremeAnalytics extends application visibility from wired and wireless devices all the way through the campus to the data center. With DPI, network administrators can accurately see and analyze network traffic across multiple layers for real-time analysis. Additionally, the integration of private cloud solutions based on VMware ESXi and Microsoft Hyper-V provides a unique capability of a single analytics toolset that covers campus and data center.

ExtremeCloud IQ Site Engine offers end-to-end management of the wired and wireless devices from the edge to the data center and across multivendor environments. It provides a centralized view of the entire network with visibility of all network devices, without having to integrate multiple applications. Site Engine enables a transition path for third-party and legacy networking devices to cloud-based network management with the ability to select which device metadata is transmitted to Extreme IQ in public, private, or ExtremeCloud Edge. ExtremeCloud IQ Site Engine also enhances ExtremeCloudIQ’s management capabilities with additional features for Extreme Networks Universal Platforms (switches and access points (APs)) and legacy devices.

ExtremeCloud IQ Site Engine enables the security of an organization’s wired and wireless networks through in-depth visibility and control over users, devices, and applications. Security updates provided by Extreme Networks enhance compliance with security requirements. Flexible deployment options support a range of data security and compliance requirements and allow organizations to adapt over time.

Support for fabric management capabilities is natively designed into ExtremeCloud IQ Site Engine, so time to service is greatly reduced. Users benefit from being able to automatically change the switch OS persona from the factory default Switch Engine OS to the Fabric Engine OS, while deploying the fabric network. Other capabilities include the configuration and customization of fabric topology, and the configuration of fabric services (such as L2VSNs, L3VSNs, Service ID, Name, and Type), distributed virtual routing (DVR) element (such as leaf, controller, and router) properties, router redundancy protocols (such as VRRP, RSMLT, and DVR), and port templates.

Fabric-specific visualizations make it easier to monitor fabric-related parameters, such as IS-IS areas and Fabric Connect links, to locate where the IS-IS areas are present and determine which links are part of the fabric. Users can also visualize primary and secondary paths between two fabric switches in the network, and where in the network a specific fabric service is present to ascertain its main attributes (that is, L2VSN versus L3VSN, or VRF assignment). These key visibility capabilities help users monitor and validate their non-fabric, fabric, and combined deployments, and troubleshoot them more easily when required.

The integration of fabric over ExtremeCoud SD-WAN enables Site Engine to display tunnels extending fabrics through SD-WAN and report tunnel failure between SD-WAN devices. Network operators can easily navigate from Site Engine to an SD-WAN appliance, and then use the 360 view to investigate and troubleshoot. The user can also access Site Engine from ExtremeCloud SD-WAN with SSO.

ExtremeCloud IQ Site Engine provides end-to-end network visibility. It provides in-depth details into the performance of applications and the network through telemetry and deep packet inspection (DPI). Topology maps provide non-fabric and fabric visualizations, such as the ability to monitor fabric-related parameters and primary and secondary paths. Non-fabric visualizations include the visibility of VLAN presence, or the link status of the primary and secondary paths within an Ethernet Automatic Protection Switching (EAPS) scheme of an Ethernet ring architecture. Users can visualize the state of link aggregation groups (LAG) and multi-switch link aggregation groups (MLAG) and determine which devices participate in the link aggregation. Users can visualize a bridge port extender (BPE) topology to determine what control bridges are used, what BPEs are present, and the state of the topology. This solution enables users to manage their networks more efficiently by providing granular analysis and fabric management to make data-driven, informed decisions.

In addition to Extreme devices, Site Engine can also support Cisco, Juniper Networks, HPE Aruba, Dell, Nokia, Allied Telesis, Zyxel, Linksys, Huawei devices, and more. It uses Simple Network Management Protocol (SNMP) versions 1, 2c, and 3, as well as a command-line interface (CLI) to provide management of third-party devices. Site Engine extends support to devices that do not have robust SNMP capabilities by utilizing scripts and Telnet/SSH. As a result, it can unify management of switches, APs, firewalls, bridges, servers, sensors, and other networking and IoT devices.

Extreme Networks unifies management by offering Universal Licensing to help customers cost-effectively transition to cloud-based network management and subscription licensing. The same license applies to APs, switches, third-party, and cloud-native devices. The licenses are pooled, so they aren’t specific to a device, location, or user. The pool of licenses can be accessed using the Extreme Support portal.

• ExtremeCloud IQ Pilot is the primary license tier for the ExtremeCloud IQ suite for end-to-end management. It enables enhanced policy enforcement, visibility, reporting, and advanced configurations. Pilot delivers configuration and management of infrastructure devices at scale, including advanced policy, segmentation, and troubleshooting.
• ExtremeCloud IQ Navigator is an alternative, lower capability license tier delivering third-party device management. It provides basic visibility, limited reporting, configuration management, advanced SSH, scripting, configuration backup.

Site Engine includes integrations with ExtremeAnalytics and ExtremeControl. ExtremeAnalytics is available as part of the ExtremeCloud IQ Pilot license tier. ExtremeControl is priced separately and is based on unique MAC addresses connected to the network within the past 24 hours. Third-party device support is available with both the Pilot and Navigator license tiers.