Guest

Cisco Services Modules

Cisco Catalyst 6500 Series Network Analysis Module (NAM-3) with Software 6.0

  • Viewing Options

  • PDF (267.0 KB)
  • Feedback

Overview

Q. What is the Cisco ® Catalyst ® 6500 Series Network Analysis Module (NAM-3) and what does it do?
A. The Cisco Catalyst 6500 Series NAM-3 is an integrated traffic and performance analysis blade that provides unparalleled network and application visibility to simplify operational manageability of network resources in multi-Gigabit Ethernet enterprise campus, data center, and WAN deployments. It empowers network administrators to quickly understand how traffic over the network is being used and how it is performing to troubleshoot performance issues and help ensure a consistent end-user experience. It combines a rich set of embedded data collection and analysis capabilities with a remotely accessible, web-based management console, all of which reside on a single blade that is installed into Cisco Catalyst 6500 E-Series and Catalyst 6807-XL Switches.
NAM-3 includes an embedded, intuitive web-based graphical user interface (GUI) with prepackaged reports, workflows, and contextual navigation to expedite problem resolution and optimization decisions. It also includes a Performance Database that preserves historical data, allowing you to understand what happened in the past when an event that affected network performance occurred. See the Cisco Prime Network Analysis Module Software 6.0 data sheet for additional information.
Q. What are the key features and benefits of NAM-3?
A. The key features and benefits of NAM-3 are provided in Table 1.

Table 1. Key Features and Benefits of the Cisco Catalyst 6500 Series NAM-3

Feature

Benefit

15+ Gbps traffic monitoring performance

NAM-3 is purpose-designed to monitor and troubleshoot high-performance 10 Gigabit Ethernet networks.

Infrastructure integration

Deployed in the Cisco Catalyst 6500 Series or Catalyst 6807-XL Switch, the Cisco NAM-3 takes advantages of backplane integration. It provides greater investment protection, lower total cost of ownership, and a reduced footprint, saving premium rack space. Backplane integration allows collection of packets right from the source, helping to ensure high reliability and precision analytics.

Application performance intelligence

Characterize the end-user experience for TCP-based applications and isolate application response time problems to the network, server, or the application, minimizing any triage process.

Comprehensive voice quality monitoring and real-time troubleshooting

Gather real-time reports on Mean Opinion Score (MOS) and other key performance indicators (KPIs) such as jitter and packet loss to understand and improve how the end user experiences the delivery of voice services. MOS is computed based on ITU-T Recommendations G.107, offering accurate characterization of voice quality. Combine monitoring with real-time troubleshooting using prepackaged dashboards to improve end-user service levels.

Detailed traffic analytics

View short- and long-term performance data on hosts, conversations, and applications that use critical network resources.

Insight into CAPWAP traffic

Visibility into CAPWAP tunnels unveils a wealth of information that helps to improve service delivery over wireless access networks. Reports on performance and usage statistics on a per access point or a per endpoint basis help to quickly identify network bottlenecks and application performance issues.

Monitor Virtual Switching System (VSS) deployments

Monitor both virtual switches in VSS environments, reducing management overhead while improving operational efficiency.

WAN-optimized networks visibility

Obtain end-to-end proof points demonstrating how Cisco Wide Area Application Services (WAAS) has improved application delivery (for example, decreased application transaction times, improved WAN bandwidth utilization). Accelerate the return on investment (ROI) by assessing the best site and application candidates for optimization as part of the phased rollout plan.

IEEE1588 hardware time-stamping

Packet capture from the backplane combined with a precise hardware time stamp results in accurate performance measurements with metrics such as application response time and Jitter. The IEEE 1588 hardware time stamps also facilitate accurate packet capture analysis.

Advanced hardware and software filters

Reduce the time to get to the critical data to accelerate troubleshooting and analysis of network traffic behavior.

Deep, insightful packet captures

Solve complex performance issues with triggered or scheduled captures, display filters, decodes, and error scan features. Packet captures can be triggered based on performance thresholds, allowing you to focus on specific performance issues. In addition, utilize external storage to collect extensive packet captures for offline analysis.

Historical analysis

Look back to the past with the embedded Performance Database to understand what happened when an event that affects network performance occurred to accelerate root-cause analysis and prevent any reoccurrence. Use historical analysis for advancing optimization and capacity decisions.

Pre- and post deployment analysis

Glean valuable before and after traffic analytics to help plan for and verify changes in network resources, such as introducing new applications, establishing quality of service (QoS) policies, consolidating servers, and deploying VoIP.

Open interface

Ease NAM configuration and export of computed NAM data using REST/XML-based APIs.

Anytime, anywhere access

Access the web interface from any desktop, eliminating the need to send personnel to remote sites or haul large amounts of data over WAN links to the central site.

Q. What are the business benefits of deploying Cisco NAM?
A. Table 2 provides an overview of the business benefits that Cisco NAM offers.

Table 2. Business Benefits of Deploying Cisco NAM

Benefit

Description

Deliver consistent and resilient services

Consistent application recognition and performance visibility across the network
Accurate characterization of performance for voice, video, and TCP applications
Deeper network visibility for effective use of control and optimization techniques such as QoS and Cisco WAAS
Preemption of performance issues with threshold-based proactive alerts

Ensure smooth network operations

Prepackaged reports, visual correlation, and contextual navigation improve IT productivity
Rapid problem isolation and troubleshooting with combined packet and flow analytics, on-demand and triggered packet captures, and purpose-designed workflows
Remote management eliminates the need to travel to remote sites

Reduce total cost of ownership

Integrated with Cisco Catalyst 6500 Series or Catalyst 6807-XL Switch, Cisco NAM-3 delivers reduced network footprint, lower operational cost, and simplified manageability
Open standards-based API (REST/XML) preserves investment in existing management assets
Q. What is the Cisco Prime Network Analysis Module Software?
A. Cisco Prime Network Analysis Module Software provides an intuitive web-based graphical user interface (GUI), an embedded performance database, and rich data collection, all integrated in a service module. The prepackaged reports and workflows allow you to view network and application performance in real time and understand what happened in the past when an event that affected network performance occurred. You can analyze the data, trends, and patterns not only to fix the performance issue but also to prevent reoccurrence. The visibility also allows you to ensure that the network is optimally used and that business-critical applications get adequate resources to be able to deliver the committed service levels. The web-based interface allows remote access from anywhere so that network performance can be viewed, managed, and improved at any time, eliminating the need to travel to remote sites or haul large amounts of data over WAN links to a central site. In summary, Cisco Prime NAM offers deeper visibility into the application and network to expedite problem resolution and optimization decisions.
Q. Where is the Cisco NAM deployed in the network?
A. The Cisco NAM is deployed in the Cisco Catalyst 6500 Series or Catalyst 6807-XL Switches at LAN aggregation points (for example, in the core or distribution layer) for monitoring and quick troubleshooting; at service points (for example, in data centers, server farms, or Cisco Unified Communications Manager clusters) where performance is critical; and at critical access points. Also, the NAM can be deployed in Catalyst 6500 Series Switches connected to WAN routers. When deployed at remote sites, the Cisco NAM uniquely allows users to perform remote troubleshooting and traffic analysis using the embedded web-based GUI without having to send personnel or to haul large amounts of data to the central site. When deployed in data center server access, the Cisco NAM can also be used for monitoring traffic in the virtual machine network, extending the visibility into the virtual infrastructure with Cisco Nexus ® 1000V switch deployments.

Technical Overview

Q. How does the Cisco Catalyst 6500 Series NAM-3 work?
A. NAM-3 provides deeper visibility into the network and the applications traversing the networks. It takes advantage of the rich embedded instrumentation in the switch and other network devices to collect data and transform it into meaningful, actionable analytics. The NAM processes the packets, flow information, and interface details of the devices, computes various performance and usage metrics, and stores processed information in the embedded Performance Database. This database provides actionable details on voice, video, and data traffic, VLANs, Differentiated Services (DiffServ) configurations, and overlay networks such as LISP, VXLAN, and GRE. The detailed information includes application response times, MOS, top talkers, conversation pairs, application usage, and more. This information is presented in the Cisco Prime NAM’s GUI in easy-to-read interactive reports with workflows to accelerate operational decisions.
The information that NAM-3 collects is defined by the user’s selecting one or more data sources. Data sources are described in Table 3. NAM-3 has independent backplane interfaces to collect Switched Port Analyzer (SPAN)/VLAN access control list (VACL) traffic and NDE/WAAS/Encapsulated Remote SPAN (ERSPAN).

Table 3. Cisco Catalyst 6500 Series NAM-3 Traffic Sources

Traffic Source

Description

SPAN, Remote SPAN (RSPAN), and ERSPAN

Using the SPAN, RSPAN, and ERSPAN capabilities of Cisco Catalyst 6500 E-Series Switches, traffic from ports, VLANs, and EtherChannel links can be mirrored to the NAM. The NAM collects statistics on all layers of network traffic spanned to it. RSPAN allows traffic to be collected from other RSPAN-enabled devices in the same VLAN Trunk Protocol (VTP) domain. ERSPAN allows traffic to be sent to the NAM using generic routing encapsulation (GRE) tunnels from a Layer 3 network.

VACLs

The NAM uses VACLs to capture or “filter” selected VLANs and WAN traffic (on Cisco IOS® Software devices only) to the NAM ports. Additional filtering rules can also be applied to target specific data flows. The NAM must be specified as the capture destination for VACL entries when configuring the local supervisor.

NDE

NetFlow Data Export (NDE) records offer an aggregate view of the network traffic. When enabled on the switch, the NetFlow data source becomes available on the Cisco NAM without the need to create any SPAN sessions. In addition, the NAM can receive NDE from remote devices for analysis.

WAAS

The NAM uses the built-in instrumentation on WAAS to gather information about the optimized and pass-through traffic to provide end-to-end application performance visibility in a Cisco WAAS environment. The information allows NAM to measure application response time, transaction time, bandwidth usage, and LAN/WAN data throughput to accurately quantify the impact of Cisco WAAS optimizations.

Q. How does the Cisco NAM gain visibility into traffic from other switches/routers?
A. The LAN or WAN traffic from other devices can be directed to the NAM for analysis using RSPAN, ERSPAN, or NDE.
Q. How does the Cisco NAM gain visibility into WAN traffic?
A. The NAM gains visibility into WAN traffic using VACL capture for WAN interfaces and NDE. VACL-based captures can be used (in supervisors running Cisco IOS Software in native mode) to monitor traffic from WAN interfaces. NDE from local and remote devices can be used to monitor WAN interfaces and provide application-level visibility into WAN segments.
Q. What is VACL capture and how does the Cisco NAM use it?
A. VACL capture is a data source that uses SPAN and fulfills similar functions. VACLs can be used to capture or “filter” selected VLANs and WAN traffic (with Cisco IOS Software). In Cisco IOS Software 12.2(18)SXF or later, VACLs can also be applied to WAN interfaces.
Q. How does the Cisco NAM with Software 6.0 use NetFlow?
A. The Cisco NAM supports monitoring of both packet- and NetFlow-based traffic sources using independent backplane interfaces. These two data sources complement each other to provide a powerful and comprehensive monitoring solution. NetFlow can be used to gain an extensive view of the traffic to analyze who is using your network, what applications they’re using, and how much bandwidth is being consumed. For deeper analysis, it can be combined with packet data using traffic sources such as SPAN, VACL, ERSPAN, or RSPAN. NetFlow can also be used to obtain visibility into traffic where SPAN is not available (for example, WAN interfaces, remote router interfaces, and so on).
NetFlow can be enabled on interfaces of local or remote devices and sent to the NAM for analysis. As a consumer, the NAM can receive NetFlow packets on its management port from devices such as Cisco routers and switches. Those records are stored in its performance database as if that traffic had appeared on one of the NAM data ports. The NAM understands NetFlow versions 5 and 9. Incoming NetFlow data is parsed by the NAM, stored in its internal database, and presented in the GUI in the same way as traffic from other data sources.
Some network devices have more than one “engine” that is capable of independently exporting NetFlow. Depending upon features of the device, flows can be exported from multiple flow caches in the hardware and software. For example, supervisor and line cards may be able to export flows independently from their local caches. By default, Cisco Prime NAM will automatically create independent data sources for each engine exporting NetFlow records to NAM.
Q. Can the Cisco NAM collect NetFlow from remote WAN routers?
A. Yes. The Cisco NAM can collect and analyze NDE from remote devices including WAN routers. This feature is helpful in analyzing traffic on a WAN router connected to the Catalyst 6500 Series Switch or from remote WAN routers where ample bandwidth is available to send NDE.
Q. Does the Cisco NAM require a separate NetFlow data collector for monitoring?
A. No. The NAM collects and consumes NetFlow data for monitoring and troubleshooting purposes.
Q. What versions of NetFlow does the Cisco Catalyst 6500 Series NAM-3 support?
A. NAM-3 supports versions 5 and 9.
Q. What version of Cisco IOS Software is required to support the Cisco Catalyst 6500 Series NAM-3?
A. NAM-3 requires Cisco IOS Software Release 12.2(33)SXJ1 (minimum) for Cisco Catalyst 6500 Series Supervisor Engine 720 and Cisco IOS Software Release 15.0(1)SY1 (minimum) for Cisco Catalyst 6500 Series Supervisor Engine 2T. Please refer to the Cisco Prime NAM Release Notes for additional information on required system software.
Q. What Catalyst 6500 supervisors does the Cisco Catalyst 6500 Series NAM-3 support?
A. NAM-3 is supported with Cisco Catalyst 6500 Series Supervisor Engine 2T (Part numbers: VS-S2T-10G, VS‑S2T-10G-XL) and Supervisor Engine 720 (Part numbers: WS-SUP720-3B, WS-SUP720-3BXL, VS-S720-10G-3C, VS-S720-10G-3CXL).
Q. What was the first Cisco Prime Network Analysis Module Software release that supported the NAM-3 (WS‑SVC-NAM-3-K9)?
A. NAM-3 was first supported in Cisco Prime NAM 5.0(1T).
Q. How is the Cisco NAM secured?
A. The Cisco NAM can be secured with up to 256-bit encryption. The NAM also supports role-based user authorization and authentication locally or using TACACS+.
Q. Can NAM-3 be deployed in fabric-enabled Cisco Catalyst 6500 or Catalyst 6807-XL Switches without affecting switch performance?
A. Yes. NAM-3 supports full fabric (crossbar) connectivity and can be deployed in a fabric-enabled chassis with no impact on switching performance.
Q. Can multiple Cisco NAMs be installed in Cisco Catalyst 6500 E-Series or Catalyst 6807-XL Switches?
A. Yes. Multiple Cisco NAMs can be installed in a single chassis.
Q. Can the Cisco NAM be installed in Cisco Catalyst 6500 E-Series or Cat6807-XL Switches with other services modules (for example, the Network Security Module [ASA-SM])?
A. Yes. The Cisco NAM can be installed with other services modules.
Q. Are there any ports or network interfaces on the Cisco NAM?
A. Yes, there is a 10 Gigabit Ethernet SFP+ external interface that can be used for external storage. There is also a mini-SAS port to connect to external SAS arrays. There are two 1 Gigabit Ethernet ports, one for management and the other for IEEE 1588 sync.
Q. Can multiple VLANs be spanned to NAM-3?
A. Yes. The NAM is fully compatible with the Switch Monitoring (SMON) MIB and supports the monitoring of multiple VLANs.
Q. Does NAM-3 support supervisor failover?
A. Yes.
Q. If a switch chassis is upgraded, must a new Cisco NAM be purchased?
A. No. The Cisco NAM is fully functional in any of the modular Cisco Catalyst 6500 E or Catalyst 6807-XL chassis.
Q. Does the NAM support Virtual Switch System on the Catalyst 6500 or Catalyst 6807-XL Switches?
A. Yes, NAM-3 supports VSS.
Q. Are there specific capabilities that NAM provides in a VSS environment that are distinct from the capabilities provided in a non-VSS environment?
A. Yes, there are three key differentiators:

Monitoring port statistics on both switches using one NAM. The NAM can provide mini-Remote Monitoring (RMON) statistics on both switches and identifies these statistics by chassis, slot, and port. In this way, a complete view of Layer 2 traffic utilization can be obtained to assist in quickly identifying potential bottlenecks.

Using SPAN on one NAM to obtain visibility into traffic on both virtual switches. Typically, RSPAN or NetFlow would be used to obtain visibility into an adjacent switch.

Monitoring the health of both switches using a single NAM.

Q. Can Cisco Catalyst 6500 Series NAM-3 extend visibility into the virtualized data center?
A. The Cisco Catalyst 6500 NAM-3 can extend visibility into the Cisco Nexus 1000V switch traffic in deployment scenarios where the Cisco Catalyst 6500 is an end-of-row (EoR) access switching platform in the virtualized data center. The Cisco Nexus 1000V switch is a software switch on a server that delivers Cisco Virtual Network Link (VN-Link) services to VMs hosted on the server. This distributed switch has two major components: the Virtual Ethernet Module (VEM) and the Virtual Supervisor Module (VSM), which manages the VEMs. The Cisco Nexus 1000V can be configured to direct NetFlow Data Export from virtual or physical interfaces on the Cisco Nexus VEM to the Cisco Catalyst 6500 NAM. Also, ERSPAN can be configured to allow the Cisco Catalyst 6500 NAM to remotely monitor the traffic in the VM network.
Q. What NAM data sources can be used to monitor traffic in the Cisco Nexus 1000V switch environment?
A. As previewed in the answer above, the Cisco Catalyst 6500 Series NAM-3 can monitor the Cisco Nexus 1000V using ERSPAN and NetFlow data sources (for more information about these NAM data sources, please refer to Table 3 of this Q&A). ERSPAN can be configured on the Cisco Nexus 1000V to allow the Cisco NAM to obtain visibility into specific ports or VLANs. The data made available by ERSPAN permits the NAM to provide core traffic usage metrics (on applications, hosts, and conversations), response time analytics, and QoS and VLAN monitoring statistics. NetFlow Data Export can be configured on select virtual and physical interfaces of the Cisco Nexus 1000V. The data made available by NetFlow permits the NAM to provide core traffic analytics and QoS monitoring statistics.
Q. When would I purchase a Cisco Catalyst 6500 Series NAM-3 versus a Cisco Nexus 1000V NAM virtual service blade (VSB)?
A. The NAM-3 is a hardware module integrated in the Cisco Catalyst 6500 that provides visibility into both physical and virtual networks. It comes with a feature set and level of performance commensurate with providing high-performance monitoring and troubleshooting in the campus or data center. The Cisco Nexus 1000V NAM VSB is a software module integrated in the Cisco Nexus 1010 Virtual Service Appliance. The Cisco Nexus 1000V NAM VSB comes with a feature set and level of performance that is specifically targeted for monitoring and troubleshooting the Cisco Nexus 1000V environment. The Cisco NAM VSB is a perfect fit for customers who are deploying the Cisco Nexus 1010, offering both ease of deployment and investment value. Customers who have Cisco Catalyst 6500s, who may want to monitor more than the Cisco Nexus 1000V environment, who require higher overall performance, or who perform extensive captures and decodes will want to consider the Cisco Catalyst 6500 Series NAM-3. Additionally, the NAM-3 should be considered if a Cisco Catalyst 6500 is deployed in the data center access layer in VSS mode for high availability considerations. In this deployment scenario the Cisco Catalyst 6500 Series NAM can monitor switch ports and associated application traffic on both the Cisco Catalyst 6500 and on the Cisco Nexus 1000V.
Q. What is the latest software version for Cisco Catalyst 6500 Series NAM-3?
A. The latest version of software for the Cisco Catalyst 6500 Series NAM-3 is Cisco Prime NAM 6.0. For any questions related to the latest software release, please refer to the Cisco Prime NAM Software Q&A .

Ordering

Q. What are the part numbers for the Cisco Catalyst 6500 Series NAM-3?
A. Table 4 lists the part numbers for the NAMs.

Table 4. Cisco Catalyst 6500 Series NAM-3 Part Numbers

Product Information

Part Number

Cisco Catalyst 6500 Series Network Analysis Module (NAM-3) (Spare)

WS-SVC-NAM3-6G-K9(=)

Cisco Prime NAM Software 6.0

SC-SVC-NAM3-6.0-K9

Q. How can the Cisco Prime NAM Software be obtained?
A. The Cisco Prime NAM Software can be obtained in one of two ways. To obtain the latest Cisco Prime NAM Software with your new hardware order, order SC-SVC-NAM3-6.0-K9 when ordering the NAM hardware. The software will then be delivered preloaded on the hardware.
Q. Must Cisco Prime NAM Software be downloaded from the Cisco.com Software Center when first deploying a Cisco Catalyst 6500 Series NAM?
A. No. Cisco NAM-3 comes with the latest Cisco Prime NAM software release. There is no need to download the software when first deploying the Cisco Catalyst 6500 Series NAM-3.
Q. How do I obtain access to a new Cisco Prime NAM Software release?
A. Customers who have purchased SMARTnet ® for their NAM-3 are entitled to download new software releases from the Cisco.com Software Center.
Q. What is required to deploy NAM-3?
A. The following are required to deploy NAM-3:

Cisco Catalyst 6500 E-Series running Cisco IOS Software Release 12.2(33)SXJ1 (minimum) with Supervisor Engine 720 or Cisco IOS Software Release 15.0(1)SY1 (minimum) with Supervisor Engine 2T; or Cisco Catalyst 6807-XL chassis running Cisco IOS Software Release 15.1 SY (minimum) with Supervisor Engine 2T

Catalyst 6500 Series Supervisor Engine 2T (Part numbers: VS-S2T-10G, VS-S2T-10G-XL) or Supervisor Engine 720 (Part numbers: WS-SUP720-3B, WS-SUP720-3BXL, VS-S720-10G-3C, VS-S720-10G-3CXL)

NAM-3 running Cisco Prime NAM Software Version 5.0(1T) or later

Web browser running Microsoft Internet Explorer 9.0 or later or Mozilla Firefox ESR 10.0 or later

Additional Information

Q. Where is additional information about the Cisco Catalyst Series NAM-3 found?
A. For more information about the Cisco Catalyst Series NAM-3, visit http://www.cisco.com/go/nam or contact either your local account representative or the NAM product marketing group at nam-info@cisco.com.