42internetworks

A couple weeks ago, we posted a thread about doing an unofficial bake-off. Since then we’ve only received emails and comments from vendors - no users. So this begs the question, are there any users reading this blog out there. If not, then maybe doing the bake-off isn’t that valuable. To help minimize the input were looking for; we’ve narrowed the scope of our bake-off and have 2 quick questions to get your insights on:

1) Which DIY products for IT System/Network/Application monitoring for inventory/performance/fault (Not Configuration or Security at this point) that includes RBAC (roles) where it’s deployed centrally for multiple people to use should we bake-off? It must be a DIY product as defined here…

AdventNet OpManager
Solarwinds Orion
ZenOSS
Other: If other, then who and which name on this list should be replaced.

2) What do you believe are the 3 key features that should be baked-off?

No Comments »

Over the past month DIY IT Management (aka IT Management v2.0) continues to heat up…

PacketTrap is having fun splashing around the controversy pool these days while also announcing their PRO edition that costs approximately $1500 (haven’t had a chance to download and check it out yet, but have watched a demo).

First up are the jabs at Solarwinds - Solarwinds website down today which have resulting in some “blog boxing.” Solarwinds jabbed at them on their Top 10 Annoying things in Networks with #”1: Copycat network management products. If you can come up with something original then I’m all for it. But if you’re just putting new skins and UIs on existing functionality then what’s the point… We don’t use these tools because they’re pretty, I mean, dude, we spend half our day in a freaking CLI for crying out loud…”

Or how about how PacketTrap taking a swing at ZenOSS, Nagios, Groundwork, etc with their Open Source position paper and then various blog boxing posts:
Rev up the Open Source Network Management Debate
The Demise of Open Source
Open source leech rails against open source companies - a body blow shot thrown back
Open Source continued - took the punch and swung back
Commercial Open Source: A Half-baked business model - summarized the round 1 judges score cards
Lipstick on a pig - round 2 begins

Honestly, they have a cool product so it makes sense how passionate they are getting about it and making sure their opinion is out there. It’s also fun to see the pot being stirred!

Meanwhile, AdventNet, Spiceworks & ZenOSS seem to be content just building out new features and keeping quiet on their blogs.

We’re currently planning a unofficial “bake-off” where we download the latest and greatest DIY products and test against a capabilities matrix were building. For the price points these players are talking you really don’t have time to bake them off, many times it’s pick one and use it until your frustrated - then try a new player. Currently we are thinking the following players should be put side-by-side:

Personal Tools that run on your laptop to help with system/network/application/etc administration tasks:
PacketTrap
Solarwinds Engineering Tools
Spiceworks

Products that include RBAC (roles) where it’s deployed centrally for multiple people to use
AdventNet OpManager
Solarwinds Orion and ipMonitor
ZenOSS

In preparing for this we have 3 questions

1) Which bake-off to do first; Desktop tools or Enterprise product?
2) We only want to bake-off the top 3 in each category, so is their someone we should considering replacing?
3) What do you believe are some key features that each category should include.

Remember the scope is a single tool/product for IT System/Network/Application monitoring for inventory/performance/faults. Not Configuration or Security at this point.

1 Comment »

It took about 45 minutes to download all the components (VMware player and ZenOss software) and to configure the product to monitor our lab. This was a little longer then we expected and only included monitoring network and servers (not applications).

The version we tested out for this review was the Community (aka Free) version. This basically ends up being a version for a single IT administrator to run it on their laptop. For typical enterprise features (e.g., RBAC, Integration connectors) you will need to take a look at the “enterprise” versions where pricing starts at $5k per year for 50 devices. Additionally, we weren’t huge fans of the pricing model which is an annual expense per this matrix. We typically prefer to buy the software as a license if we like it.

So next-up was a run through of the features offered. First thing we realized (even during the setup) is the usability (aka ease of use) is very UNintuitive. People don’t have time to read manuals and we felt the user experience was very, very challenging. No wizards to walk me through complicated tasks, items weren’t labeled with names that made their capabilities obvious, etc.  An example of an unnecessarily complicated capability is you set-up availability (ping) monitors separate from performance (SNMP) monitors. Why not simply offer me the choice to do both at the same time?

In the end, it does offer the basics - Discovery Engine, Availability Monitoring (ping primary, but also offers tcp/udp status query), Performance Monitoring (SNMP primary, but also offers WMI), Advanced Grouping capabilities, Topology Map, Device/Metric Reports (over time). One thing we didn’t see was event monitoring (e.g., syslog, SNMP Traps, etc) but maybe its was overlooked?

To monitor specific applications or virtualization requires you to download and install extension packs that have either been developed by the user community or by ZenOSS for the paid Enterprise versions (e.g., IIS, Exchange, SQL, Tomcat, Oracle, JBoss). This again, adds to the complexity of our experience using the product. These “packs” should be automatically downloaded and installed with the product and during some type of initial configuration wizard it would figure out if I need any of these other monitors

Bottom line, even though the community product is free, we came to the conclusion we rather pay $2500 (to Solarwinds for Orion) and get something that has been polished up and is much, much easier to use then work with ZenOSS when it comes to monitoring our network, servers and applications. It has the features but it’s just to difficult to work with compared to other low priced (DIY) alternatives.

As always, these are our opinions. This review was done completely based off reviewing the website and downloading the community product without any discussions or interaction with ZenOSS (just like any IT administrator would attempt to do). If you disagree please feel free to leave your comments for us to check out.  There must be people out there who disagree since looking at sourceforge shows they have had over 500,000 people download the product!

4 Comments »

We decided to put Spiceworks 2.0 through it’s paces and here’s what we learned.

Our system: Average sized laptop with Windows XP, 1Ghz CPU, 1G Memory

The installation experience: Downloaded, installed and running in less then 10 minutes. In memory it takes up about 60M. During the download it only asked for name, email and company.

Primary Functionality

• Discovery and reporting of asset inventory (e.g., hardware, software, applications, almost anything with an IP)
• Slick thresholding/alerting on consumption levels associated with those assets
• Various IT Knowledge summaries(e.g., feeds and simple forum integration providing integrated method to share knowledge)
• Trouble ticketing system that includes a page for people to submit issues and IT can track or assign to others
• Aggregate IT marketplace to track needs and redirect to storefronts for purchasing

What was missing

• No real action can be taken on the devices except for launching windows remote control, performing a ping or traceroute - no scripts, snmp browsing, launch telnet/ssh sessions…
• No SNMP monitoring which limits us to using this primarily for Microsoft Windows desktops and servers
• Discovery today is very WMI centric and only does some basics leveraging SNMP, SSH capabilities
• No event monitoring (e.g. pulling in windows logs, syslog, SNMP traps etc). Many times those events are what initiate an IT admin opening a ticket. It would be great to have that, with a rules engine, that would automatically open the ticket, assign it and make a note on the page where users to submit tickets stating the issue is already known (so they don’t go opening a ticket)

Overall impression: Great tool for a small company with one or a few IT administrators to manage inventory (specifically windows laptops). Price is right - Free if you don’t mind ads, $110 annually if you do. It’s worth a look as it takes less then 15 minutes to check it out.

To check out some screenshots without installing head over here and put the pictures in slideshow mode. Above picture was borrowed for there.

No Comments »

Happy New Year!  Well, now that everyone is back from the holidays let’s get things rolling again!

I just had the chance to read a recent post from the crew over at PacketTrap called “The Religion of IT” and have to say a few things.  Spot on!  What a great thing for ALL IT Management vendors but especially those I call IT Management 2.0 vendors like PacketTrap.  It really amazes me that Microsoft, Cisco and others simply don’t attempt to support even their largest competitor and then provide a smooth migration path from those products to their software/hardware.  Talk about major competitive differentiator!

I know, the argument can be made “well I would never expect Microsoft or Cisco to offer heterogeneous management capabilities as good as an independent vendor.”  True (maybe), but MANY enterprises are a heavy majority Cisco, Microsoft, etc over the other guys (e.g., Juniper, Nortel, Linux, Solaris).  Let’s be honest, the vendor themselves typically CAN offer a BETTER management product if they really TRY (and focus) versus that of a 3rd party vendor since they can do special, proprietary things and also exchange internal knowledge.  Additionally, it’s really not that hard to offer “basic or good enough” heterogeneous functionality without a competitive vendors help.  I guarantee Cisco and Microsoft’s labs are brimming full with their competitors products.  Take those products with the manuals and you can easily build “good enough” heterogeneous capabilities.

It’s a lucky thing Microsoft or Cisco hasn’t and currently doesn’t seem to be doing this as they could put a great deal of pressure on a number of 3rd party IT management vendors (e.g., going out of business type pressure).   But, who is to say they may not start moving this direction.  They have shown glimmers of doing something like this with Cisco acquiring Sheer Networks, Microsoft acquired Assetmetrix (I’m sure there are more examples) - both were designed and function in heterogeneous environments.  Lucky for us they seemed to acquire them for a specific purpose that hasn’t seen them introducing the products targeted at the enterprise IT management market.

In my opinion, it’s just a matter of time before the big guys wake up and make a strategic play to do this.  I really wouldn’t be suprised to see one of them snap up a IT management 2.0 vendor (e.g., AdventNet, PacketTrap, Solarwinds, Spiceworks) once it’s reached a certain maturity point.  Take six months to re-brand, continue offering as a free internet trial/value-based purchase and add a set of functionality around “helping or easing” the migration or even simply “advertising” the benefits of migrating away from products from their top competitor.

I can see it now, I have an F5 load balancer and I’m managing with this CiscoWorks NG product.  As I’m troubleshooting or looking at statistics on that F5 there is an advertisement right next to that device icon/event log/etc. talking about Cisco’s competitive offering, asking questions like “are you having problems with x, y or z…with Cisco you won’t.”  To buy, click here and when it arrives we will walk you through migrating the current F5 configuration to your new Cisco hardware!

Something to ponder…

No Comments »

In November I saw a new company launched that claims to be the pioneer of the “Search engine for IT” (which I thought was Splunk). Anyways, back on topic…ton of great buzz hit the wire! From what I’ve gathered here is the quick skinny on their product (which is not yet available but should be shortly as a beta only invitation).

Download a free/open source crawler that will run from your windows desktop and crawl around your internal IT infrastructure and then securely send that information to a secure Internet site. They mention a few other tools/capabilities in their demo/etc but this is the core of the product it appears.

Otherwise, really cool idea - a SaaS offering where Spiceworks meets Splunk (who by the way just took $25M in funding and has been around in product for a couple years).

My question/concern is this. I’m not sending a list of my IP addresses, hostname, software versions, etc outside of my company. That is a recipe for disaster if someone gains access to that internet site or if my security team finds out I did that. So what’s going to be in the product to calm those fears??? We shall hopefully soon see when they go into beta.

Paglo joins our watch list of IT Management 2.0 vendors.  Know of any others that meet the criteria…let us know in the comments area, we will check them out and add them if the match up…  For now here are the ones we are watching.
AdventNet
PacketTrap
Paglo
Solarwinds
Spiceworks

No Comments »

Have 10 minutes to spare. You won’t be disappointed, especially considering the price! PacketTrap has just released a beta version of it’s “network administrator cockpit” desktop application. The best way to image this is iGoogle experience for Network/System Administrators that runs on your laptop (instead of out on the internet). In the beta release it offers a variety of widgets or the ability to view other web based products through a common web interface. Don’t get me wrong, it has some maturing to do but you can see potential written all over this! For more details on the PacketTrap product skip to the bottom of this post, otherwise…I want to rant for a second.

THIS is the type of innovation I love to see. Just cool products you can download and see results for yourself. No marketing hype, just straight capabilities to help an administrator solve pain - not spend 12-18 months dealing with evaluation, justification, buy-in, getting budget approval and then deployment, training, etc. Just like Solarwinds and AdventNet who offer tools for a nominal price and Spiceworks who also offers up their tool for free, PacketTrap now can be added to the IT toolbox for helping out.

Now, these tools are different then open source. The problem with open source in my view is the tools aren’t typically as clean and ready for use (e.g., download, install and usable in 10 minutes or less). Additionally, I continue to struggle with how you build a business with open source of IT management product. I think that attitude of open source for IT management is a misnomer. It’s basically treated by the user community like a free tool they can make some extensions to (e.g., via extensible API) if they have some basic scripting skills (which most paying commercial product offer). I like the innovation, but I worry about the business model. Where cheap tools sell via the internet (so they can reach more people), free tools need to eventually offer an upgraded version at a cost…I’m not sold on “advertising” paying the bills and making profit for IT management tools as a core business.

The other side that I love about these tools is since they are cheap or free and extend to a very, very broad audience they build a tremendous community! A community that shares insights, perspectives, how to’s, problems, pains, etc. If you will a “social network.” Now this can eventually equate to money if handled properly.

Anyways, for today I’ll get off my value-based, free and open-source tools/product rant. More in days ahead. Back on track with my take on PacketTrap.

PacketTrap pt360 Suite installs on your desktop in minutes and allows you to quickly select from some predefined widgets (think iGoogle). Some of these widgets currently offered include: SNMP Scan, Ping Scan, WMI Scan, Port Scan, Traceroute, Wake on LAN, TFTP Server, etc. Very similar list as the Solarwinds Engineering Toolkit offers. But here is where the secret sauce comes into play. They are very cleanly tied together in a common personal web portal.

There are a number of things I would love to see, but those I’m sure will be coming in the days ahead. Bottom line, this is a great first version. Most likely if you have paid for Solarwinds Engineer’s Toolset you should and will stay with that for now. If your toolkit license has expired and you’re missing those tools but don’t want to pay for a new version then take a look at PacketTrap. Otherwise, most likely the PacketTrap product needs about 4-6 months of feedback and enhancements before it’s on par and has major differentiation over the Solarwinds capabilities.

In summary, if you have 15-30 minutes to try out a new tools, give it a shot…but if it’s not up to par don’t give-up on it. Make a note to self to come back and check in 4-6 months (better yet, add their blog to your RSS reader and watch as they make updates so you can try again once they add more stuff).

Here are a couple screenshots that show the cockpit interface and also a list of widgets available today to place on the cockpit.

1 Comment »

What a great read…  2007 BullsIT awards.  I love seeing something like this that highlights industry frustration with all the “spin” marketing & sales.  As you’ve read in numerous postings here, here and here.  We advocate minimizing the ambiguity of what the product/solution does and making it simple to review/evaluate a product.  Great write-up Nick!

Personal favorite is #3 - It’s a single, interoperable, scalable, extensive security framework that protects the data today and tomorrow as the infrastructure changes.

No Comments »

So I’ve been behind on my thoughts about BSM, web 2.0 etc per a comment from Steve Cotton over at Firescope. I love the name and really like the technology and vision for their product, but I’m not yet convinced their product achieves BSM from the definitions I’ve been reading (more on that in a second).

My quick take on Firescope, it is what happens when IT Operations meets an internal deployment iGoogle technology (e.g., all the cool widgets, mashup, collaboration capabilites). I love the concept! Where iGoogle is your personal dashboard for what you like to learn about on the internet…this is the same concept for aggregating together various developed widgets that obtain their metrics/data from other IT Operations Management products in your intranet. Sweet idea indeed, the only question is who builds all those widgets, how long do they take, etc. Where on the internet software developers build them for self consumption and then share, who will do this for the FireScope product? Large IT Operation software vendors aren’t going to build them, customers may have the skills to build them but most likely until critical mass is achieved it will need to be Firescope themselves or professional service vendors.  There are some other creative approaches due to the mash-up like abilities that could inspire a build-out community; maybe offering a free lite version virtual appliance or even standing up an outbound facing version open for “mashing.”  Some fun challenges for Firescope to have with what appears to be some smart guys working to solve it.  Good luck!

Now, back onto BSM.  Research from various analysts are defining BSM as taking business data and coupling it with IT operations data in a manner that shows the true impact of IT operations on the business and vice versa. Now with that said I would expect as a CIO to be able to bring in a single reports that answers business questions using analyzed IT data.

Not how many major outages did we had last week or how many intrusion attempts were foiled but instead answer questions around employee productivity, risk exposure and cost savings. Let me throw out some more details in an attempt to explain.

Let’s say I want to understand employee productivity of the business, if all goes well IT should go unnoticed. An example of this could be if any employees, outside of IT, when attempting to do their job that relies upon part of IT (e.g., process an order, call a customer, ring up a transaction, perform manual data entry), get disrupted or delayed in any way? For example; if the inability to process an order cost “x” amount of paid employee time then IT cost the business “y” money. This is a metric that at the “BSM” level I would want to know, not that we had 99.5% availability with only 3 outages and 2 instances of “brown-out” performance slow downs. I want to know how much money my previous IT investments saved the business today or unfortunately cost the business today.  These availability metrics or performance metrics are fine for IT managers and executives to manage up and down, but they aren’t truly top-down or aligned with the business goals.

Let me try to explain with a random analogy. Thinking more along the lines of baggage handlers at the airport. If your bag shows up in a timely fashion your productivity continues and you virtually don’t even notice a thing. Before you know it your in your car on the way to your destination. But, when you lose a bag or it takes longer then normal to get your bag you have a productivity issue (e.g., something that impacts you personal life).  You get frustrated, stressed, takes away time with loved ones or maybe an already short weekend vacation, your late to your son’s soccer game, etc.  I think you get the point.  In a perfect world for most enterprises, IT is invisible and otherwise they are working miracles by putting things in place to making things happen more efficiently and faster…again saving more time, money, frustration, etc.

Another quick IT related one off the top of my head is how much employee productivity is lost when getting “set-up” or transitioning between laptops or computers.  I hear colleagues or friends talk all the time about how it took then days to get transitioned or set-up.  I know this is not core to what we view as IT Operations duties but it is a service offered by IT.  I dread this transition process, but I know it’s worth my time to make it happen as for the next 18-24 months I’ll have a faster, better PC.  Think of the productivity gains and money savings IT could have here.  Another topic to ponder some day.

To to wind this down for now, as I’m reading about BSM this is the level of metrics I assume CxO’s would want to watch, maybe I’m wrong here…but this to me is true “top-down” IT management where business metrics are aligned with IT metrics.

Flame away if I’m off base or please chip in and brainstorm these type of BSM metrics. Let’s not be thinking yet about “how” to get the data or from where it is collected. Let’s truly start from a “top-down” perspective and answer questions like we are at the executive staff meeting trying to run a business.  Once we’ve done that we can apply all the amazing technology we have on the market these days (e.g., firescope) to architect the solution.

1 Comment »

HP overhauls Network Node Manager was a headline that just blew me away! Not for the the reason you would expect - like excitement. Instead, for the amazement that customers continue to tolerate uninventive products. Instead of taking time to build new, innovative capabilities - time was better served to rewrite “more then 90% of the code!”

If your responsible for network monitoring for a large enterprise and want the comfort of knowing your product is backed by a big company (e.g., Big 4) that won’t be going anywhere soon then I encourage you to take a look at EMC and the SMARTS platform they acquired and have been innovating on very quickly (EMC seeks to streamline compliance).

If you are anyone else (e.g., not responsible for managing an entire (Global 1000 size company to me is large) enterprise infrastructure ) and you thirst for innovation while being able to handle some manageable risk, take a look at some of the various open source solutions like OpenNMS, ZenOSS or “Do-It-Yourself” vendors like Solarwinds, Ipswitch.

DIY, as I’ve discussed previously, are those vendors that leverage a transparent, internet-centric distribution model. They focus on product simplicity and effectiveness since the users must be able to download, evaluate and then buy the product without ever talking to a sales person.

So what is innovation to me from an HP NNM standpoint. It’s simple, please take the innovative technologies you’ve acquired over the past year (e.g., Peregrine, Mercury, Opsware as I’ve discussed previously) and deliver on key end-to-end use cases for your “primary customer” (e.g., large enterprises). Stop, worry about being the #1 vendor per IDC with 10,000 versions installed etc, etc, etc. As you work to deliver those use cases make it easy for those customers to transition from current competitor solutions they’ve invested in. Realize they can’t replace those purchased products overnight! So offer the API’s and integration modules where if someone currently has BMC Remedy they don’t have to forklift it get achieve benefits. Use your new iConclude (part of Opsware acquisition) orchestration engine to seamlessly flow activity between the products - then focus on offering additional capabilities and “advertise” those. ‘Advertise”, what do I mean by this. Example: Have remedy events and specific types of data flow into NNM or other HP products…allow the user to view details, etc. but at some point you will be limited by what you can do since you (HP) don’t own the product. This is your opportunity to build that portion of the use case in Peregrine and then have tooltips, rollovers, pop-ups etc that advertise that if you had Peregrine you would get the following in addition to what Remedy offers! Stop chasing the dream of being all things to all people…it’s not possible with a single product - different size companies have different requirements. Now, if that’s not an option…then take this 90% new code and rename the product and built out the infrastructure to compete with the open source & DIY vendors. Or, better yet, go acquire their innovative approach, leave it as “point products for the masses” and build upgrade paths from these “designed for the masses” products to your “enteprise class” products so as a company evolves and matures they can seamlessly transition. It comes down to something so simple it’s overlooked typically - a single product can’t be all things to all people. This post is already long enough and that last thought could keep me typing of for many days (which will have to wait for another day).

No Comments »