CN

CNEMS
EMSbenchmark
benchmarkpresentation
presentation
 ZTE EMS Architecture
NMS 3rd Party NMS/OSS/BSS

SNMP, FTP, MML, CORBA

FM/PM/CM/IM

EMS Fault Performance Configuration Task

Management Management Management Management

NetNumen U31(CN) Software Topology Security

ITMP
Management Management Management

Inventory System Log

CTS
Management Management Management

SBI Mediator

NE
vSGSN/MME vGW/DPI vSGSN/MME vGW/DPI

(1) Centralized O&M (2) NBI integration

2
ZTE OSS Architecture
NMS 3rd Party NMS/OSS/BSS

SNMP for FM, FTP for PM&IM, MML for CM

FM/PM/CM/IM

EMS Fault Performance Configuration Task

Management Management Management Management
Software Topology Security
ITMP
NetNumenTM U31 Management Management Management

Inventory System Log

CTS
Management Management Management

Core Mediator

NE
CS PS EPC IMS

(1) Based on Unified EMS Platform (2) Development of Core Adapter (3) Added-value feature

3
Flexible Access & Operation Modes
NMS/BSS/OSS  EMS Server and EMS Local client provide
Multiple Client centralized monitoring, maintenance and
Operation Types management, reduce OPEX.
 Web  LMT for each NE lets local O&M engineer
 MML conveniently maintain NE.
 GUI LAN/WAN  Remotely access all O&M functionality
U31 U31 anywhere and anytime.
Local
R
Multiple Client Access
Methods
 Local Client
 Remote Client
LAN
 LMT
R

EUTRAN IMS NE

Local client
LMT LMT
WAN

Remote R R

LAN

EUTRAN IMS NE
LMT Remote client Remote client
LMT

4
Fault Management
Anytime, anywhere,
Just alarms under control
wanted Alarm
Box
Key Alarms
client SMS

Display Filter Email

NMS Alarms
Correlation Rules Processing
(Merge, Count, Suppression, ……)
Rich alarm show type
Dump Filter
Access Filter
 Detailed alarm
(Discard, Delay, ……) information helps user to
handle alarm.
Original Alarms
 Default and customized
suggestions,
accumulating and
NE NE sharing maintenance
experience.
 Reduce the alarm number
 Locate root Alarm Quickly

Alarm processing Alarm Knowledge Base

5
Efficient Configuration Management • Support Configuration data LOCK for
• Support console MML
security
• Support GUI base MML
• Support OFFLINE data configuration
with Help online
• Support PreSync data check
• Managed NE and MML
• Support OFFLINE data consistency check
tree list shown ON GUI
with NE ONLINE data
• Support Batch MML
• Support Transmit the changed
processing by import
configuration data only

L
M
the MML command file

&M

C
on
• Support MML task:

UI

fig
G
Schedule execute

ur
Configure

t
en
Management

m
B

e
ac

• Support centralized Backup

ag
Support Batch Bureau data
ku

an
& Restoration configuration
p

M
Export and Import, such as
&

a
at
R

data

D
es

Office, Link, Trunk etc, the file

u
ea
to

• Support daily backup

ur
r
at

format is excel.
B
io

configuration data
n

6
Performance Management
Performance Data Collection
 Rich and flexible
counters
 Support flexible
granularity, such as
15mins, 60mins etc.
 Recollect data when
link recovers
 Data lost alarm
KPI Monitoring with threshold alarm
 Flexibly self-defined KPI
 KPI real-time monitor,
analysis and query
 Set the threshold to KPI
 QoS Alarm based on
KPI

Performance
Management
Flexible Performance Analysis Simple Report provided

 Flexible comparison  Create report based on

and analysis by self- defined PI & KPI
measure granularity,
measure type, time  Export performance data
bound to xls/csv/txt/html/xml/pdf
files
 Support graphic,
line chart and table  Automatically generate
representation the report periodically
 Query result can be
exported or printed

7
Comprehensive Security Management
Security Model Authorization Authentication Auditing

User

Role set Role

Department

......

Role 1 Role N

Log Log
management
System
management
System
Allocation of rights Only access the Trace user and
management management
...... ...... according to authorized operations operation
Operating Management Operating Management
right 1 resource 1 right N resource N
requirements or resources

 Role based on  Authority based on

 IP address, Date and  Record all operation
operations and RBAC (Role Based
Time, Logon time events
Resources Access Control)

 Password policy,
 Operation Log,
Account lock rules,  Account and
 Role represents right Security Log, System
logon time rules, password validation
Log
access address rules

8
Security Management
Operator Intranet
Firewall
OSS Anti-V BSS OSS/BSS
VPN
Remote Console

SFTP/SNMPv3/SSH

EMS
4 Application Security

3 System Security
HTTPs
/SSH VLAN
2 Transfer and Data Security
Client/Console Server
1 Network Security

RAN CN 1,Network
2,Data
3,System
4,Application
Security
Security
Security
security
 Centralized
Security
Encryption
Each node Domain
Transfer:
(NE
Authentication
and
Division:
EMS)
Different
The
shall
, Authorization,
application
network
be hardened.
is
PDSN HSS divided
scenarios
Disable
Audit and into
useless
Log
canseparate
choose
forservice
OSS security
different
network.
or application,
domains
ways ofclose
and
data
BSC
AAA/  implement
transmission
unused
Integrationports,
different
encryption
with etc.
AAA security
(IP Sec,
server policies
SSH, SFTP,
through
MM BTS AN-
 HTTPS,SNMPv3)
VPN Data:Deploy
Anti-virus
Radius/LDAP Isolation:
protocols
centralized
According
for centralized
anti-virus
to the dataAAA
AAA
MGW  type
Encryption
server
at enterprise
forindata
thestorage:
OSS
level.
isolation
network
Using DESto strengthen
、 AES- the
BSC CSCF 128 、
OSS network
MD5 、against SHA1 etc.
virus attack.
MM BTS MGCF

9
Log management
Operation Log System Log Security Log
• Record the operations taken by • Record the operations taken by • Record information of each time
users at the EMS GUI. the system at the background. a user logs into/out the system.

Operation Command Operation Resource Operation Operation

Log Username Rank Operation Function Resource Address Start Time Result
Detailed Operation
System Log Source Rank Log Name Information Host Address ---- Start Time ----
Connection Detailed Operation
Security Log Username ---- Mode Information Host Address ---- Start Time ----

Log Query • Log queried according to query condition

• Log deleted according to the configured time interval

Log Deletion

Log Push • Push log via FTP /SFTP or Syslog

Log Policies • Log backup policy supported

10
Version management
 Centralized, Remotely and  NetNumenTM U31 Upgrade flowchart
Operation Wizard supported
 Support Installation & Upgrade Laptop
and Patch, Client Auto Upgrade Workstation

 Automatic load and elegant

upgrade
Server Server
 Flexible management of
multiple NE versions
Remote
Site
Local Site

LMT Server Client

CSCF CSCF
USPP V1 V2

MGCF PSS
IMS-MGW

11
Centralized Inventory Management

Serial Number:B249062600131

1. Automatically update inventory data (e.g inventory serial No) from managed NEs or accessories.
2. Add, modify, delete, retrieve and import/export of software, hardware and firmware inventory information.
3. Inventory report can be exported, and file format supports csv/txt/xml.
4. Inventory file generation periodically and Integration with upper level system via (s)FTP NBI.

12
LDAP/RADIUS/TACACS+ Authentication
EMS Authentication Management Remote Authentication
Server
Local
Authentication LDAP SERVER
Login Authentication LAN/WLAN
Login Module Module Remote RADIUS SERVER
Authentication
Agent
Remote TACACS+ SERVER
Authentication

Message Direction Transmission Encryption Algorithm

Authentication Request
Authentication Result
LDAP
User Info Query
User Info
Authentication Request
RADIUS
User Info
User Name Authentication
Authentication Result
TACACS+
Password Authentication
Authentication Result
Agent to server
 LDAP ： RC4/DES/3DES based on SSL
 RADIUS: MD5(HASH)^Password
Server to Agent
 TACACS+: MD5(HASH)^Message body
Agent to server
Server to Agent Notes:
Agent to server
 If the remote authentication server is out of service ,
the local authentication module will take over the
Server to Agent authentication process according to configuration.
Agent to server  For RADIUS authentication, the user info can be
stored in Radius server or from external LDAP
Server to Agent
server.
Agent to server  The RBAC (Role Based Access Control)
Server to Agent authorization is on EMS. The EMS user name should
be kept the same as on the remote authentication
server manually.
13
The Smart Script Tool - Octopus
According to the day-to- The syntax is simple,
day O&M work flow to easy to learn and
customize the MML understand.
script, to meet the needs Few scripting skill
of a particular scene. required for the O&M
personnel.

Octopus
Powerful script editing, Simultaneous script
debugging and project execution of multiple
release. NEs for reducing the
Script batch. time of making data and
Manual and automatic business interruption
script execution.

Offline Automatic Bureau Data PM & FM

Configuration Patrol Export & Import Data Analysis

Octopus can help you to edit smart script for some repeating, important and complicated work
flow of daily maintenance.
Automatic and unmanned operation maintenance can be realized to reduce repeating manual
works, improve efficiency and save operating costs.
Local High Availability Solution
Hardware Configuration
Fail Over LAN
Servers 2 2 servers for HA Cluster
Each server needs 2 Network
NIC 4
OS OS adapter
Heartbeat
DB DB
line Disk Array 1set Capacity depends on the sizing.
VCS VCS
VVM VVM Software Configuration
Active server Standby server VERITAS Cluster Server 5.0
NetNumen TM
M31 (including the VCS agent for
VCS 2
DATA Oracle). For monitoring and
Configuration switching
Performance VVM 2 VERITAS Volume Manager 5.0
Disk array
Alarm, Log…

Hardware Redundancy Software Redundancy Network Redundancy Data Redundancy

Active/standby server OS/DB system backup Dual switch CM/FM/PM/SM/AM
backup
Disk (for RAID1) M31 software backup Dual NIC
Disk array (for RAID5) 3rd party software Dual power
backup

15
Geo-Redundancy Solution

WAN Site Migration

OS
Heartbeat line IP OS
DB
DB

Active server Replication Remote server

NetNumenTM U31 NetNumenTM U31
DATA DATA

Disk array Disk array

Hardware Redundancy Software Redundancy Network Redundancy Data Redundancy

CM/FM/PM/SM/AM
Active/remote server OS/DB system backup Dual switch
backup
Disk array (for RAID5) 3rd party software Dual power
backup

16
Application Security – Web Access Solution

EMS client
Thin Client Access Gateway

HTTPS XML/HTTP

ICA ICA
Laptop
Citrix Presentation NetNumenTM
Securely
Servers EMS Server

Disk Array
Thin Client

Secure Connection Your

128 bit cipher Data
Laptop
Two Factor Authentication
ICA over SSL

Only Keyboard & Mouse Event will be transferred between Citrix Presentation Server and
Remote Client, ICA Technology will be used to: Guarantee Security and Save Bandwidth.

17
One-key Intelligent OSS, Simple O&M
One-key upgrading Remote network design
Centralized whole network upgrading Remote Greatly improve work efficiency
No man intervene remote upgrading and
rollback.
EMS Engineer upgradin
Automatic Launch expansion
plan g
System health check before upgrading
Engineer project Project document
Rollback if there is abnormality
management management
Generate upgrading report and system
health check after upgrading
MME SAEGW Batch
POOL service zone Info. Excel
Batch upgrading according to NE type and Rack figure
output
remote import-export
region
SAEGW
network
MME MME Security
Automatically check whether software
Data plan, design Engineer document
automatically generate&export
package is destroyed or invaded by virus. generate launch script automatically

One-key acquisition Intelligent routine check

Full network key information acquisition System status all in hand
Alarm info.
Flexible deployment, intelligent CTS
upgrading, plug-in management, Routine check
Plug and Play
Key configuration One-key Log info.
Support full network CN NEs
acquisition of key
info. Automatic timing routine check
License HW status Generate report automatically

Performance
data MME HSS SGW PGW

© ZTE Corporation. All rights reserved.

Routine Operation & Maintenance
 Checking the NE Agent Status
 Key Configuration Check
 Checking the Status of the
 Checking the Auto Backup
Command Line Terminal
 Checking the NTP Status
 Checking the Alarm Data
 Checking the Antivirus Software
 Checking the Memory Usage and Weekly
CPU Usage Maintenance
Daily
Maintenance

Monthly
Routine Operation Maintenance
Maintenance & Maintenance
Flow
 Checking the Equipment Room
Environment
 Checking the Power System
 Checking the Log Information
 Checking the Dual-Server
Annual Cluster System
Backup Maintenance
 Checking the Cabinet Reliability
& Restore  Checking the Cabinet Ventilation

 Partial/Full Backup
 Testing the Active/Standby Changeover
 Incremental Backup
 Checking the Cabinet and Cables
 Restore
 Removing Dust

© ZTE Corporation. All rights

reserved.
19
CTS Full Network Signaling Tracing Quickly Locates Pr
oblems and Reduces Manpower Costs
Solve problems when there are customer complaints

Difficult locating Dispersed work Huge investments

Each failure takes persons from multiple
VoLTE involves IMS,CS,PS NEs, which brings departments, low efficiency but high costs, Large costs on signaling analysis tool based
big challenges for fast locating of failures which influences customer satisfaction. on HW acquisition, high OPEX

CTS Full Network Signaling Tracing Solution

 Cross-regional end-to-end tracing, one access, full

network tracing EML NetNumenTM NetNumenTM
CTS U31
 One-time locating of failure ， intelligent reasons
analysis shorten trouble-shooting time
 Global view acquisition ， tracing ability covers LTE
wireless and core network key interfaces
 Call procedure graphical presence
 Low cost and lightweight solution
NEL
GERAN UTRAN E-UTRAN CN

© ZTE Corporation. All rights reserved.

NetNumen™ U31 Built-in Backup & Restore Solution
Restore
Partial/Full Backup
 Entire database backup.  According to the backed
Version/configuration files up data, ZTE U31 can
and files created during recover the NM system
system operation backup fully or partially
 User can select the  Backup and recovery
database and version files off-line tool
to back up.
 On-line backup of log ,
 Manually and Scheduled alarm and performance
backup data etc.
 Backup the data to a
specific path
B&R
Management
Incremental Backup B&R Capability
 Incremental backup for  Data Item Full Backup
Incremental
Restore
Backup
alarm data, Performance
data and logs. Versions of U31 and
Supported
Supported
Supported
NE (Patches Backup)
 Files of backup data can
Profiles of U31 Supported Not Supported Supported
be compressed after
backup to save disk Configuration Data Supported Not Supported Supported

space Alarm Data Supported Supported Supported

 Manually and Scheduled Performance Data Supported Supported Supported

backup Logs Supported Supported Supported

Accounts Data Supported Not Supported Supported

Integrated 3rd Party TSM Backup System Solution
Client  TSM Backup Solution provides a
totally backup and restore solution for
TCP/IP integrating with U31 and NE/O&M
Network data.
 TSM Backup Solution supports
Backup client backup incrementally and totally.
TSM Server
Database &  The influence from network and CPU
Application load related to Backup and Restore
Agent U31 U31 are minimized. Incremental
Fiber  Data Item Full Backup
Backup
Restore

Versions of U31
Supported Supported Supported
SAN and NE

Profiles of U31 Supported Supported Supported

Fiber
Configuration
Switch Data
Supported Supported Supported

Alarm Data Supported Supported Supported

Performance Data Supported Supported Supported

RAID Tape Station Logs Supported Supported Supported

Accounts Data Supported Supported Supported

Support LAN-Free: The backup data can be stored through SAN without affecting the IP
network. The speed of backup and recovery will be faster and not dependent on the IP
network bandwidth.
Integration Solution with NMS
CM FM PM IM
CORBA √
 ZTE EMS Supports NBI: CORBA/FILE/SNMP/DB/MML.
SNMP √
 Abound experience in integration with the third party NMS
FILE-FTP √ √ √
 NBI Complies with 3GPP, CCSA, etc.
MML √ √
Database √
FM CM PM IM
NML

SNMP V2c/V3 MML (S)FTP/File

(S)FTP DataBase (S)FTP/File
Corba/MML Vendor Project IOT Corp. NBI Type Function
Poland IMS NMS SNMP FM
NBI Polkomtel
NMS FTP PM

EML
ZTE EMS Spain IMS IBM NetCool SNMP FM
Telefonica_
Iberbanda Infovista FTP PM/FM

USA IMS NMS SNMP FM

Commnet
CORE NETWORK Peru IMS IBM NetCool SNMP FM
NEL Telefonica
NMS FTP PM
Saudi Arabia IMS Wipro CORBA/F FM/CM/P
HSS CSCF AGCF MRFC MRFP Atheeb TP M
China IMS BOCO Inter- CORBA CM/FM/P
Mobile Telecom M

SNMP for FM, Thailand

AIS
IMS NMS SNMP FM

(s)FTP for PM/IM, NMS FTP PM/CM

MML for CM are proposed.

23
NTP synchronization

24
NetNumen™ 组网
NetNumen™ U31 System Performance Indices
Index Name Value Index Name Value Index Name Value

Maximum 244 Maximum number 100 Maximum number 50

number of standard of simultaneous of simultaneous
managed NEs NEs online client operating client
Alarm Normal:30/ Message 200 pcs/s Message 200 pcs/s
Processing s processing processing
Capability Peak:200/s capability of capability of
southern interface northern interface
System software < 30 System software < 30 Recovery time of < 4 hours
installation time minutes upgrade time minutes the system

History alarm 3 month Original 1 month Report 13 month

and log storage performance data (15 min) performance data
time storage time storage time
Maximum CPU 70% Normal restarting < 10 User Logon delay < 5s
load time of the system minutes

Current alarm < 2s MML response < 2s Performance data < 10s
query delay time query delay
ZTE OSS Hardware Configuration List
Solution Hardware Configuration Software Configuration
EMS Disaster & Local site: 2*ATCA + *DA VCS5.1 ： VCS+VM+GCO+VVR
Recovery solution Remote site: 1*ATCA + 1*DA CGS Linux 64bit
Backup & Restore Local site: 1*IBM X3650 M3 + 1*IBM Tivoli Storage Manager software
Solution T3310 (TAPE) CGS Linux 64bit
Web Access Solution Local site: 1*ATCA Citrix software
Windows 2008 Enterprise Server

O O O Local O O Remote
PBPBPB Site PBPB Site
B1 B1 B1 B1 B1
(E (CI (E (E (CI
M TR M M TR
S) IX) S) S) IX)
Disk array FUJITSU DX60 (EMS) Disk array FUJITSU DX60 (EMS)
O O O O O
PI PI PI PC server IBM x3650 M3 (TSM) PI PI
1 1 1 1 1
IBM T3310 (TAPE)

ZTE EMS Can support 244 standard NEs. One set of I/S-CSCF equals to 2 standard NEs,
one set of ENUM/DNS equals to 0.3 standard NEs.
 Confidential▲

1+1 Active/Standby Mode for EMS

Astro/TeMIP/Across PM

NMS
SNMP/SFTP SNMP/SFTP
/MML /MML
Northbound Interface

Data Synchronization
SPN
EMS1 EMS2
Heart beat
(Master) (Slave)
Master Connection

Standby Connection

NE1 NE2 … NEn NE1 NE2 … NEn

Site A Site B
 Two EMSs work as 1+1 active/standby mode, EMS1 is master, ENS2 is slave.
 Master EMS manage all IMS elements in 2 sites and synchronize data to slave one in real time.
 Master EMS connect NMS by SNMP/MML to report alarm and performance data.
 When master EMS is down, the slave one take over the management of elements.

© ZTE Corporation. All rights reserved

28