Document Managed by Network Operations

NetDB Documentation Navigation

1. Introduction
2. Network Contact Groups
3. Query Operations
4. Hostmaster Functions
   • Single Host Edits
   • Bulk Host Edits
   • XML Operations
5. Custom Access Control Lists
6. Errata

1. Network Contact Group

   
    

   • In NetDB, the Network Contact Group serves as a holder of network assets.
   • NetDB resources and attributes associated with a department or business unit will be reflected in that unit's NCG.
     • Contact Information
     • Privileged staff members
     • Networks
     • Custom Access Control Lists
     • Child NCGs
   • NCGs are hierarchical in nature
     • A department may have one or more NCGs underneath it
     • Privileges for child NCGs are automatically granted to staff associated with it's parent NCG
        
2. Contact Information

   
    

   • Each Network Contact Group contains contact information for the department
   • This contact information contains both technical and administrative staff (higher level, non-clerical)
   • Non-technical contact is only used in cases where the technical contact is unreachable
   • TD may use this information to contact your group regarding:
     • clarification of network requests
     • notification of compromised hosts
     • notification of service interruptions
     • yearly network audits

   Contact information fields

   • Name: NCG Name, usually the department or business unit name (non-editable)
   • Parent NCG: NCG which this NCG is a subset of (in case of top level, parent is root - non-editable)
   • [Admin/Tech] Contact: Name (should be searchable in the PDB) of the contact (editable)
   • [Admin/Tech] email: primary email address of contact (editable)
   • [Admin/Tech] Phone: work phone number of the contact (editable)
   • [Admin/Tech] dept: name of primary department which contact is associated with (editable)
   • [Admin/Tech] location: primary office location (not mailing address) of contact (editable)
   • Group Contact: group email address and/or phone number of technical group (editable)
     • this email address, if it exists, will be used to contact your group BEFORE the tech email
   • Emergency Info: optional emergency contact info (cell numbers, non-work email addresses)
      
3. Network Liaisons (Staff)

   
    

   • A Network Liaison (NL) is a staff member with certain privileged within an NCG

   NL Privileges

   • Edit ACL: NL can edit Access Control Lists on networks within the NCG and create new ACL Blocks
   • Edit NCG: NL can edit NCG contact information
   • Edit NCG Member: NL can add other NLs to this NCG, as well as add NLs to child NCGs
   • Edit Domain/Host: NL can edit domain or host records within his or her NCG
   • Edit Network: NL can edit the descriptions of networks within his or her NCG
   • Read Radius Log: Only used for IPS (information Protection & Security) staff
   • Edit NCG Service: Only used by TD employees for auditting purposes
      
4. Child NCGs

   
    

   • Child NCGs are NCGs which inherit authority from the current NCG
   • To utilize this inheritted authority, NLs must still be given privileges within these NCGs
      
5. ACL Blocks

   
    

   • ACL Blocks are re-usable sets of access list rules which can be called when creating a NetIN or NetOUT acl for a specific network
   • Please see the 'Custom Access Control List' section of this documentation for further information
   • ACL Blocks can NOT be deleted once created
      
6. Networks

   
    

   • Networks are subnets assigned to your NCG, in which you can create and/or edit hosts
   • Networks must be allocated by TD staff, descriptions are editable by NLs
   • Network size is denoted in slash notation (number of bits in the network mask: class C = 24, single host = 32)
   • If you are aware of networks that you believe you should control but that are NOT listed in your NCGs network list, please contact the Network Operations Center
     

Back to NetDB Navigation