Network documentation and auditing

Network administration assistance for documentation and auditing is presented in this section of our series.

The first step toward administering a network is to have accurate and complete documentation of the network. Documenting...

Step 2 of 2:

You forgot to provide an Email Address.

This email address doesn’t appear to be valid.

This email address is already registered. Please login.

You have exceeded the maximum character limit.

Please provide a Corporate E-mail Address.
- I agree to TechTarget’s Terms of Use, Privacy Policy, and the transfer of my information to the United States for processing to provide me with relevant information as described in our Privacy Policy.
Please check the box if you want to proceed.
- I agree to my information being processed by TechTarget and its Partners to contact me via phone, email, or other means regarding information relevant to my professional interests. I may unsubscribe at any time.
Please check the box if you want to proceed.

a network will reduce administration time for issues such as updates, user problems and disaster recovery. There are four basic parts of a network that should documented: LAN Software, LAN Hardware, Network Diagram and User Names (ID numbers) and network numbers. All documents should be kept in a secured location. Make sure that you have a policy in place and a person assigned to the responsibility of keeping all documentation up to date and accurate.

Documenting your network

Obtain or construct a building diagram/floor plan.
Obtain or construct a physical network diagram.
Obtain or construct a logical network diagram. (Software packages can research and... record all hardware information.)
Hardware information should include make, serial numbers, numbers of ports as well as MAC and NIC numbers.
Research and record all configuration, protocol and DNS information.
Print copies of configurations files, keep those copies on tape for removable disk.
Document specific software configurations.
Research and record all corporate contact and vendor information.
Product and maintain device log sheets for all applicable network devices.
Product and maintain a network cabling labeling scheme. Do not base the labeling on names of users.
Product and maintain procedure documentation.
Product and maintain computer and network acceptable use policies.
Product and maintain computer and network security policies.
Product and maintain a disaster recovery plan.
Schedule to update and maintain these items on a regular basis.
Never share these documents with unauthorized individuals -- ever!

This checklist was created by Doug Chick.

Network diagrams

Documenting your network doesn't exactly sound like the most exciting way to spend your time, does it? It involves creating a diagram, usually with a documentation tool such as Visio or LanFlow, that illustrates how your servers, routers and switches are connected, either logically or physically.

However, a comprehensive network documentation can be of vital importance. In addition to serving as a network blueprint, it can also help you remember what you did to your network, and just as importantly, why. This can make maintaining your network and troubleshooting problems a much easier and smoother process. Diagram samples are provided in this tip from Tom Lancaster.

Network cabling documentation

Picture these scenarios: A quick and simple network change turns into disaster when instead of disconnecting the correct cable, you actually disconnect the cable to a critical server. A security audit requires you to document the physical path location of cables carrying sensitive information and who has access to those cables. But your documentation of cable location and the identity of all the endpoints to which they are connected is out of date. Read more about network cabling documentation in this tip by David B. Jacobs.

Learn more about network documentation.

Network auditing

Network auditing may be a time-consuming chore that you probably don't have time for. It's more than likely, however, that someone has already gone to the trouble and is scanning your network for weak points to attack. It could be someone within your organization; FBI statistics show that more than 60% of computer crimes originate inside the enterprise. So remember that the best defense is a good offense, and you cannot raise a good defense unless you know where your network is weak.

Before a network services audit can begin, a network inventory must be conducted. An inventory includes collecting host identification information, such as IP address, network interface hardware (NIC) address and DNS entries, for all network nodes. While some of this information will be on hand in most environments, often it will have errors. In most cases, NIC information and MAC addresses will not be recorded.

Even if you think you have the information, it's a good idea to conduct the inventory and verify the information as a first step to an audit. This allows you to build a complete picture of the environment and, as an additional benefit, will reveal inconsistencies that should be cleaned up.

Learn about conducting a network inventory in this tip by Michael Martin.

Performing a network audit

Use outside vendors to conduct and audit. This will ensure that there is no favoritism or politics in the results, and provide credibility with senior management. Ensure the vendor or contractor you use covers the items listed below as a minimum. Find out who will be conducting the audit and review resume and references from past audited companies. Ensure goals of the audit are adhered to.
It is highly recommended that you perform an internal audit prior to outside audit so you can compare results.
Establish and document baseline performance of all network components.
Review, document and analyze controls over Internet, intranet and network resources.
Review and document all network connections, client/server, LAN, WAN, etc.
Review and document controls over network operations and management, load/traffic management and problem reporting and resolution.
Review and assess network segmentation and identify and audit any internal firewalls.
Review and assess a single point of failure analysis. How is your network affected by critical equipment? Do you have backups installed and ready?
Prepare a risk assessment and develop and implement a risk mitigation plan.
Review and document all software licenses required/possessed for all locations.
Verify and record all installed software. Remove all unauthorized software and secure hardware and software to prevent future downloads or installations.

This checklist was created by Doug Chick.

More resources for conducting a network audit:

Learn what's involved in a network audit.
Understand the difference between a network assessment and a network audit.

Network administrators task list

Task 1: Design, install and evaluate network
Task 2: Perform and manage regular backups
Task 3: Provide technical documentation and perform audits
Task 4: Manage and troubleshoot network
Task 5: Security management and virus prevention

This was last published in March 2005

Dig Deeper on Network management and monitoring

Network configuration basics: Focus on users and software tools When configuring a network, keep a detailed and updated document to track user needs and network changes. And, of course, take advantage of network configuration software.

Network documentation checklist: 10 steps for channel partners Network documents can provide service providers with valuable insight when it's time to troubleshoot problems. Follow these 10 steps for a smooth documentation process.

Five tips for more effective data center network management To effectively manage a data center network, IT teams need to start with a smart topology, brush up on the latest standards and weigh the impact of technologies like SDN.

Amidst complex infrastructures, network visualization is needed Today's networks are increasingly complex. An overhaul in network visualization is needed to help parse and diagnose modern networks.

Draw up a data center network diagram you'll actually use Creating a data center network diagram is time-consuming but necessary work. Keep the scope narrow and know the priorities of your diagram to save time and energy.

Data center maps lead IT to server treasure Can't find the server that needs repairs or the right reboot button when the host blue-screens? A data center map is vital when disaster hits.

Network diagrams

Network cabling documentation

Network auditing

Network administrators task list

Please create a username to comment.

Microsoft Teams for Linux launches in public preview

Microsoft offers few upgrades for Skype server in 2019

CPaaS market evolves to meet changing business needs

Learn about Microsoft's changes to the Office mobile app

Mobile device security key trend in top 10 most read stories of 2019

How to install root CA certificates on iPhones and iPads

Refresh your data center cooling lexicon

Comparing Linux distributions: Red Hat vs. Ubuntu

Get eco-friendly with LEED data center certification

RSA, Yubico dream of a password-free future

Vendors step up MSSP partner initiatives in 2020

CyberX launches partner program in IoT security market

Network diagrams

Network cabling documentation

Network auditing

Network administrators task list

Dig Deeper on Network management and monitoring

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.