Improve the map

AFA creates the graphic network map using all the routing information it collects from the devices defined in AFA. Whenever a device's routing table implies the existence of a device that is not defined in AFA, the device is represented in the map as a generic router. Because AFA has only limited information about these routers, they cause holes in the network map which AFA can only represent as a cloud. Some of these routers have a large impact on the paths within the network, and the fact that they are not defined in AFA deprives the map (and AFA) of the significant routing information they could provide.

What will an improved map include?

A improved map will include:

  • A direct connection between every internal subnet in the network (without passing through any clouds).
  • A direct connection between every internal subnet and all permitted external IP addresses that ends in the relevant cloud (without passing through any clouds).

AFA provides a list of proposed routers that should be added to your map in order to assist with achieving improved map visibility and connectivity to complete your map by providing a prioritized list of generic routers in the map that should be defined as devices AFA. The routers which would complete the most paths are given the highest priority. AFA automatically performs a DNS lookup to help identify which of your devices correspond to which IP address. To further assist in identifying the device names, you can optionally provide the network's SNMP credentials.

Tip: Alternatively, complete the map via APIs , see API documentation.

Identify routers to define in AFA

Do the following:

  1. View the graphic network map. For details, see AFA's graphic network map.

    The Map appears in the workspace.

    At the top left corner of the map via the Topology Advisor hovering toolbar.

    Note: The number of routers that AFA recommends defining are calculated by simulating routes between internal subnets and between each internal subnet and external IP. By default, the maximum number of paths that will be simulated is 400, and the external IP addresses used in the calculation is 8.8.8.8. If a custom risk profile spreadsheet is being used in AFA, the networks in the spreadsheet are used as the default internal networks. If no such spreadsheet is being used, RFC 1918 is used to provide the default internal networks.

  2. Click the link representing the number of suggested routers.

    The Topology Advisor page is displayed.

    The list on the left is a prioritized list of routers suggested for addition to AFA. The routers which would complete the most paths are given the highest priority, and therefore appear at the top of the list. The name of the router appears when the DNS lookup was successful ; otherwise, the IP address of the router appears.

    Each router appears in the list with its IP address as a link. Clicking on the link will focus the map on that router.

    The device name to the left of the router's name is the device defined in AFA which is closest to the router. When multiple devices are close to the router, a link to a list of the devices appears.

  3. To filter the list of routers, type a search in the search box.

    The search results include results for router names, router IP addresses, or names of the closest device defined in AFA.

  4. To define a router in AFA, hover over the router in the list and click .

    The administration area for defining new devices appears, enabling you to define the device in AFA. For more details, see Add devices to AFA.

  5. Merge the routers in the map into a single router, by doing the following:

    1. Select the routers in the list that you want to merge.

      The Merge Selected button at the top of the list becomes enabled when two or more routers are selected.

    2. Click .

      The routers are merged into one router in the map. The new router is represented with the merged routers icon.

  6. To re-run the Topology Advisor suggestion calculation with custom values, do the following:

  7. Click on the Topology Advisor settings link.

    The Topology Advisor settings window is displayed.

  8. Edit the internal or external networks in the fields.

    The routers that AFA recommends defining are calculated by simulating routes between internal subnets and between each internal subnet and external IP.

  9. To restore the default network values, click the Restore Default Values link.

  10. To customize the maximum number of paths that will be simulated and/or to provide SNMP credentials for the sake of identifying router names, do the following:

    1. Click Advanced Options.
    2. Complete the additional fields.

    Note: When SNMP is provided, the only information being fetched via SNMP is the name of the devices.

  11. Click Run.