14 min read
Access Methods for Optical Network Elements
A Comprehensive Guide to Protocols and Interfaces for Managing Modern Optical Transport Networks
Introduction
The ability to access, configure, and monitor optical network elements effectively determines the operational efficiency of modern transport networks. As optical infrastructure scales to accommodate ever-increasing bandwidth demands, the methods used to interact with network elements have evolved from simple manual interfaces to sophisticated programmable APIs that enable automation at scale. This transformation represents one of the most significant shifts in network operations since the introduction of standardized management protocols.
Optical network elements—including Reconfigurable Optical Add-Drop Multiplexers (ROADMs), coherent transponders, optical amplifiers, and OTN switches—host embedded management agents that expose configuration and operational state through various access methods. The choice of access protocol impacts everything from day-to-day troubleshooting efficiency to the feasibility of implementing closed-loop automation. Understanding the technical trade-offs among CLI, TL1, SNMP, CORBA, NETCONF, RESTCONF, gNMI, and T-API is essential for network engineers designing management systems that must span legacy SONET infrastructure, modern disaggregated DWDM platforms, and emerging open optical systems.
Automation Perspective: Automation is not replacing jobs but enabling you to live life more efficiently and with freedom. It is an act of kindness by technology to give back to its users and creators. The scale with which networking communication devices and their usage is increasing means we need automation in place to operate, configure, predict, and manage networks effectively.
Background and Protocol Evolution
The optical networking industry has accumulated four decades of management protocols, each addressing specific operational requirements of its era. This evolution reflects the transition from human-operated, device-centric management to automated, network-wide orchestration.
Four Generations of Network Management Protocols
First-generation imperative protocols including CLI, TL1, and SNMP emerged when human operators directly managed individual devices. These protocols assume a command-response model where the management system specifies precisely what operations to execute on each device. CLI provides vendor-specific text commands over SSH or Telnet, TL1 delivers a semi-structured message format standardized by Telcordia for SONET/SDH equipment, and SNMP offers GET/SET operations against Management Information Base (MIB) object identifiers. All three remain in production due to universal vendor support and mature operational workflows, despite fundamental limitations for automation.
Second-generation object-oriented protocols like CORBA emerged alongside the TMN (Telecommunications Management Network) architecture in the 1990s. The TeleManagement Forum's Multi-Technology Network Management specification (TMF.814) defined Interface Definition Language (IDL) interfaces for equipment inventory, connection provisioning, fault management, and performance monitoring. CORBA's complexity—requiring Object Request Broker deployment, IDL compilation, and language bindings—has driven steady migration toward simpler HTTP-based alternatives.
Third-generation declarative protocols centered on NETCONF (RFC 6241) and RESTCONF (RFC 8040) introduced model-driven management using YANG data models. Rather than specifying how to change configuration, operators declare the desired end state, and devices compute the necessary operations. This shift enables transactional configuration with automatic rollback, multi-vendor interoperability through standard data models, and schema-based validation before deployment.
Fourth-generation streaming protocols including gRPC, gNMI, and Apache Kafka address the scale and latency requirements of modern optical networks. Push-based telemetry eliminates polling overhead while providing sub-second event detection. These protocols integrate with OpenConfig's vendor-neutral YANG models to deliver operational data at frequencies impossible with SNMP polling.
Figure 1: Evolution of Network Management Protocols Across Four Generations
Network Management Architecture
Modern optical network management follows a well-defined hierarchy with distinct functional layers. Understanding this architecture is essential for selecting appropriate access methods at each layer.
Management System Layers
Element Management System (EMS) manages individual network elements or a specific vendor's devices. An EMS handles device-level FCAPS (Fault, Configuration, Accounting, Performance, Security) functions. It communicates southbound to devices using protocols like CLI, SNMP, TL1, NETCONF, and northbound to higher systems.
Network Management System (NMS) operates at the network level, managing multiple devices often via multiple EMS. An NMS understands network-wide relationships including links, end-to-end circuits, and service paths.
Operations Support System (OSS) integrates NMS functions with service management and business operations. OSS encompasses service provisioning, inventory management, and billing integration.
SDN Controllers assume many roles of an NMS/EMS with a focus on programmability and automation. An SDN controller centralizes control-plane logic and uses open southbound interfaces (SBIs) to configure devices.
Figure 2: Optical Network Management Architecture with Protocol Layers
Access Methods and Protocols
Each access method serves specific operational requirements. Understanding their characteristics enables engineers to select appropriate protocols for different use cases.
Legacy Imperative Protocols
Command Line Interface (CLI)
CLI remains indispensable for troubleshooting and vendor-specific features that lack YANG model coverage. Every optical network element supports CLI access via SSH on port 22, providing human-readable commands and output without additional infrastructure.
# Connect to optical network element via SSH
$ ssh mapyourtech@192.168.1.100
# Show current optical power levels
mapyourtech@roadm-node-01> show optical-power interface och-1/1/1
Input Power: -8.5 dBm
Output Power: -2.3 dBm
OSNR: 35.2 dB
# Configure target output power
mapyourtech@roadm-node-01> configure terminal
mapyourtech@roadm-node-01(config)# interface och-1/1/1
mapyourtech@roadm-node-01(config-if)# target-power -5.0
mapyourtech@roadm-node-01(config-if)# commit
# Verify configuration
mapyourtech@roadm-node-01> show running-config interface och-1/1/1Transaction Language 1 (TL1)
TL1 dominates legacy SONET/SDH management across North America. The protocol uses ASCII messages with a structured format: command code (verb-modifier-object), target identifier (TID), access identifier (AID), and correlation tag (CTAG).
; TL1 Command Structure: VERB-MOD-OBJ:TID:AID:CTAG::[GENERAL]:[SPECIFIC];
; Retrieve all alarms from network element
RTRV-ALM-ALL:NEWYORK:ALL:123;
; Response format:
NEWYORK 2024-01-15 14:30:45
M 123 COMPLD
"1-1-1,OC48:MJ,LOS,SA,01-15,14-30-45,,:\"Loss of Signal\""
;
; Create an optical cross-connect
ENT-CRS-OCH::TRANS-1-1:456::10G;
; Retrieve equipment inventory
RTRV-EQPT:NEWYORK:ALL:789;
; Delete a cross-connect
DLT-CRS-OCH::TRANS-1-1:101;Simple Network Management Protocol (SNMP)
SNMP serves monitoring better than configuration. Operating over UDP port 161 for queries and port 162 for traps, SNMP provides GET, GETNEXT, GETBULK, and SET operations against MIB-defined object identifiers.
from pysnmp.hlapi import *
# Define connection parameters
host = '192.168.1.100'
community = 'public'
# Retrieve optical power level using OID
optical_power_oid = '1.3.6.1.4.1.789.1.2.4.1.2.1'
iterator = getCmd(
SnmpEngine(),
CommunityData(community),
UdpTransportTarget((host, 161)),
ContextData(),
ObjectType(ObjectIdentity(optical_power_oid))
)
errorIndication, errorStatus, errorIndex, varBinds = next(iterator)
if errorIndication:
print(f'Error: {errorIndication}')
else:
for varBind in varBinds:
print(f'Optical Power: {varBind[1]} dBm')Modern Declarative Protocols
NETCONF
NETCONF (RFC 6241) has become the dominant southbound protocol for optical network configuration. The protocol provides true transactional configuration with atomic commit, rollback on error, and confirmed commit capabilities.
from ncclient import manager
# Connect to device using NETCONF over SSH (port 830)
with manager.connect(
host='192.168.1.100',
port=830,
username='mapyourtech',
password='password',
hostkey_verify=False
) as m:
# Get current configuration
config = m.get_config(source='running')
print(config)
# Edit configuration with candidate datastore
optical_config = """
<config>
<terminal-device xmlns="http://openconfig.net/yang/terminal-device">
<logical-channels>
<channel>
<index>1</index>
<config>
<admin-state>ENABLED</admin-state>
<rate-class>TRIB_RATE_100G</rate-class>
</config>
</channel>
</logical-channels>
</terminal-device>
</config>
"""
# Lock candidate datastore
m.lock(target='candidate')
# Edit candidate configuration
m.edit_config(target='candidate', config=optical_config)
# Validate before commit
m.validate(source='candidate')
# Commit changes atomically
m.commit()
# Unlock datastore
m.unlock(target='candidate')RESTCONF
RESTCONF (RFC 8040) provides a way to access YANG-defined data using a RESTful API over HTTP/HTTPS. It maps standard HTTP verbs to network operations.
import requests
import json
# RESTCONF endpoint configuration
base_url = 'https://192.168.1.100:443/restconf'
headers = {
'Accept': 'application/yang-data+json',
'Content-Type': 'application/yang-data+json'
}
auth = ('mapyourtech', 'password')
# GET - Retrieve optical channel state
url = f'{base_url}/data/openconfig-terminal-device:terminal-device/logical-channels'
response = requests.get(url, headers=headers, auth=auth, verify=False)
print(json.dumps(response.json(), indent=2))
# PATCH - Update configuration
payload = {
"openconfig-terminal-device:channel": [{
"index": 1,
"config": {
"admin-state": "ENABLED",
"rate-class": "TRIB_RATE_100G"
}
}]
}
url = f'{base_url}/data/openconfig-terminal-device:terminal-device/logical-channels'
response = requests.patch(url, headers=headers, auth=auth,
data=json.dumps(payload), verify=False)
if response.status_code == 204:
print('Configuration updated successfully')Streaming Telemetry Protocols
gNMI (gRPC Network Management Interface)
gNMI addresses the fundamental limitations of SNMP polling through a push-based streaming architecture built on HTTP/2 and Protocol Buffers.
from pygnmi.client import gNMIclient
# gNMI connection parameters
host = ('192.168.1.100', 57400)
credentials = ('mapyourtech', 'password')
# Define subscription paths for optical telemetry
subscribe_paths = [
'/openconfig-platform:components/component[name=*]/optical-channel/state',
'/openconfig-terminal-device:terminal-device/logical-channels/channel/state'
]
with gNMIclient(target=host, username=credentials[0],
password=credentials[1], insecure=True) as gc:
# Get device capabilities
capabilities = gc.capabilities()
print(f'Supported models: {capabilities}')
# One-time GET request
result = gc.get(path=['/openconfig-platform:components'])
print(result)
# Subscribe to streaming telemetry (SAMPLE mode every 10 seconds)
subscribe_request = {
'subscription': [
{'path': path, 'mode': 'sample', 'sample_interval': 10000000000}
for path in subscribe_paths
],
'mode': 'stream',
'encoding': 'json'
}
# Process streaming updates
for response in gc.subscribe(subscribe=subscribe_request):
print(f'Telemetry Update: {response}')
# Process optical power, OSNR, BER values hereFigure 3: gNMI Streaming Telemetry Architecture with Subscription Modes
Northbound Orchestration Interfaces
ONF Transport API (T-API)
The ONF Transport API provides a standardized interface between SDN controllers, orchestrators, and OSS/BSS applications.
// T-API Connectivity Service Request (JSON)
{
"tapi-connectivity:connectivity-service": [{
"uuid": "cs-100g-east-west-001",
"service-type": "POINT_TO_POINT_CONNECTIVITY",
"service-layer": "PHOTONIC_MEDIA",
"requested-capacity": {
"total-size": {
"value": 100,
"unit": "GBPS"
}
},
"end-point": [
{
"local-id": "ep-1",
"service-interface-point": {
"service-interface-point-uuid": "sip-node-a-port-1"
},
"layer-protocol-name": "PHOTONIC_MEDIA",
"direction": "BIDIRECTIONAL"
},
{
"local-id": "ep-2",
"service-interface-point": {
"service-interface-point-uuid": "sip-node-b-port-1"
},
"layer-protocol-name": "PHOTONIC_MEDIA",
"direction": "BIDIRECTIONAL"
}
],
"connectivity-constraint": {
"service-level": "BEST_EFFORT",
"diversity-policy": {
"link-diverse": true
}
}
}]
}Challenges and Limitations
Legacy Protocol Constraints
CLI lacks a data model or error-checking beyond simple prompts. Automating via CLI requires screen-scraping command output, which is brittle—a vendor software update that changes whitespace or capitalization can break an entire automation workflow.
While parsing TL1 is easier than CLI, it still requires maintaining complex string-parsing logic in the controller. TL1 lacks a standardized data model, meaning commands on different vendor equipment may require different parameters.
SNMP's limitation for configuration stems from per-OID atomic operations without transaction semantics. The polling model creates CPU overhead on devices as MIB processing requires lexicographic sorting and table walks.
Multi-Vendor Interoperability
Despite standardization efforts, achieving true multi-vendor interoperability remains challenging. OpenConfig provides strong multi-vendor interoperability for common features but may lack coverage for advanced optical parameters. Best practice uses OpenConfig where available, falling back to native models for vendor-specific features.
Practical Considerations
Getting Started with Network Automation
Start Simple: Never think that automation is something so big that you cannot do it. Always look for the simplest thing which you can automate—that's the best way to start. Begin with Python scripts using libraries like Paramiko for SSH, ncclient for NETCONF, or pysnmp for SNMP monitoring.
# Create virtual environment
$ python3 -m venv network-automation
$ source network-automation/bin/activate
# Install essential libraries for optical network management
$ pip install paramiko # SSH connections (CLI access)
$ pip install ncclient # NETCONF client
$ pip install pysnmp # SNMP operations
$ pip install requests # RESTCONF HTTP calls
$ pip install pygnmi # gNMI streaming telemetry
$ pip install jinja2 # Configuration templates
$ pip install pyyaml # YAML inventory files
$ pip install netmiko # Multi-vendor SSH automation
# Verify installation
$ pip list | grep -E "paramiko|ncclient|pysnmp|requests|pygnmi"Integration Architecture Best Practices
Production optical management systems typically deploy multiple protocols serving distinct roles. A representative architecture exposes T-API northbound for OSS integration, uses NETCONF for transactional device configuration, streams telemetry via gNMI to Kafka-based collection infrastructure, and maintains CLI access for troubleshooting.
Protocol Comparison Matrix
The following comprehensive comparison table provides a decision framework for selecting the appropriate access method based on your operational requirements.
| Protocol | Category | Primary Purpose | Key Benefits | When to Use | Speed/Latency | Transaction Support | Multi-Vendor | Automation Ready |
|---|---|---|---|---|---|---|---|---|
| CLI / SSH | Legacy | Interactive troubleshooting, emergency access | Universal support, human-readable, no infrastructure needed | Break-fix scenarios, vendor-specific features, initial bootstrap |
Slow
|
None | Poor | Limited |
| TL1 | Legacy | SONET/SDH OAM&P operations | Structured format, specialized for telecom, established workflows | Legacy SONET/SDH equipment, alarm management, cross-connects |
Slow
|
None | Partial | Moderate |
| SNMP | Legacy | Monitoring, inventory, basic alerts | Ubiquitous support, standard MIBs, mature tooling | Device discovery, inventory, legacy device monitoring |
Medium
|
Per-OID only | Good | Moderate |
| NETCONF | Modern | Transactional configuration management | Atomic commits, rollback, candidate datastore, YANG models | Complex config changes, multi-device transactions, reliable automation |
Fast
|
Full ACID | Excellent | Excellent |
| RESTCONF | Modern | Web-friendly configuration, OSS integration | HTTP/JSON, easy integration, developer-friendly, RESTful | Web portals, simple CRUD operations, orchestrator connectivity |
Fast
|
Limited | Excellent | Excellent |
| gNMI | Streaming | High-frequency telemetry, real-time monitoring | Push-based streaming, sub-second latency, efficient encoding | Real-time analytics, high-resolution PM, optical power/OSNR monitoring |
Ultra-fast
|
Atomic Set | Excellent | Excellent |
| T-API | Orchestration | Multi-domain service orchestration | Technology-agnostic abstraction, multi-layer support, standard NBI | OSS integration, multi-vendor optical SDN, service provisioning |
Fast
|
Service-level | Excellent | Excellent |
| CORBA | Legacy | EMS-to-NMS communication (historical) | Formal IDL contracts, structured interfaces | Legacy OSS integration only—avoid for new deployments |
Slow
|
Limited | Poor | Poor |
Protocol Selection Quick Reference
| Use Case | Recommended Protocol | Alternative | Rationale |
|---|---|---|---|
| Day-to-day configuration | NETCONF | RESTCONF | Transactional safety, YANG validation |
| Real-time optical PM | gNMI | SNMP (legacy) | Sub-second latency, push-based |
| Emergency troubleshooting | CLI | — | Interactive debugging, no dependencies |
| Multi-domain orchestration | T-API | RESTCONF | Standard NBI, technology abstraction |
| Legacy SONET/SDH | TL1 | CLI | Established telecom workflows |
| Device inventory | SNMP | NETCONF | Universal support, standard MIBs |
| Web portal integration | RESTCONF | T-API | HTTP-native, JSON encoding |
Key Principles for Network Element Access
- Use Standard, Open Interfaces: Prioritize NETCONF/RESTCONF/gNMI over CLI to future-proof automation and avoid vendor lock-in.
- Match Protocol to Use Case: NETCONF for configuration transactions, gNMI for streaming telemetry, T-API for service orchestration.
- Implement Layered Architecture: Separate device-level, domain, and multi-domain control with appropriate protocols at each layer.
- Plan for Coexistence: Real-world networks run multiple protocols in parallel; design mediation layers for legacy integration.
- Prioritize Security: Use SSH/TLS transport, SNMPv3 over v1/v2c, and implement authentication/authorization consistently.
- Start Simple: Begin automation with straightforward tasks, then progressively expand to complex multi-step operations.
Final Note
The selection of access methods for optical network elements is not a single decision but a coordinated architecture spanning device interfaces, domain controllers, and service orchestration. NETCONF and RESTCONF with YANG models have definitively replaced CLI for automated configuration, though CLI retains value for troubleshooting. gNMI streaming telemetry supersedes SNMP polling for modern monitoring requirements, while SNMP persists for legacy device integration. T-API provides the standard northbound interface for multi-vendor optical SDN.
The transition from imperative to declarative management—from specifying how to configure devices to declaring desired states—fundamentally changes operational workflows. Engineers skilled in CLI syntax must develop competency with YANG models, NETCONF operations, and streaming telemetry subscriptions. Organizations planning optical network automation should prioritize protocol selection aligned with their specific multi-vendor environment, latency requirements, and integration architecture.
Understanding the strengths of each approach enables network engineers to build cohesive, automated network management solutions. The trend is clearly towards model-driven, streaming-capable APIs. By embracing these modern protocols while maintaining pragmatic support for legacy interfaces, optical network operators can achieve the automation capabilities essential for managing increasingly complex and dynamic transport networks.
References
- IETF RFC 6241 – Network Configuration Protocol (NETCONF), 2011.
- IETF RFC 8040 – RESTCONF Protocol, 2017.
- IETF RFC 7950 – The YANG 1.1 Data Modeling Language, 2016.
- IETF RFC 3410-3415 – SNMPv3 Framework, 2002.
- IETF RFC 3591 – Optical Interface MIB (optIfMIB), 2003.
- ONF TR-527 – Transport API (T-API) Functional Requirements, 2018.
- IETF RFC 8453 – ACTN (Abstraction and Control of TE Networks) Architecture, 2018.
- OpenConfig – gNMI Specification (gRPC Network Management Interface), 2022.
- Telcordia GR-833 – TL1 Message Format and Syntax, 2010.
- TMF.814 – Multi-Technology Network Management (MTNM) Specification.
- Sanjay Yadav, "Optical Network Communications: An Engineer's Perspective" – Bridge the Gap Between Theory and Practice in Optical Networking.
- Sanjay Yadav, "Automation for Network Engineers Using Python and Jinja2" – Practical Insights into Automation World in Optical Networking.
For educational purposes in optical networking and DWDM systems
Note: This guide is based on industry standards, best practices, and real-world implementation experiences. Specific implementations may vary based on equipment vendors, network topology, and regulatory requirements. Always consult with qualified network engineers and follow vendor documentation for actual deployments.
Unlock Premium Content
Join over 400K+ optical network professionals worldwide. Access premium courses, advanced engineering tools, and exclusive industry insights.
Already have an account? Log in here
