CN102420869A - Security monitoring method for cloud data center - Google Patents
Security monitoring method for cloud data center Download PDFInfo
- Publication number
- CN102420869A CN102420869A CN2011103940316A CN201110394031A CN102420869A CN 102420869 A CN102420869 A CN 102420869A CN 2011103940316 A CN2011103940316 A CN 2011103940316A CN 201110394031 A CN201110394031 A CN 201110394031A CN 102420869 A CN102420869 A CN 102420869A
- Authority
- CN
- China
- Prior art keywords
- equipment
- data center
- data
- snmp
- server
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention provides a security monitoring method for a cloud data center. The method comprises that: a system taking apache+php+myspl as a development environment polls and acquires various index data of a monitored object in real time in ways of simple network management protocol (SNMP) and non-SNMP commands comprising practical extraction and report language (PERL) commands and shell commands, and displays monitoring results to a manager in form of graphics, reports and alarms comprising mails, short messages, sounds and scripts, wherein the index data of the monitoring object comprises the running states and service conditions of a central processing unit (CPU), a memory, a disk, a unix process and the like of a virtual host, the traffic and data packet transmission conditions of network equipment comprising Cisco equipment, Juniper Net Screen equipment, F5-Big-Internet protocol (IP) equipment and the like, the data integrity and malicious injection conditions of databases comprising Oracle, DB2, a structured query language (SQL), Informix and the like, the service and security conditions of middleware comprising Lotus Notes, a Web Logic Tuxedo Server and the like, and the environment of a computer room of the data center.
Description
Technical field
The present invention relates to a kind of networking technology area, specifically a kind of cloud data center method for safety monitoring.Belong to the cloud security solution, realize to hardware device level, infrastructure in the cloud environment being that service layer and platform are the real-time monitoring of service layer.
Background technology
In recent years, the part of an IT industry that increases has fast been grown in cloud computing from a promising commercial notion.The application of flood tide is being supported in cloud computing, in case the platform collapse, influence surface is very extensive, and consequence is often also very serious.In addition, must guarantee that under the network environment, client's data are not lost, guarantee that data under without the client authorization situation, can not obtained by other people, guarantee the safety of customer data.The cloud security problem, becoming influences the key factor whether customer selecting adds cloud.Native system is exactly certain cloud security problem that on wherein several aspects of cloud, solves.Native system utilizes cloud hardware device and infrastructure and developing operation platform all to concentrate on the advantage of data center, realizes the real-time monitoring to cloud data center.
Summary of the invention
The purpose of this invention is to provide a kind of cloud data center method for safety monitoring.
The objective of the invention is to realize that by following mode the exploitation framework of native system is:
Software architecture: B/S framework
Platform: Linux, Windows
Development language: PHP
Data acquisition technology: SNMP, linux order
Storage: MYSQL
Drawing technique: RRDtool.
Monitoring content of the present invention is following:
System can detect cloud data center automatically and need monitored object, and real time polling is gathered each item achievement data of each monitored object, comprises cpu, memory, the disk of fictitious host computer, the running status and the operating position of unix process etc.; Flow, the data packet transmission situation of the network equipment (comprising cisco equipment, Juniper NetScreen equipment, F5-Big-IP equipment etc.); The data integrity of database (comprising Oracle, DB2, SQL, Informix etc.) and malice are injected situation; The use and the safe condition of middleware (comprising LotusNotes, WebLogic Tuxedo Server etc.); And the environment of data center machine room.System gives administrative staff with monitoring result with the presented of figure, form, warning (mail, note, sound, script), and can intelligent automatic foundation improve the fault knowledge storehouse, carry out failure predication, provide to solve and advise, solves most common failure.
System module:
1) equipment adds and management: interpolation equipment is the element task of whole system, to any content that needs monitoring, need be prerequisite with equipment all, has only interpolation equipment just can carry out other operation afterwards;
2) establishment and the management of figure: create the monitoring figure for a certain index of equipment, this figure is display device ruuning situation constantly;
3) warning is created and management: be that the monitoring parameter that figure uses is created warning message;
4) automatic scan: detect the object that needs monitoring automatically;
5) user management;
6) system management: some initial values, default value to system carry out necessary setting, so that system can move normally;
7) data management: the system of setting obtains the method for data, and to the processing mode and the storage mode of data;
8) intelligent fault management: check and managing failures knowledge base and failure predication, solution suggestion, set the automatic fault solution.
Monitoring step is following:
By the configuration network server, server and database are installed, system is published on the server, guarantee that monitored object is launched snmp or is the linux system in the cloud data center, login system is monitored on supervisor.
Method of the present invention is compared with prior art, and beneficial effect is: it is that service layer and platform are the real-time monitoring of service layer that native system is mainly realized hardware device level, infrastructure in the cloud computing, ensures stability, network and the data security of cloud data center.
Description of drawings
Fig. 1: module cooperative graph of a relation;
Fig. 2: operational flowchart;
Fig. 3: system layout figure.
Embodiment
Explanation at length below with reference to Figure of description method of the present invention being done.
Method for supervising of the present invention is following: system with apache+php+mysql as development environment; Utilize snmp agreement and non-snmp to comprise that perl, shell-command mode poll gather the various achievement datas of monitored target in real time; Just data comprise: the cpu of fictitious host computer, memory, disk, unix running state of a process and operating position; The network equipment comprises cisco equipment, Juniper NetScreen equipment, the flow of F5-Big-IP equipment, data packet transmission situation; Database comprises data integrity and the malice injection situation of Oracle, DB2, SQL, Informix; Middleware comprises the use of LotusNotes, WebLogic Tuxedo Server and the operational environment of safe condition and data center machine room, and system comprises monitoring result with figure, form, warning: the presented of mail, note, sound, script is given administrative staff.
Monitoring step is following:
By the configuration network server, server and database are installed, system is published on the server, guarantee that monitored object is launched snmp or is the linux system in the cloud data center, login system is monitored on supervisor.
Except that the described technical characterictic of specification, be the known technology of those skilled in the art.
Claims (1)
1. cloud data center method for safety monitoring; It is characterized in that method for supervising is following: system with apache+php+mysql as development environment; Utilize snmp agreement and non-snmp to comprise that perl, shell-command mode poll gather the various achievement datas of monitored target in real time; Just data comprise: the cpu of fictitious host computer, memory, disk, unix running state of a process and operating position; The network equipment comprises cisco equipment, Juniper NetScreen equipment, the flow of F5-Big-IP equipment, data packet transmission situation; Database comprises data integrity and the malice injection situation of Oracle, DB2, SQL, Informix; Middleware comprises the use of LotusNotes, WebLogic Tuxedo Server and the operational environment of safe condition and data center machine room, and system comprises monitoring result with figure, form, warning: the presented of mail, note, sound, script is given administrative staff;
Monitoring step is following:
By the configuration network server server and database are installed, system is published on the server, guarantee that monitored object is launched snmp or is the linux system in the cloud data center, login system is monitored on supervisor.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2011103940316A CN102420869A (en) | 2011-12-02 | 2011-12-02 | Security monitoring method for cloud data center |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2011103940316A CN102420869A (en) | 2011-12-02 | 2011-12-02 | Security monitoring method for cloud data center |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN102420869A true CN102420869A (en) | 2012-04-18 |
Family
ID=45945101
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2011103940316A Pending CN102420869A (en) | 2011-12-02 | 2011-12-02 | Security monitoring method for cloud data center |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102420869A (en) |
Cited By (15)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102750469A (en) * | 2012-05-18 | 2012-10-24 | 北京邮电大学 | Security detection system based on open platform and detection method thereof |
| CN103095533A (en) * | 2013-02-22 | 2013-05-08 | 浪潮电子信息产业股份有限公司 | Timed monitoring method in cloud calculating system platform |
| CN103473164A (en) * | 2013-09-25 | 2013-12-25 | 浪潮电子信息产业股份有限公司 | Monitoring and early-warning method for linux server |
| WO2014020612A1 (en) * | 2012-07-31 | 2014-02-06 | Hewlett-Packard Development Company, L.P. | Monitoring for managed services |
| CN104022904A (en) * | 2014-06-13 | 2014-09-03 | 中国民航信息网络股份有限公司 | Unified management platform for IT devices in distributed computer rooms |
| CN104579840A (en) * | 2015-01-08 | 2015-04-29 | 浪潮软件集团有限公司 | ZABBIX-based network monitoring system |
| CN104636244A (en) * | 2015-03-05 | 2015-05-20 | 浪潮集团有限公司 | Server monitoring method using Java, MySQL and Shell |
| CN105262626A (en) * | 2015-11-02 | 2016-01-20 | 武大吉奥信息技术有限公司 | Monitoring system satisfying requirement for high-performance cloud GIS service |
| CN105302629A (en) * | 2014-07-31 | 2016-02-03 | 北京白象新技术有限公司 | Intelligent medicine packaging machine with cloud service function |
| CN106254138A (en) * | 2016-08-31 | 2016-12-21 | 广州和运科技发展有限公司 | Machine room intelligent operational system failure analysis methods |
| CN106713051A (en) * | 2017-02-09 | 2017-05-24 | 济南浪潮高新科技投资发展有限公司 | Network management system |
| CN107070720A (en) * | 2017-04-26 | 2017-08-18 | 深圳市神云科技有限公司 | The monitoring of cloud platform anomalous event and the method automatically processed and framework |
| CN107491375A (en) * | 2017-08-18 | 2017-12-19 | 国网山东省电力公司信息通信公司 | Equipment detection and fault early warning system and method under a kind of cloud computing environment |
| CN108287874A (en) * | 2017-12-19 | 2018-07-17 | 中国科学院声学研究所 | A kind of DB2 database management method and device |
| CN111078660A (en) * | 2018-10-19 | 2020-04-28 | 厦门靠谱云股份有限公司 | Cloud database performance safety monitoring method |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101986274A (en) * | 2010-11-11 | 2011-03-16 | 东软集团股份有限公司 | Resource allocation system and resource allocation method in private cloud environment |
| CN101986280A (en) * | 2010-11-29 | 2011-03-16 | 浙江大学 | Automatic testing platform for virtual computing system |
| CN102004671A (en) * | 2010-11-15 | 2011-04-06 | 北京航空航天大学 | Resource management method of data center based on statistic model in cloud computing environment |
-
2011
- 2011-12-02 CN CN2011103940316A patent/CN102420869A/en active Pending
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101986274A (en) * | 2010-11-11 | 2011-03-16 | 东软集团股份有限公司 | Resource allocation system and resource allocation method in private cloud environment |
| CN102004671A (en) * | 2010-11-15 | 2011-04-06 | 北京航空航天大学 | Resource management method of data center based on statistic model in cloud computing environment |
| CN101986280A (en) * | 2010-11-29 | 2011-03-16 | 浙江大学 | Automatic testing platform for virtual computing system |
Cited By (19)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102750469B (en) * | 2012-05-18 | 2015-12-09 | 北京邮电大学 | A kind of safety detecting system based on open platform and detection method thereof |
| CN102750469A (en) * | 2012-05-18 | 2012-10-24 | 北京邮电大学 | Security detection system based on open platform and detection method thereof |
| US10721146B2 (en) | 2012-07-31 | 2020-07-21 | Micro Focus Llc | Monitoring for managed services |
| WO2014020612A1 (en) * | 2012-07-31 | 2014-02-06 | Hewlett-Packard Development Company, L.P. | Monitoring for managed services |
| CN103095533A (en) * | 2013-02-22 | 2013-05-08 | 浪潮电子信息产业股份有限公司 | Timed monitoring method in cloud calculating system platform |
| CN103473164A (en) * | 2013-09-25 | 2013-12-25 | 浪潮电子信息产业股份有限公司 | Monitoring and early-warning method for linux server |
| CN104022904A (en) * | 2014-06-13 | 2014-09-03 | 中国民航信息网络股份有限公司 | Unified management platform for IT devices in distributed computer rooms |
| CN105302629A (en) * | 2014-07-31 | 2016-02-03 | 北京白象新技术有限公司 | Intelligent medicine packaging machine with cloud service function |
| CN104579840A (en) * | 2015-01-08 | 2015-04-29 | 浪潮软件集团有限公司 | ZABBIX-based network monitoring system |
| CN104636244A (en) * | 2015-03-05 | 2015-05-20 | 浪潮集团有限公司 | Server monitoring method using Java, MySQL and Shell |
| CN105262626A (en) * | 2015-11-02 | 2016-01-20 | 武大吉奥信息技术有限公司 | Monitoring system satisfying requirement for high-performance cloud GIS service |
| CN105262626B (en) * | 2015-11-02 | 2018-06-29 | 武大吉奥信息技术有限公司 | A kind of monitoring system for meeting GIS high performance services demand in cloud |
| CN106254138A (en) * | 2016-08-31 | 2016-12-21 | 广州和运科技发展有限公司 | Machine room intelligent operational system failure analysis methods |
| CN106713051A (en) * | 2017-02-09 | 2017-05-24 | 济南浪潮高新科技投资发展有限公司 | Network management system |
| CN107070720A (en) * | 2017-04-26 | 2017-08-18 | 深圳市神云科技有限公司 | The monitoring of cloud platform anomalous event and the method automatically processed and framework |
| CN107491375A (en) * | 2017-08-18 | 2017-12-19 | 国网山东省电力公司信息通信公司 | Equipment detection and fault early warning system and method under a kind of cloud computing environment |
| CN108287874A (en) * | 2017-12-19 | 2018-07-17 | 中国科学院声学研究所 | A kind of DB2 database management method and device |
| CN108287874B (en) * | 2017-12-19 | 2020-07-31 | 中国科学院声学研究所 | DB2 database management method and device |
| CN111078660A (en) * | 2018-10-19 | 2020-04-28 | 厦门靠谱云股份有限公司 | Cloud database performance safety monitoring method |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102420869A (en) | Security monitoring method for cloud data center | |
| US11297088B2 (en) | System and method for comprehensive data loss prevention and compliance management | |
| CN105119750B (en) | A kind of safe operation management platform system of distributed information based on big data | |
| CN103716173B (en) | A kind of method for storing monitoring system and monitoring alarm issue | |
| CN106412113B (en) | A kind of energy cloud service system and its communication means | |
| CN105282772A (en) | Wireless network data communication equipment monitoring system and equipment monitoring method | |
| CN104022904B (en) | Distributed computer room information technoloy equipment management platform | |
| CN109194543A (en) | Collecting method and device | |
| CN102523140A (en) | Real-time monitoring device for operation and maintenance of electric power customer service system | |
| CN105991332A (en) | Alarm processing method and device | |
| CN102739802A (en) | Service application-oriented IT contralized operation and maintenance analyzing system | |
| CN103812699A (en) | Monitoring management system based on cloud computing | |
| CN103118383B (en) | System and method for comprehensively supervising wireless access point state | |
| CN110262941A (en) | Application Container cluster alarm implementation method, system, equipment and storage medium | |
| CN102916839A (en) | Automatic monitoring system for agricultural work in sugarhouse | |
| CN105978716B (en) | Information technoloy equipment and the processing of the monitoring information Homogeneous of rotating ring equipment and three-dimensional rendering method | |
| CN107360045A (en) | The monitoring method and device of a kind of storage cluster system | |
| CN103378991A (en) | Online service abnormity monitoring method and monitoring system thereof | |
| CN101247263A (en) | Server centralized management method based on data link layer | |
| CN104811506A (en) | Grease storage remote supervision system and method based on wireless sensor network | |
| CN114244676A (en) | Intelligent IT integrated gateway system | |
| CN112153131A (en) | Iron and steel quality private cloud platform construction method based on super-fusion technology | |
| CN110061854A (en) | A kind of non-boundary network intelligence operation management method and system | |
| WO2019018829A1 (en) | Advanced cybersecurity threat mitigation using behavioral and deep analytics | |
| CN116030943A (en) | Big data intelligent operation and maintenance control system and method |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20120418 |