CN103544093B - Monitoring alarm control method and system thereof - Google Patents
Monitoring alarm control method and system thereof Download PDFInfo
- Publication number
- CN103544093B CN103544093B CN201210243124.3A CN201210243124A CN103544093B CN 103544093 B CN103544093 B CN 103544093B CN 201210243124 A CN201210243124 A CN 201210243124A CN 103544093 B CN103544093 B CN 103544093B
- Authority
- CN
- China
- Prior art keywords
- monitoring
- warning
- message
- alarm
- trigger
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Abstract
This application discloses a kind of monitoring alarm control method and system thereof.This method comprises: monitoring client obtains the real-time monitoring data of monitored end and forms monitoring message queue, and every bar monitoring message comprises monitor data; From monitoring message queue, read monitoring message, monitoring client threshold data corresponding with this monitor data for the monitor data in monitoring message is compared, determine whether to generate warning message according to this monitoring message according to comparative result; Judge whether the warning message generated meets the warning trigger condition corresponding with this monitor data, determines whether to produce warning trigger pip according to judged result.This monitoring alarm control system comprises: data acquisition module, forewarn module.The application adds the restriction of warning trigger condition to warning message, decreases invalid warning, and make monitoring alarm more accurate, also facilitating user arranges different monitoring conditions according to different monitored ends simultaneously.
Description
Technical field
The application relates to computer network field, is specifically related to a kind of monitoring alarm control method and system thereof.
Background technology
Existing monitoring and alarming system be by be arranged on Agent on monitored machine initiatively or passive status data to monitoring equipment, then obtained state operation conditions grade by the contrast of built-in or third-party alarm module according to the range of normal value (alarm threshold value data) of status data and definition and given the alarm according to actual conditions, related personnel is artificial troubleshooting after receiving and reporting to the police.Wherein, monitoring alarm technology is by judging that the status data received draws result of variations with the difference of corresponding range of normal value (alarm threshold value data) thus carrys out trigger alarm, as long as each status data will trigger alarm beyond the scope of alarm threshold value data, and in practical operation, such as, monitored machine sends several status data of alarm threshold value data that exceeds to monitoring equipment at short notice because of the emergentness fluctuation of external environment, and afterwards, monitored machine recovers again normal work.As long as but now monitoring equipment receives a status data exceeding alarm threshold value data area and just can send warning, when staff finds that warning will carry out troubleshooting operation, monitored machine has recovered normally to have worked, and now just can determine this time to report to the police as invalid warning.In prior art, this type of invalid warning often can occur, increase the work load of staff, cause unnecessary trouble, monitoring alarm control system accuracy is lower, and controllability is lower.
Summary of the invention
According to the first aspect of the application, the application provides a kind of monitoring alarm control method, comprising:
Monitoring client obtains the real-time monitoring data of monitored end and forms monitoring message queue, and every bar monitoring message comprises monitor data;
From monitoring message queue, read monitoring message, monitoring client threshold data corresponding with this monitor data for the monitor data in monitoring message is compared, determine whether to generate warning message according to this monitoring message according to comparative result;
If generate warning message, judge whether the warning message generated meets the warning trigger condition corresponding with this monitor data, determine whether to produce warning trigger pip according to judged result, described warning trigger condition gets rid of less desirable warning message for adopting the mode of time and/or alerting signal number of times.
According to the second aspect of the application, the application provides a kind of monitoring alarm control system, comprising:
Data acquisition module, for obtaining the real-time monitoring data of monitored end and forming monitoring message queue, every bar monitoring message comprises monitor data;
Forewarn module, for reading monitoring message from monitoring message queue, monitor data in monitoring message and the monitoring client threshold data corresponding with this monitor data are compared, determine whether to generate warning message according to this monitoring message according to comparative result, if generate warning message, then judge whether the warning message generated meets the warning trigger condition corresponding with this monitor data, determine whether to produce warning trigger pip according to judged result, described warning trigger condition gets rid of less desirable warning message for adopting the mode of time and/or generation warning trigger pip number of times.
The beneficial effect of the application is: the application adds the restriction of the warning trigger condition corresponding with it to warning message, and described warning trigger condition gets rid of less desirable warning message for adopting the mode of time and/or generation warning trigger pip number of times.Namely might not trigger alarm for the monitor message exceeding monitoring client threshold data, but judge whether monitor message meets the warning trigger condition corresponding with it, is limited in time and/or in alarm times by warning trigger condition to the warning coming from same monitored end further.Because the sudden wave time of external environment is extremely short, so the warning message quantity produced is few, even only produce a warning message, therefore by filtering the invalid warning coming from same monitored end in time and/or in alarm times, the warning trigger pip of trigger alarm can be avoided to be condition of instant error data.In addition, when carrying out troubleshooting to the monitored end of reporting to the police, now receive the meaning that the warning coming from this monitored end has lost warning again, therefore by filtering the invalid warning coming from same monitored end in time and/or in alarm times, also can reduce a staff the warning received in during troubleshooting.Therefore can reduce the invalid warning in monitor procedure, improve the accuracy of monitoring and alarming system; Also facilitating user arranges different monitoring conditions according to different monitored ends simultaneously, strengthens customization.
Accompanying drawing explanation
Fig. 1 is the structural representation of a kind of monitoring alarm control system in the embodiment of the present application one;
Fig. 2 is the workflow diagram of a kind of monitoring alarm control system in the embodiment of the present application one;
Fig. 3 is the structural representation of a kind of monitoring alarm control system in the embodiment of the present application two;
Fig. 4 is the workflow diagram of a kind of monitoring alarm control system in the embodiment of the present application two;
Fig. 5 is the structural representation of a kind of monitoring alarm control system in the embodiment of the present application three;
Fig. 6 is the workflow diagram of trigger control module of reporting to the police in a kind of monitoring alarm control system in the embodiment of the present application three;
Fig. 7 is the structural representation of a kind of monitoring alarm control system in the embodiment of the present application four;
Fig. 8 is the workflow diagram of mark module and tokens statistics module in a kind of monitoring alarm control system in the embodiment of the present application four;
Fig. 9 is the structural representation of a kind of monitoring alarm control system in the embodiment of the present application five;
Figure 10 is the workflow diagram of automatic troubleshooting module in a kind of monitoring alarm control system in the embodiment of the present application five;
Embodiment
By reference to the accompanying drawings the present invention is described in further detail below by embodiment.
Each monitoring client can monitor multiple monitored end, monitored end can be such as the various resource and service, router, switch etc. that associate under hard disk, CPU, server, server, in the present embodiment, monitored end is classified, implements different controlling alarm strategies according to different types.
Embodiment one:
Please refer to Fig. 1, Fig. 2, in the present embodiment, monitoring alarm control system comprises data acquisition module 101 and forewarn module 102.Data acquisition module 101 is for obtaining the real-time monitoring data of monitored end and forming monitoring message queue, and every bar monitoring message comprises monitor data, forewarn module 102 for reading monitoring message from monitoring message queue, monitor data in monitoring message and the monitoring client threshold data corresponding with this monitor data are compared, determine whether to generate warning message according to this monitoring message according to comparative result, if generate warning message, then judge whether the warning message generated meets the warning trigger condition corresponding with this monitor data, determine whether to produce warning trigger pip according to judged result, described warning trigger condition gets rid of less desirable warning message for adopting the mode of time and/or generation warning trigger pip number of times.
The specific works flow process of data acquisition module 101 and forewarn module 102 is as follows:
Step 103, data acquisition module 101 obtains the real-time monitoring data of monitored end.Monitor data be monitored end status data, produced by script file by monitored end, it can be timing or the status data sporadically initiatively reading monitored end that data acquisition module obtains the mode of status data, also can by monitored end regularly or sporadically status data to monitoring client.
Step 104, the monitor data that step 103 obtains by data acquisition module 101 forms monitoring message queue.
Step 105, forewarn module 102 reads single monitoring message from monitoring message queue.
Step 106, the monitor data comprised in the monitoring message of reading and threshold data compare by forewarn module 102, determine whether to generate warning message according to this monitoring message according to comparative result.Then continue step 107 when monitor data exceeds the scope of threshold data, then perform step 110 when monitor data does not exceed the scope of threshold data.
Step 107, general, illustrate that when monitor data exceeds threshold data scope corresponding monitored end breaks down, then forewarn module 102 generates warning message.
Step 108, the warning message of generation judges by forewarn module 102 further, judges whether warning message meets warning trigger condition.If met, then perform step 109, if do not met, then perform step 111.
Step 109, when forewarn module 102 judges that warning message meets warning trigger condition, then generates warning trigger pip, carries out warning open operation.
Step 110, abandons current monitor message, and system reads next monitoring message automatically.
Step 111, abandons current alerts information, reads next warning message in queue, or the monitor message not meeting warning trigger condition can also be recorded, apply for subsequent processing steps.
In the present embodiment, owing to adding the restriction of warning trigger condition in forewarn module 102 to warning message, filter operation is carried out to warning message, filtered out invalid warning.For example, when warning trigger condition is that the warning message number of times receiving identical warning message is no less than 5 times, only have and just can open warning when forewarn module to receive 5 times or more time warning message continuously.In practical operation, such as, produce because of the emergentness fluctuation of external environment the monitor data exceeding threshold data scope when monitored end, just corresponding warning message is generated, because the sudden wave time of external environment is extremely short, so the warning message quantity produced is few, even only produce a warning message, afterwards, monitored end recovers again normal work.In prior art, now system just can open alarm operation, but in the monitoring alarm control procedure provided at the present embodiment, alarm operation can't be opened after forewarn module receives warning message at once, but continue to receive, within a certain period of time, if the quantity receiving identical warning message is not more than 5, then illustrate that this warning message is invalid warning, do not carry out unlatching alarm operation.If the identical warning message quantity received is more than 5, then illustrates that monitored object is very large and really may there occurs fault, then open warning, remind staff to carry out troubleshooting.Therefore can filter invalid warning according to the difference of warning trigger condition in the monitoring alarm control procedure provided at the present embodiment, the unlatching of invalid warning in minimizing work, the work load reduced a staff, improves accuracy and the controllability of monitoring and alarming system.
In the present embodiment, described warning trigger condition can carry out difference setting according to the difference of monitored object, preferably, described warning trigger condition also comprises the frequency threshold value producing warning trigger pip, at least one in inspection interval time threshold and alarm interval time threshold, the described inspection interval time is judge the time of current monitor message and the interval time between judging from the time of the last monitoring message of same monitored end, the described alarm interval time is the interval time between the time of fire alarming of the last time judging current monitor message and same monitored end.Difference according to warning trigger condition is filtered different invalid warning messages, improves the accuracy of monitoring alarm control system.
Embodiment two:
Please refer to Fig. 3, Fig. 4, in the present embodiment, monitoring alarm control system comprises data acquisition module 201 and forewarn module 202.Wherein, data acquisition module 202 comprises reading unit 203, monitor data taxon 204 and buffer unit 205, and reading unit 203 is for obtaining real-time monitoring data from least one monitored end; Monitor data and attribute 210, for determining the attribute 210 of monitor data, are synthesized a monitoring message by monitor data taxon 204, at least comprise the type of the monitored end producing this monitor data in described attribute 210; Buffer unit 205 is for putting into monitoring message queue by monitoring message.
Forewarn module 202 for reading monitoring message from monitoring message queue, monitor data in monitoring message and the monitoring client threshold data corresponding with this monitor data are compared, determine whether to generate warning message according to this monitoring message according to comparative result, if generate warning message, then judge whether the warning message generated meets the warning trigger condition corresponding with this monitor data, determine whether to produce warning trigger pip according to judged result, described warning trigger condition gets rid of less desirable warning message for adopting the mode of time and/or generation warning trigger pip number of times.Forewarn module 202 can in advance for the warning trigger condition that each monitor data is different according to its setup of attribute, after data acquisition module 201 is each monitoring message determination attribute, forewarn module 202 can determine adopt which warning trigger condition according to the attribute of this monitoring message, just produces warning trigger pip when monitoring message meets warning trigger condition.
Based on the monitoring alarm control system in the present embodiment, the control flow of monitoring alarm comprises the following steps:
Step 206, obtains monitor data.Reading unit 203 obtains real-time monitoring data, based on monitor data generating monitoring information from monitored end.
Step 207, monitor data, attribute and monitoring client threshold data are synthesized a monitoring message by monitor data taxon 204.The attribute of each monitored object is pre-set in data acquisition module, attribute can comprise monitored object type, monitored object rank etc., for the convenience of the user to the control of reporting to the police, also comprises self-defined priority in attribute, self-defined priority is the interim setting value of user, and user can adjust as required.Often get the status data of a monitored object, first according to the attribute of predefined monitored object, determine the attribute of this status data, monitor data and attribute 210(thereof are such as comprised monitored object type, monitored object rank and self-defined priority) be integrated into a packet, generate a monitor message, monitor message is put into monitoring message queue.In an instantiation, monitor data and attribute 210 thereof, monitoring client threshold data 209, also according to the monitored object type determination monitoring client threshold data 209 of this monitor data, are synthesized monitor message, as shown in Fig. 4 by data acquisition module together.Monitoring client threshold data is a scope normally.
In the present embodiment, data acquisition module also according to monitored object type, monitored object rank and self-defined priority to arrange the processing priority calculating this monitor message other, processing priority Wei the weighted sum of monitored end type, monitored end service class and self-defined priority.
Step 208, buffer unit 205 does not determine the position of monitoring message in queue according to processing priority, monitoring message is put into monitoring message queue, and the monitoring message that processing priority is not high is arranged in by the position of priority processing.
The arrangement mode of message in message queue is normally ranked according to the time order and function put into, and is read according to putting in order and processes.In order to realize the controllability that monitored object is reported to the police, user is thought, and the warning of important monitored object is by priority processing, in a kind of instantiation of the present embodiment, do not determine the position of monitoring message in queue when monitoring message being put into monitoring message queue according to processing priority, the monitoring message that processing priority is not high is arranged in by the position of priority processing.The monitor message that such as priority is high is placed in the front end of message queue automatically, is preferentially read.
In the present embodiment, monitoring alarm control system is planned monitored end according to the importance of monitored end, the processing priority higher to the monitored end setting being in important status in system is other, preferentially can transmit its warning message generated when it breaks down and carry out alarm operation, the carrying out of the troubleshooting work that avoids delay.
In the present embodiment, the job step of forewarn module 202 comprises:
Step 211, read monitoring message, forewarn module 202 reads monitor message from queue.
Step 212, judges whether monitored object current monitor data exceed alarm threshold value data.Forewarn module 202 reads monitor message from queue, extracts the monitor data in monitor message and alarm threshold value data, and both is compared, judge whether current monitor data exceed the scope of alarm threshold value data.If monitor data is beyond threshold range, then perform step 213, otherwise perform step 216.In a further embodiment, those skilled in the art are to be understood that, also alarm threshold value data can not be comprised in monitor message, in this step, forewarn module 202 according to the attribute determination alarm threshold value data of monitor data, and judges whether current monitor data exceed the scope of alarm threshold value data.
Step 213, generates warning message.When judging the scope of current monitor data beyond alarm threshold value data in step 212, then illustrate that monitored object may have occurred fault, so generate warning message.
Step 214, judges whether warning message meets warning trigger condition.Forewarn module 202 does not set different warning trigger conditions according to different monitoring object type and/or processing priority, when warning message meets warning trigger condition, forewarn module 202 performs step 215, produce warning trigger pip, perform and open alarm operation, otherwise perform step 217.
Step 215, generates warning trigger pip, and notice opens alarm operation.
Step 216, abandons current monitor message, and system reads next monitoring message automatically.
Step 217, abandons current alerts information, reads next warning message in queue, or the monitor message not meeting warning trigger condition can also be recorded, apply for subsequent processing steps.
Otherwise turn to and perform step 212, judge next monitor message.Warning trigger condition can comprise alarm times and/or interval time.Alarm times can be above the number of times that monitoring client threshold data produces warning message, also can be the frequency threshold value that satisfied warning trigger condition produces warning trigger pip, interval time can be inspection interval time threshold or alarm interval time threshold, the inspection interval time is judge the time of current monitor message and the interval time between judging from the time of the last monitoring message of same monitored end, and the alarm interval time is the interval time between the time of fire alarming of the last time judging current monitor message and same monitored end.
In a kind of instantiation, warning trigger condition is the number of times producing warning message, such as, when warning message number of times is set to 5, the number of times receiving the identical warning message coming from same monitored object within a certain period of time when forewarn module 202 is only had to be greater than 5, namely illustrate that monitored object may exist fault, then produce warning trigger pip; The number of times receiving identical warning message when forewarn module 202 is within a certain period of time less than 5, namely illustrate that monitored object may because the emergentness fluctuation of external environment causes temporary transient fault, but recovered at short notice normally to have worked, then forewarn module 202 does not produce warning trigger pip.
In another kind of instantiation, warning trigger condition is the alarm interval time, and the alarm interval time can be arranged as required flexibly, also can by system Lookup protocol such as, after forewarn module 202 produces a warning trigger pip, it is 60 seconds by alarm interval set of time.If when forewarn module 202 receives next warning message, then judge whether interval time is greater than 60 seconds, if it is produce next warning trigger pip, otherwise, do not produce warning trigger pip, avoid producing invalid warning.Like this, both can avoid repeatedly receiving identical warning at short notice, and also can prevent from missing useful warning simultaneously.By the setting to warning trigger condition, invalid warning message can be filtered out more exactly, improve the accuracy of monitoring alarm control system.
Monitored object rank in the present embodiment, self-defined priority and warning trigger condition can be pre-set according to practical work demand.Monitoring alarm control system in the present embodiment can realize the preferential monitored object high to rank and carry out alarm operation, can also be filtered invalid warning by warning trigger condition simultaneously, the unlatching of invalid warning in minimizing work, the work load reduced a staff, improves accuracy and the controllability of monitoring and alarming system.
Embodiment three:
The present embodiment adds warning trigger control module 303 on the basis of above-described embodiment, below to increase warning trigger control module 303 on the basis of embodiment two, in order to be described, please refer to Fig. 5, Fig. 6, monitoring alarm control system comprises data acquisition module 301, forewarn module 302 and warning trigger control module 303.Wherein, data acquisition module 301, forewarn module 302 and the data acquisition module in above-described embodiment, forewarn module is identical, warning trigger element 303 is for determining whether trigger alarm based on the warning trigger pip produced, whether the warning trigger control module 303 monitored end corresponding according to the monitored end related information table determination current alerts trigger pip set up in advance has the monitoring associated up or down, if had, carry out the control of trigger alarm based on the warning trigger pip produced and related information, if the monitoring do not associated up or down, then based on the warning trigger pip trigger alarm produced.Warning trigger control module 303 is when determining that monitored end corresponding to warning trigger pip has the monitoring upwards associated, check whether higher level's associate device has trigger alarm within the very first time of setting, if had, then to current warning trigger pip no longer trigger alarm, otherwise based on current warning trigger pip trigger alarm; Described warning trigger control module 303 when determining that monitored end corresponding to warning trigger pip has the monitoring of association downwards, within the second time of setting, to the warning trigger pip no longer trigger alarm produced by downward associate device.
The specific works flow process of trigger control module of reporting to the police in the present embodiment 303 is as follows:
Step 304, warning trigger control module 303 receives the warning trigger pip that forewarn module occurs, whether the monitored end corresponding according to the monitored end related information table determination current alerts trigger pip set up in advance has the monitoring associated up or down, if there is no, perform step 305, if existed, perform step 306.
Step 305, if there is not association monitoring up or down in monitored end corresponding to current warning trigger pip, then based on current warning trigger pip trigger alarm.
Step 306, judges whether monitored end corresponding to current warning trigger pip exists association monitoring upwards, if so, then performs step 307.If there is no upwards association monitoring, then perform step 309.
Whether step 307, judge association monitoring trigger alarm upwards, if it is perform step 308, if association monitoring does not upwards have trigger alarm, then forward step 305 to, based on current warning trigger pip trigger alarm.
Step 308, to current warning trigger pip no longer trigger alarm, namely closes the warning of current monitored end.
Step 309, there is downward association monitoring in monitored end corresponding to current warning trigger pip, regardless of downward association monitoring whether trigger alarm, all to the warning trigger pip no longer trigger alarm produced by downward associate device, namely close the warning that downward associate device produces.And forward step 305 to, based on current warning trigger pip trigger alarm.
Such as, monitor the existing state of certain server, the various services that server runs have been monitored simultaneously, comprise server local resource etc., the warning when monitored object server triggers, illustrate that whole server is in inactive state, also just mean various service in its system and resource all unavailable, then the various service in system and resource but still can transmit warning message, after warning trigger control module 303 processes, only can carry out unlatching alarm operation to the warning message of parent server.In like manner, for the monitoring of certain switch, when the existing state of switch triggers warning, namely deducibility be connected to each server under switch and resource all unavailable, this type of situation, warning trigger control module 303 just only can send a warning message (the corresponding warning message of switch), and subordinate's monitored object information of additional association, and can not to the equal trigger alarm of each monitored object.
In the present embodiment, also first can judge whether monitored end corresponding to current warning trigger pip exists downward association monitoring, and then judge whether monitored end corresponding to current warning trigger pip exists association monitoring upwards.
After the monitored end of higher level opens warning, the warning message of its monitored end of corresponding subordinate can be defined as invalid warning message, therefore, the warning trigger control module 303 increased in the present embodiment can reduce partial invalidity alarm request, the work load reduced a staff, improves the accurate of monitoring alarm control system and controllability.
Embodiment four:
The present embodiment adds mark module and tokens statistics module on the basis of above-described embodiment, below to increase mark module and tokens statistics module on the basis of embodiment three, in order to be described, please refer to Fig. 7, Fig. 8, monitoring alarm control system comprises data acquisition module 401, forewarn module 402, warning trigger control module 403, mark module 404 and tokens statistics module 405.Wherein, data acquisition module 401, forewarn module 402, warning trigger control module 403 and the data acquisition module in above-described embodiment, forewarn module, warning trigger control module are identical.The difference of the present embodiment and embodiment three is to add mark module 404 and tokens statistics module 405.Mark module 404 is for marking described warning message; Tokens statistics module 405, for being added up by described label information, generates statistics.
In the present embodiment, the specific works flow process of mark module 404 and tokens statistics module 405 is as follows:
Step 406, mark module 404 is after receiving warning message, and the difference according to warning message type carries out different marks, generates label information.
Step 407, tokens statistics module 405 receives the label information that mark module 404 generates, and adds up it, generates statistics, and described statistics can be the chart or digital form that generate according to label information.
In the present embodiment, for the warning message triggered, mark module 404 does mark of correlation to it, generate label information so that statistical study is used, and in the equipment can remembered stored in database, and the warning triggered to be gathered according to label information by tokens statistics module 405, add up according to not isolabeling, effective statistics is provided, and chart data intuitively can be generated.Staff, by analysis statisticaling data, can be optimized adjustment to the service of high failure rate.
Embodiment five:
The present embodiment adds automatic troubleshooting module on the basis of above-described embodiment, below to increase automatic troubleshooting module on the basis of embodiment four, in order to be described, please refer to Fig. 9, Figure 10, in the present embodiment, monitoring alarm control system comprises data acquisition module 501, forewarn module 502, warning trigger control module 503, mark module 504, tokens statistics module 505 and automatic troubleshooting module 506.Wherein, data acquisition module 501, forewarn module 502, warning trigger control module 503, mark module 504, tokens statistics module 505 and the data acquisition module in above-described embodiment, forewarn module, warning trigger control module, mark module, tokens statistics module are identical.Automatic troubleshooting module 506 judges whether to carry out automatic troubleshooting to current alerts information according to label information, if label information is to there being the automatic troubleshooting handling procedure prestored, explanation can carry out automatic troubleshooting to current alerts information, then send automatic process information to the monitored end that warning message is corresponding, if cannot, then to current warning message trigger alarm, described automatic process information is used for notifying that monitored end runs processing procedure and automatically fixes a breakdown.
In the present embodiment, the specific works flow process of automatic troubleshooting module 506 is as follows:
Step 507, automatic troubleshooting module 506 judges whether to carry out automatic troubleshooting to current alerts information according to label information.
Step 508, if can carry out automatic troubleshooting to current alerts information, then troubleshooting module 506 sends automatic process information to monitored end automatically, and described automatic process information is used for notifying that monitored end runs processing procedure and automatically fixes a breakdown.
Step 509, monitored termination runs automatic processing procedure after receiving the automatic process information of automatic troubleshooting module 506 transmission, carries out automatic troubleshooting.
Step 510, if cannot carry out automatic troubleshooting to current alerts information, then to current alerts information trigger alarm.
In the present embodiment, for the warning message that can carry out automatic troubleshooting, automatic troubleshooting module 506 sends the corresponding monitored end of automatic process information instruction and runs automatic processing procedure and carry out automatic troubleshooting after the automatic troubleshooting instruction receiving user.Achieve the automatic business processing of troubleshooting operation in monitoring alarm control procedure, thus decrease artificial intervention or maintenance process.
Above content is in conjunction with concrete embodiment further description made for the present invention, can not assert that specific embodiments of the invention are confined to these explanations.For general technical staff of the technical field of the invention, without departing from the inventive concept of the premise, some simple deduction or replace can also be made.
Claims (18)
1. a monitoring alarm control method, is characterized in that comprising,
Monitoring client obtains the real-time monitoring data of monitored end and forms monitoring message queue, and every bar monitoring message comprises monitor data;
From monitoring message queue, read monitoring message, the monitor data in monitoring message and the monitoring client threshold data corresponding with this monitor data are compared, determine whether to generate warning message according to this monitoring message according to comparative result;
If generate warning message, judge whether the warning message generated meets the warning trigger condition corresponding with this monitor data, determine whether to produce warning trigger pip according to judged result, described warning trigger condition gets rid of less desirable warning message for adopting the mode of time and/or alarm times;
Also comprise after producing warning trigger pip: determine whether trigger alarm based on the warning trigger pip produced, specifically comprise: whether the monitored end corresponding according to the monitored end related information table determination current alerts trigger pip set up in advance has the monitoring associated up or down, if had, carry out the control of trigger alarm based on the warning trigger pip produced and related information, otherwise trigger alarm.
2. monitoring alarm control method as claimed in claim 1, is characterized in that, described monitoring client obtains the real-time monitoring data of monitored end and forms monitoring message queue and comprise:
Monitoring client obtains real-time monitoring data from least one monitored end;
Determine the attribute of monitor data, in described attribute, at least comprise the type of the monitored end producing this monitor data;
Monitor data and attribute thereof are synthesized a monitoring message;
Monitoring message is put into monitoring message queue.
3. monitoring alarm control method as claimed in claim 2, it is characterized in that, described monitoring client threshold data and warning trigger condition are determined according to the attribute in monitoring message.
4. monitoring alarm control method as claimed in claim 3, it is characterized in that, after the type determining monitored end, obtain the monitoring client threshold data corresponding with the type of monitored end, then monitor data, attribute and monitoring client threshold data are synthesized a monitoring message.
5. monitoring alarm control method as claimed in claim 2, it is characterized in that, processing priority is also comprised other in described attribute, do not determine the position of monitoring message in queue when monitoring message being put into monitoring message queue according to processing priority, the monitoring message that processing priority is not high is arranged in by the position of priority processing.
6. monitoring alarm control method as claimed in claim 5, is characterized in that, described processing priority Wei the weighted sum of monitored end type, monitored end service class and self-defined priority, and described self-defined priority is the interim setting value of user.
7. the monitoring alarm control method according to any one of claim 1-6, is characterized in that, the control that the described warning trigger pip based on generation and related information carry out trigger alarm comprises:
When the monitored end that warning trigger pip is corresponding has the monitoring upwards associated, check whether higher level's associate device has trigger alarm within the very first time of setting, if had, then to current warning trigger pip no longer trigger alarm, otherwise based on current warning trigger pip trigger alarm;
When the monitored end that warning trigger pip is corresponding has the monitoring of association downwards, within the second time of setting, to the warning trigger pip no longer trigger alarm produced by downward associate device.
8. the monitoring alarm control method according to any one of claim 1-6, it is characterized in that, described warning trigger condition comprises at least one in frequency threshold value, inspection interval time threshold and the alarm interval time threshold producing warning trigger pip, the described inspection interval time is judge the time of current monitor message and the interval time between judging from the time of the last monitoring message of same monitored end, and the described alarm interval time is the interval time between the time of fire alarming of the last time judging current monitor message and same monitored end.
9. the monitoring alarm control method according to any one of claim 1-6, is characterized in that, also comprises the step marking warning message and add up, specifically comprises:
Receive the sort operation instruction that the warning message of user to trigger alarm carries out, key words sorting is arranged to warning message;
Markd for band warning message is stored;
According to mark, statistic of classification is carried out to the warning message stored.
10. monitoring alarm control method as claimed in claim 9, is characterized in that, also comprise automatic troubleshooting steps, specifically comprise after trigger alarm:
Whether the marker for judgment according to warning message can carry out automatic troubleshooting to current alerts information;
If can, the monitored end corresponding to current alerts information sends automatic process information, and described automatic process information is used for notifying that monitored end runs processing procedure and automatically fixes a breakdown.
11. 1 kinds of monitoring alarm control system, comprise,
Data acquisition module, for obtaining the real-time monitoring data of monitored end and forming monitoring message queue, every bar monitoring message comprises monitor data;
Forewarn module, for reading monitoring message from monitoring message queue, monitor data in monitoring message and the monitoring client threshold data corresponding with this monitor data are compared, determine whether to generate warning message according to this monitoring message according to comparative result, if generate warning message, then judge whether the warning message generated meets the warning trigger condition corresponding with this monitor data, determine whether to produce warning trigger pip according to judged result, described warning trigger condition gets rid of less desirable warning message for adopting the mode of time and/or generation warning trigger pip number of times,
Warning trigger control module, for determining whether trigger alarm based on the warning trigger pip produced, whether the described warning trigger control module monitored end corresponding according to the monitored end related information table determination current alerts trigger pip set up in advance has the monitoring associated up or down, if had, carry out the control of trigger alarm based on the warning trigger pip produced and related information, otherwise trigger alarm.
12. monitoring alarm control system as claimed in claim 11, it is characterized in that, described data acquisition module comprises:
Reading unit, for obtaining real-time monitoring data from least one monitored end;
Monitor data taxon, for determining the attribute of monitor data, synthesizes a monitoring message by monitor data and attribute thereof, at least comprise the type of the monitored end producing this monitor data in described attribute;
Buffer unit, for putting into monitoring message queue by monitoring message;
Wherein, monitoring client threshold data for comparing with the monitor data in monitoring message is the monitoring client threshold data corresponding with the attribute of this monitor data, for judging that the warning trigger condition whether warning message meets is the warning trigger condition corresponding with the attribute of this monitor data.
13. monitoring alarm control system as claimed in claim 12, it is characterized in that, described monitor data taxon also determines that when determining the attribute of monitor data processing priority is other, described buffer unit does not determine the position of monitoring message in queue when monitoring message being put into monitoring message queue according to processing priority, and the monitoring message that processing priority is not high is arranged in by the position of priority processing.
14. monitoring alarm control system as claimed in claim 13, is characterized in that, described forewarn module is used for not arranging different warning trigger conditions according to the type of different monitored ends and/or processing priority.
15. monitoring alarm control system according to any one of claim 11-14, is characterized in that:
Described warning trigger control module is when determining that monitored end corresponding to warning trigger pip has the monitoring upwards associated, check whether higher level's associate device has trigger alarm within the very first time of setting, if had, then to current warning trigger pip no longer trigger alarm, otherwise based on current warning trigger pip trigger alarm; Described warning trigger control module when determining that monitored end corresponding to warning trigger pip has the monitoring of association downwards, within the second time of setting, to the warning trigger pip no longer trigger alarm produced by downward associate device.
16. monitoring alarm control system as claimed in claim 15, it is characterized in that, described warning trigger condition comprises at least one in frequency threshold value, inspection interval time threshold and the alarm interval time threshold producing warning trigger pip, the described inspection interval time is judge the time of current monitor message and the interval time between judging from the time of the last monitoring message of same monitored end, and the described alarm interval time is the interval time between the time of fire alarming of the last time judging current monitor message and same monitored end.
17. monitoring alarm control system as claimed in claim 16, is characterized in that, also comprise:
Mark module, for marking described warning message, generates label information;
Tokens statistics module, for being added up by described label information, generates statistics.
18. monitoring alarm control system as claimed in claim 17, is characterized in that, also comprise:
Automatic troubleshooting module, judges whether to carry out automatic troubleshooting to current alerts information according to described label information, if passable, then sends automatic process information to the monitored end that warning message is corresponding, if cannot, then to current warning message trigger alarm; Described automatic process information is used for notifying that monitored end runs processing procedure and automatically fixes a breakdown.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210243124.3A CN103544093B (en) | 2012-07-13 | 2012-07-13 | Monitoring alarm control method and system thereof |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210243124.3A CN103544093B (en) | 2012-07-13 | 2012-07-13 | Monitoring alarm control method and system thereof |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN103544093A CN103544093A (en) | 2014-01-29 |
| CN103544093B true CN103544093B (en) | 2016-04-27 |
Family
ID=49967566
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201210243124.3A Expired - Fee Related CN103544093B (en) | 2012-07-13 | 2012-07-13 | Monitoring alarm control method and system thereof |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103544093B (en) |
Families Citing this family (39)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104468578B (en) * | 2014-12-10 | 2017-12-26 | 怀效宁 | The priority traffic system and the means of communication of a kind of wireless telecommunications |
| CN104125095A (en) * | 2014-06-25 | 2014-10-29 | 世纪禾光科技发展(北京)有限公司 | System and method for monitoring event failure in real time |
| CN104240462B (en) * | 2014-09-01 | 2017-11-14 | 佛山市新东方电子技术工程有限公司 | The defence area bypath system of warning system |
| CN104361713A (en) * | 2014-10-13 | 2015-02-18 | 北京国双科技有限公司 | Index data monitoring method, device and server |
| CN104408898A (en) * | 2014-10-27 | 2015-03-11 | 福建星网锐捷安防科技有限公司 | Alarm information combination determination based method and apparatus for improving alarm accuracy |
| CN104363113A (en) * | 2014-10-29 | 2015-02-18 | 中国建设银行股份有限公司 | Business continuity detection method |
| CN104407960B (en) * | 2014-12-15 | 2017-12-22 | 北京国双科技有限公司 | Data monitoring method and device |
| CN104834582B (en) * | 2015-05-19 | 2018-07-31 | 上海玖道信息科技股份有限公司 | A kind of monitor event methods of exhibiting |
| CN106911492A (en) * | 2015-12-23 | 2017-06-30 | 北京谊安医疗系统股份有限公司 | A kind of Anesthesia machine warning message detection and display methods |
| CN106980300B (en) * | 2016-01-15 | 2021-01-05 | 厦门雅迅网络股份有限公司 | Vehicle remote monitoring method and system |
| CN105681085A (en) * | 2016-01-19 | 2016-06-15 | 烽火通信科技股份有限公司 | Alarm system and method |
| CN105957314B (en) * | 2016-04-29 | 2018-07-10 | 北京奇虎科技有限公司 | A kind of monitoring alarm method and system |
| CN106095651A (en) * | 2016-06-15 | 2016-11-09 | 浪潮(北京)电子信息产业有限公司 | A kind of 3D virtual computer room method for managing and monitoring and system |
| CN106294066B (en) * | 2016-08-01 | 2019-01-15 | 北京百度网讯科技有限公司 | Alert data processing method and device |
| CN106230991A (en) * | 2016-09-28 | 2016-12-14 | 湖南优图信息技术有限公司 | A kind of patient monitoring method and device |
| CN106331162B (en) * | 2016-09-30 | 2023-07-11 | 衡水益通管业股份有限公司 | Pipe gallery main controller based on Internet and monitoring method thereof |
| CN106548103A (en) * | 2016-11-03 | 2017-03-29 | 王力安防产品有限公司 | Line production system based on RFID |
| CN106408220A (en) * | 2016-11-28 | 2017-02-15 | 广州洪森科技有限公司 | Method and device for generating super warning in unattended manner |
| TWI621013B (en) * | 2017-03-22 | 2018-04-11 | 廣達電腦股份有限公司 | Systems for monitoring application servers |
| CN106961352B (en) * | 2017-03-29 | 2020-09-25 | 康朝红 | Monitoring system and monitoring method |
| CN107678917B (en) * | 2017-09-21 | 2020-03-20 | 平安科技(深圳)有限公司 | Test machine automation management method, device, equipment and storage medium |
| CN107766207A (en) * | 2017-10-20 | 2018-03-06 | 中国人民财产保险股份有限公司 | Distributed automatic monitoring method, system, computer-readable recording medium and terminal device |
| CN108259269A (en) * | 2017-12-30 | 2018-07-06 | 上海陆家嘴国际金融资产交易市场股份有限公司 | The monitoring method and system of the network equipment |
| CN108712283A (en) * | 2018-05-10 | 2018-10-26 | 国网江西省电力有限公司信息通信分公司 | Fault early warning method based on resource associations relationship in information system and device |
| CN108667664A (en) * | 2018-05-18 | 2018-10-16 | 中国联合网络通信集团有限公司 | Automatic O&M monitoring and based reminding method, block chain and business platform |
| CN108763027A (en) * | 2018-05-31 | 2018-11-06 | 郑州云海信息技术有限公司 | A kind of hard disk monitoring method, device and server |
| CN109144825A (en) * | 2018-07-27 | 2019-01-04 | 阿里巴巴集团控股有限公司 | A kind of alert data monitoring method, device and equipment |
| CN109254897A (en) * | 2018-09-11 | 2019-01-22 | 郑州云海信息技术有限公司 | A kind of alarm method and device |
| CN109542717A (en) * | 2018-10-22 | 2019-03-29 | 珠海格力电器股份有限公司 | Information issuing method, system, human interface devices and readable storage medium storing program for executing |
| CN109194532B (en) * | 2018-11-07 | 2020-05-01 | 广东电网有限责任公司 | Method and device for pushing power grid alarm information |
| CN110046245B (en) * | 2018-11-27 | 2023-11-17 | 创新先进技术有限公司 | Data monitoring method and device, computing equipment and storage medium |
| CN110488692B (en) * | 2019-08-08 | 2022-05-20 | 深圳绿米联创科技有限公司 | Device control method, device, system, electronic device and storage medium |
| CN110487320A (en) * | 2019-08-09 | 2019-11-22 | 湖南舞龙软件开发有限公司 | A kind of environmental quality monitoring sampling process monitoring method and system |
| CN110708197B (en) * | 2019-09-27 | 2022-10-11 | 招商局金融科技有限公司 | Monitoring device, method for setting monitoring policy of monitoring device, and storage medium |
| CN111200517B (en) * | 2019-12-24 | 2022-06-07 | 苏州达家迎信息技术有限公司 | Service data early warning control method, device, equipment and storage medium |
| CN113391981A (en) * | 2021-06-30 | 2021-09-14 | 中国民航信息网络股份有限公司 | Early warning method for monitoring index and related equipment |
| CN113849383A (en) * | 2021-09-27 | 2021-12-28 | 广州华多网络科技有限公司 | Alarm notification control method and device, equipment, medium and product thereof |
| CN113965528A (en) * | 2021-10-21 | 2022-01-21 | 傲普(上海)新能源有限公司 | Data classification dynamic sorting transmission control method based on queue |
| CN117133109B (en) * | 2023-10-26 | 2024-02-13 | 广州瑞港消防设备有限公司 | Automatic alarm suppression system for energy storage container |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1912484A (en) * | 2005-08-11 | 2007-02-14 | 深圳市百瑞特科技有限公司 | Central air conditioner loading temp control optimization system, method and used temp controller |
| CN101673099A (en) * | 2009-10-16 | 2010-03-17 | 北京北方微电子基地设备工艺研究中心有限责任公司 | Method and system for monitoring abnormities in the technique process |
| CN102110220A (en) * | 2011-02-14 | 2011-06-29 | 宇龙计算机通信科技(深圳)有限公司 | Application program monitoring method and device |
-
2012
- 2012-07-13 CN CN201210243124.3A patent/CN103544093B/en not_active Expired - Fee Related
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1912484A (en) * | 2005-08-11 | 2007-02-14 | 深圳市百瑞特科技有限公司 | Central air conditioner loading temp control optimization system, method and used temp controller |
| CN101673099A (en) * | 2009-10-16 | 2010-03-17 | 北京北方微电子基地设备工艺研究中心有限责任公司 | Method and system for monitoring abnormities in the technique process |
| CN102110220A (en) * | 2011-02-14 | 2011-06-29 | 宇龙计算机通信科技(深圳)有限公司 | Application program monitoring method and device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN103544093A (en) | 2014-01-29 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN103544093B (en) | Monitoring alarm control method and system thereof | |
| CN103220173B (en) | A kind of alarm monitoring method and supervisory control system | |
| CN105183609B (en) | A kind of real-time monitoring system for being applied to software system and method | |
| CN109660380A (en) | Monitoring method, platform, system and the readable storage medium storing program for executing of operation condition of server | |
| CN106411659A (en) | Business data monitoring method and apparatus | |
| US20030135382A1 (en) | Self-monitoring service system for providing historical and current operating status | |
| CN102790699B (en) | A kind of analysis method and device of network service quality | |
| WO2015090098A1 (en) | Method and apparatus for realizing fault location | |
| JP4089719B2 (en) | Abnormality detection system, abnormality management device, abnormality management method, probe and program thereof | |
| CN107947998B (en) | Real-time monitoring system based on application system | |
| WO2016017208A1 (en) | Monitoring system, monitoring device, and inspection device | |
| CN101128001B (en) | Processing method for surge alarm of network element management system | |
| US10708155B2 (en) | Systems and methods for managing network operations | |
| CN104426697B (en) | Network fault management system | |
| CN106468904B (en) | The real-time accumulated quality management and control implementation method of dynamically configurable process | |
| US7933211B2 (en) | Method and system for providing prioritized failure announcements | |
| CN103440190A (en) | Equipment failure warning method, device and CIM system | |
| CN110929896A (en) | Security analysis method and device for system equipment | |
| CN111147286A (en) | IPRAN network loop monitoring method and device | |
| CN112291107B (en) | Network analysis program, network analysis device, and network analysis method | |
| CN108345527A (en) | A kind of interface enters the analysis monitoring method and system of ginseng | |
| CN105763387A (en) | Network traffic monitoring method and device | |
| CN108199861A (en) | A kind of computer lab management method and device | |
| CN102195791A (en) | Alarm analysis method, device and system | |
| CN106100918A (en) | A kind of substation data based on EMS system does not refresh detection method |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20200616 Address after: No.266 Chuangyan Road, Qilin science and Technology Innovation Park, Jiangning District, Nanjing City, Jiangsu Province Patentee after: Nanjing Qianying Technology Development Co., Ltd Address before: 518000 Guangdong city of Shenzhen province Nanshan District Gao Xin Road No. 009 Chinese Technology Development Institute Technology Park building three, 22 floor Patentee before: SHENZHEN QVOD TECHNOLOGY Co.,Ltd. |
|
| TR01 | Transfer of patent right | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20201104 Address after: 233000 No.10, building 32, Zone 8, Guangcai market, bengshan District, Bengbu City, Anhui Province Patentee after: Bengbu Shangwei Intellectual Property Operations Co.,Ltd. Address before: No.266 Chuangyan Road, Qilin science and Technology Innovation Park, Jiangning District, Nanjing City, Jiangsu Province Patentee before: Nanjing Qianying Technology Development Co., Ltd |
|
| TR01 | Transfer of patent right | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20160427 Termination date: 20210713 |
|
| CF01 | Termination of patent right due to non-payment of annual fee |