CN103986599A - Operation and maintenance alarm system and method for network equipment - Google Patents
Operation and maintenance alarm system and method for network equipment Download PDFInfo
- Publication number
- CN103986599A CN103986599A CN201410203152.1A CN201410203152A CN103986599A CN 103986599 A CN103986599 A CN 103986599A CN 201410203152 A CN201410203152 A CN 201410203152A CN 103986599 A CN103986599 A CN 103986599A
- Authority
- CN
- China
- Prior art keywords
- alarm
- scanning
- data
- maintenance
- rule
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000012423 maintenance Methods 0.000 title claims abstract description 43
- 238000000034 method Methods 0.000 title claims abstract description 22
- 230000001360 synchronised effect Effects 0.000 claims abstract description 8
- 238000007405 data analysis Methods 0.000 claims description 8
- 231100000279 safety data Toxicity 0.000 claims description 6
- 230000014509 gene expression Effects 0.000 claims description 3
- 230000008569 process Effects 0.000 claims description 3
- 230000004044 response Effects 0.000 abstract description 6
- 238000010586 diagram Methods 0.000 description 5
- 230000002159 abnormal effect Effects 0.000 description 3
- 230000009286 beneficial effect Effects 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 238000006467 substitution reaction Methods 0.000 description 2
- 230000007547 defect Effects 0.000 description 1
- 230000007123 defense Effects 0.000 description 1
- 238000013461 design Methods 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 230000036541 health Effects 0.000 description 1
- 230000003993 interaction Effects 0.000 description 1
Landscapes
- Alarm Systems (AREA)
Abstract
The invention provides an operation and maintenance alarm system and method for network equipment. The operation and maintenance alarm system comprises an alarm setting module, a regular scanning module, a matching module and a message pushing module, wherein the alarm setting module is used for storing a preset alarm rule through XML and storing the rule to a cache area and a data area, and the cache area and the data area keep synchronous; the regular scanning module is used for scanning the network equipment or key attributes of the network equipment regularly according to the scanning cycle, and generating a scanning event; the matching module is used for matching the scanning event with the alarm rule and generating an alarm message when the scanning event is matched with the alarm rule; the message pushing module is used for pushing the alarm message according to the alarm rule. Compared with the prior art, as the alarm rule is read from the cache area, the query efficiency is greatly improved, and then the speed of response to the scanning event is increased. In addition, the system can inform associated users in a user customization mode, the operation and maintenance alarm flexibility is reflected, and at the same time, an alarm can be rapidly given to the users when the network equipment operates abnormally.
Description
Technical Field
The present invention relates to an operation and maintenance control technology for network devices, and in particular, to an operation and maintenance alarm system and method for a network device.
Background
At present, with the rapid development of internet information technology, various information systems emerge endlessly. Rapidly built IT systems are expanding from formerly traditionally closed business systems to large key business systems. However, the wide application of the IT system is a one-handle double-edged sword, which brings a standard, convenient and efficient office flow and business mode, and causes a plurality of problems of difficult defense, difficult control and the like for the internal operation and maintenance of the IT system. These problems do not seek a solution and seriously threaten the information security of enterprises. For example, if operation and maintenance operations are not defended and controlled in time, internal service data may be tampered, leaked, and stolen; illegal websites can be accessed at the server, and misoperation occurs; or perform a shuffle operation on a critical server, etc.
In order to timely cope with various sudden conditions of the network equipment and grasp the health condition of the network equipment in real time, an operation and maintenance user needs to timely acquire the latest abnormal information. Although the existing alarm system is realized in the aspects of capturing the abnormity of the network equipment and pushing the message, the response speed to the alarm message is not fast, and the alarm mode has no flexible user customization scheme.
In view of this, a task to be solved by related technical personnel in the industry is urgent, how to design an operation and maintenance alarm scheme for a network device to improve the response speed of an alarm message, set an alarm mode customized by a user, and make the implementation of the alarm mode flexible.
Disclosure of Invention
Aiming at the defects existing in the operation and maintenance alarm of the network equipment in the prior art, the invention provides a novel operation and maintenance alarm system and method for the network equipment.
According to an aspect of the present invention, there is provided an operation and maintenance alarm system for a network device, including:
the alarm setting module is used for storing preset alarm rules through XML and storing the alarm rules in a cache region and a data region, wherein the cache region and the data region are kept synchronous;
the timing scanning module is used for scanning the network equipment or key attributes in the network equipment at fixed time according to a scanning period to generate a scanning event;
the matching module is used for matching the scanning event with the alarm rule and generating alarm information when the matching is successful; and
and the message pushing module is used for pushing the alarm information according to the alarm rule.
In one embodiment, the alarm rule includes an alarm time, an alarm contact and an alarm notification mode.
In one embodiment, the alarm time is an on-time alarm or an off-time alarm, and the start time and the end time of the alarm time are set by a user.
In one embodiment, the alert contact receives and processes the alert information based on the alert time and alert event category.
In one embodiment, the alert notification manner includes a client alert, a short message alert, and a mail alert.
In an embodiment of the present invention, the matching module further includes a message queue and a data parsing unit, where the message queue receives the scan event from the timing scan module and provides a route to ensure that the scan event is transmitted to the data parsing unit, and the data parsing unit receives the alarm rule and the scan event from the buffer and parses corresponding alarm security data and scan data, so as to match the alarm security data and the scan data. In addition, the data matching is carried out by adopting template matching or regular expressions.
According to another aspect of the present invention, there is provided an operation and maintenance alarm method for a network device, including the following steps:
saving a preset alarm rule through XML, and storing the alarm rule in a cache region and a data region, wherein the cache region and the data region are kept synchronous;
scanning network equipment or key attributes in the network equipment at fixed time according to a scanning period to generate a scanning event;
matching the scanning event with the alarm rule, and generating alarm information when the matching is successful; and
and pushing the alarm information according to the alarm rule.
In one embodiment, the alarm rule includes an alarm time, an alarm contact and an alarm notification mode.
In an embodiment of the foregoing, the step of matching the scan event with the alarm rule further includes: the message queue receives the scanning event and provides a route to ensure that the scanning event is transmitted to a data analysis unit; the data analysis unit receives the alarm rule and the scanning event from the cache region and analyzes corresponding alarm safety data and scanning data; and matching the alarm safety data with the scanning data.
The operation and maintenance alarm system and the method for the network equipment, provided by the invention, have the advantages that the alarm setting module stores the preset alarm rule through XML and stores the alarm rule in the cache area and the data area, the timing scanning module regularly scans the network equipment or key attributes in the network equipment according to the scanning period to generate a scanning event, the matching module matches the scanning event with the alarm rule and generates alarm information when the matching is successful, and the message pushing module pushes the alarm information according to the alarm rule. Compared with the prior art, the method and the device have the advantages that the alarm rule is read from the cache region, the query efficiency can be greatly improved, and the response speed to the scanning event is further improved. In addition, the system can also inform the associated users in a user customized mode, such as client side alarm, short message alarm, mail alarm and other modes, and is beneficial to the users to quickly solve the alarm generated by abnormal operation of the network equipment while reflecting the flexibility of the operation and maintenance alarm.
Drawings
The various aspects of the present invention will become more apparent to the reader after reading the detailed description of the invention with reference to the attached drawings. Wherein,
FIG. 1 illustrates a schematic diagram of an operation and maintenance alarm system for network devices of the present invention;
FIG. 2 is a schematic diagram of an operation and maintenance alarm system for a network device according to an embodiment of the present invention;
FIG. 3 is a flow diagram illustrating an operation and maintenance alarm method for a network device according to another embodiment of the present invention; and
fig. 4 is a flow chart illustrating a preferred embodiment of matching a scan event with an alarm rule in the operation and maintenance alarm method of fig. 3.
Detailed Description
In order to make the present disclosure more complete and complete, reference is made to the accompanying drawings, in which like references indicate similar or analogous elements, and to the various embodiments of the invention described below. However, it will be understood by those of ordinary skill in the art that the examples provided below are not intended to limit the scope of the present invention. In addition, the drawings are only for illustrative purposes and are not drawn to scale.
Specific embodiments of various aspects of the present invention are described in further detail below with reference to the accompanying drawings.
Fig. 1 shows a schematic diagram of an operation and maintenance alarm system for network devices according to the present invention. Referring to fig. 1, in the operation and maintenance alarm system of the present invention, a user may customize an alarm rule, for example, the rule includes an effective time of the alarm rule, a security value of a certain attribute of a certain network device, and which persons can obtain the alarm information at the first time after the alarm information is generated, and in which manner the alarm information is received. In addition, the timing task periodically scans in the background to generate scan events. And matching the scanning event with the alarm rule through rule matching, and informing the corresponding alarm contact person of the alarm information by message pushing through the system once matching is successful.
Fig. 2 is a schematic structural diagram of an operation and maintenance alarm system for a network device according to an embodiment of the present invention. In fig. 2, the operation and maintenance alarm system of the present invention includes an alarm setting module 100, a timing scanning module 102, a matching module 104, and a message pushing module 106.
More specifically, the alarm setting module 100 stores preset alarm rules in XML and stores the alarm rules in a cache area and a data area. The buffer area and the data area are kept synchronous. Therefore, the system can read the alarm rule from the buffer area, thereby greatly improving the query efficiency and improving the response speed to the scanning event to a certain extent. The timed scan module 102 periodically scans the network device or key attributes in the network device according to the scan cycle, thereby generating a scan event. For example, the system defaults to timing the execution period of the scanning task, and then the user modifies this attribute according to the actual situation of the network environment to enhance flexibility. Further, the user may also set timed scan jobs for a single network device, or only for certain attributes of the network device of interest to the user.
The matching module 104 is connected to the alarm setting module 100 and the timing scanning module 102. The matching module 104 matches the scan event with the alarm rule and generates alarm information when the matching is successful. And the message pushing module is used for pushing the alarm information according to the alarm rule. For example, the events scanned by the timed scanning module 102 are also processed by the cache and synchronized to the database. The read data is also inquired from the cache region, so that the interaction with the database is reduced, and the inquiry speed is optimized. The message pushing module 106 pushes the alarm information from the matching module 104 to the alarm contact.
In one embodiment, the alert rules include alert time, alert contact, and alert notification mode. The alarm time can be an on-time alarm or an off-time alarm, and the starting time and the ending time of the alarm time are set by a user. In addition, the alert contact may receive and process alert information based on the alert time and alert event category. The alarm notification mode comprises client alarm, short message alarm and mail alarm.
In a particular embodiment, the matching module 104 further includes a message queue and a data parsing unit. The message queue receives the scan event from the timing scan module 102 and provides a route to ensure that the scan event is transmitted to the data analysis unit, and the data analysis unit receives the alarm rule and the scan event from the buffer and analyzes corresponding alarm security data and scan data, so as to match the alarm security data and the scan data. For example, data matching is performed using template matching or regular expressions.
Fig. 3 is a flow chart of an operation and maintenance alarm method for a network device according to another embodiment of the present invention.
Referring to fig. 3, in the operation and maintenance warning method, step S31 is first performed to store preset warning rules through XML, and store the warning rules in a cache area and a data area, where the cache area and the data area are kept synchronous. Then, in step S33, the network device or the key attribute in the network device is periodically scanned according to the scanning period, and a scanning event is generated. Next, in step S35, the scan event is matched with the alarm rule, and alarm information is generated when the matching is successful. And finally, executing the step S37, and pushing the alarm information to the corresponding alarm contact according to the alarm rule. It should be understood by those skilled in the art that the operation and maintenance alarm method for a network device of the present invention corresponds to the operation and maintenance alarm system of fig. 2, and is not described herein again.
Fig. 4 is a flow chart illustrating a preferred embodiment of matching a scan event with an alarm rule in the operation and maintenance alarm method of fig. 3.
Referring to fig. 4, when the scan event matches the alarm rule, the following steps S351 to S355 are preferably performed. The invention is not limited thereto.
In step S351, the message queue receives the scan event and provides a route to ensure that the scan event is passed to the data parsing unit. Then, step S353 is executed, and the data parsing unit receives the alarm rule and the scan event from the buffer, and parses the corresponding alarm security data and scan data. Then, in step S355, the alarm security data is matched with the scan data.
The operation and maintenance alarm system and the method for the network equipment, provided by the invention, have the advantages that the alarm setting module stores the preset alarm rule through XML and stores the alarm rule in the cache area and the data area, the timing scanning module regularly scans the network equipment or key attributes in the network equipment according to the scanning period to generate a scanning event, the matching module matches the scanning event with the alarm rule and generates alarm information when the matching is successful, and the message pushing module pushes the alarm information according to the alarm rule. Compared with the prior art, the method and the device have the advantages that the alarm rule is read from the cache region, the query efficiency can be greatly improved, and the response speed to the scanning event is further improved. In addition, the system can also inform the associated users in a user customized mode, such as client side alarm, short message alarm, mail alarm and other modes, and is beneficial to the users to quickly solve the alarm generated by abnormal operation of the network equipment while reflecting the flexibility of the operation and maintenance alarm.
Hereinbefore, specific embodiments of the present invention are described with reference to the drawings. However, those skilled in the art will appreciate that various modifications and substitutions can be made to the specific embodiments of the present invention without departing from the spirit and scope of the invention. Such modifications and substitutions are intended to be included within the scope of the present invention as defined by the appended claims.
Claims (10)
1. An operation and maintenance alarm system for a network device, the operation and maintenance alarm system comprising:
the alarm setting module is used for storing preset alarm rules through XML and storing the alarm rules in a cache region and a data region, wherein the cache region and the data region are kept synchronous;
the timing scanning module is used for scanning the network equipment or key attributes in the network equipment at fixed time according to a scanning period to generate a scanning event;
the matching module is used for matching the scanning event with the alarm rule and generating alarm information when the matching is successful; and
and the message pushing module is used for pushing the alarm information according to the alarm rule.
2. The operation and maintenance alarm system according to claim 1, wherein the alarm rules include alarm time, alarm contact, and alarm notification mode.
3. The operation and maintenance alarm system according to claim 2, wherein the alarm time is an on-time alarm or an off-time alarm, and the start time and the end time of the alarm time are set by a user.
4. The operation and maintenance alarm system of claim 2, wherein said alarm contact receives and processes said alarm information according to said alarm time and alarm event category.
5. The operation and maintenance alarm system of claim 2, wherein the alarm notification manner comprises a client alarm, a short message alarm and a mail alarm.
6. The operation and maintenance alarm system according to claim 1, wherein the matching module further comprises a message queue and a data parsing unit,
the message queue receives the scanning event from the timing scanning module and provides a route to ensure that the scanning event is transmitted to the data analysis unit, and the data analysis unit receives the alarm rule and the scanning event from the buffer area and analyzes corresponding alarm safety data and scanning data so as to match the alarm safety data with the scanning data.
7. The operation and maintenance alarm system of claim 6, wherein data matching is performed by template matching or regular expressions.
8. An operation and maintenance alarming method for network equipment is characterized by comprising the following steps:
saving a preset alarm rule through XML, and storing the alarm rule in a cache region and a data region, wherein the cache region and the data region are kept synchronous;
scanning network equipment or key attributes in the network equipment at fixed time according to a scanning period to generate a scanning event;
matching the scanning event with the alarm rule, and generating alarm information when the matching is successful; and
and pushing the alarm information according to the alarm rule.
9. The operation and maintenance alarm method according to claim 8, wherein the alarm rules include alarm time, alarm contact and alarm notification mode.
10. The operation and maintenance alarm method according to claim 8, wherein the step of matching the scanning event with the alarm rule further comprises:
the message queue receives the scanning event and provides a route to ensure that the scanning event is transmitted to a data analysis unit;
the data analysis unit receives the alarm rule and the scanning event from the cache region and analyzes corresponding alarm safety data and scanning data; and
and matching the alarm safety data with the scanning data.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410203152.1A CN103986599A (en) | 2014-05-14 | 2014-05-14 | Operation and maintenance alarm system and method for network equipment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410203152.1A CN103986599A (en) | 2014-05-14 | 2014-05-14 | Operation and maintenance alarm system and method for network equipment |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN103986599A true CN103986599A (en) | 2014-08-13 |
Family
ID=51278426
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410203152.1A Pending CN103986599A (en) | 2014-05-14 | 2014-05-14 | Operation and maintenance alarm system and method for network equipment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103986599A (en) |
Cited By (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104135394A (en) * | 2014-08-22 | 2014-11-05 | 上海斐讯数据通信技术有限公司 | Method for dynamically customizing network device alarm by network management system |
| CN104394013A (en) * | 2014-11-18 | 2015-03-04 | 北京锐安科技有限公司 | Method and system as well as short message treatment system for transmitting operation and maintenance information by utilizing short messages |
| CN105681286A (en) * | 2015-12-31 | 2016-06-15 | 中电长城网际系统应用有限公司 | Association analysis method and association analysis system |
| CN105788194A (en) * | 2016-04-08 | 2016-07-20 | 北京搜狐新媒体信息技术有限公司 | Monitoring alarm method and apparatus |
| CN106559229A (en) * | 2015-09-25 | 2017-04-05 | 中兴通讯股份有限公司 | The O&M method and device of the network equipment |
| CN106656568A (en) * | 2016-11-17 | 2017-05-10 | 上海斐讯数据通信技术有限公司 | Alarm synchronization topology display method and device |
| CN108132962A (en) * | 2017-11-17 | 2018-06-08 | 卡斯柯信号有限公司 | Method based on the self-defined interlocking maintenance console alarm of real-time code bit state |
| CN108446143A (en) * | 2018-02-28 | 2018-08-24 | 万惠投资管理有限公司 | Event-handling method and device |
| CN114691455A (en) * | 2020-12-31 | 2022-07-01 | 科来网络技术股份有限公司 | Method and device for monitoring alarm data and dynamically pushing multiple platforms |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20050030898A1 (en) * | 2000-05-08 | 2005-02-10 | Metrobility Optical Systems Inc. | Using inter-packet gap as management channel |
| CN101651577A (en) * | 2009-08-28 | 2010-02-17 | 曙光信息产业(北京)有限公司 | Alarm notification system and method for cluster monitoring |
| CN103763126A (en) * | 2013-12-27 | 2014-04-30 | 乐视网信息技术(北京)股份有限公司 | System and method for monitoring database and database monitoring device |
-
2014
- 2014-05-14 CN CN201410203152.1A patent/CN103986599A/en active Pending
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20050030898A1 (en) * | 2000-05-08 | 2005-02-10 | Metrobility Optical Systems Inc. | Using inter-packet gap as management channel |
| CN101651577A (en) * | 2009-08-28 | 2010-02-17 | 曙光信息产业(北京)有限公司 | Alarm notification system and method for cluster monitoring |
| CN103763126A (en) * | 2013-12-27 | 2014-04-30 | 乐视网信息技术(北京)股份有限公司 | System and method for monitoring database and database monitoring device |
Non-Patent Citations (2)
| Title |
|---|
| 原黎明: "传输网综合网管系统告警子系统服务端的设计与实现", 《中国优秀硕士学位论文全文数据库 信息科技辑》 * |
| 杨华: "可视化日志分析系统的研究与实现", 《中国优秀硕士学位论文全文数据库 信息科技辑》 * |
Cited By (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104135394A (en) * | 2014-08-22 | 2014-11-05 | 上海斐讯数据通信技术有限公司 | Method for dynamically customizing network device alarm by network management system |
| CN104394013A (en) * | 2014-11-18 | 2015-03-04 | 北京锐安科技有限公司 | Method and system as well as short message treatment system for transmitting operation and maintenance information by utilizing short messages |
| CN106559229A (en) * | 2015-09-25 | 2017-04-05 | 中兴通讯股份有限公司 | The O&M method and device of the network equipment |
| CN105681286A (en) * | 2015-12-31 | 2016-06-15 | 中电长城网际系统应用有限公司 | Association analysis method and association analysis system |
| CN105788194A (en) * | 2016-04-08 | 2016-07-20 | 北京搜狐新媒体信息技术有限公司 | Monitoring alarm method and apparatus |
| CN105788194B (en) * | 2016-04-08 | 2018-03-23 | 北京搜狐新媒体信息技术有限公司 | A kind of alarming method by monitoring and device |
| CN106656568A (en) * | 2016-11-17 | 2017-05-10 | 上海斐讯数据通信技术有限公司 | Alarm synchronization topology display method and device |
| CN108132962A (en) * | 2017-11-17 | 2018-06-08 | 卡斯柯信号有限公司 | Method based on the self-defined interlocking maintenance console alarm of real-time code bit state |
| CN108446143A (en) * | 2018-02-28 | 2018-08-24 | 万惠投资管理有限公司 | Event-handling method and device |
| CN114691455A (en) * | 2020-12-31 | 2022-07-01 | 科来网络技术股份有限公司 | Method and device for monitoring alarm data and dynamically pushing multiple platforms |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN103986599A (en) | Operation and maintenance alarm system and method for network equipment | |
| US11997115B1 (en) | Message platform for automated threat simulation, reporting, detection, and remediation | |
| US10375093B1 (en) | Suspicious message report processing and threat response | |
| CN102982284B (en) | For the scanning device of rogue program killing, cloud management equipment and method and system | |
| US8972498B2 (en) | Mobile-based realtime location-sensitive social event engine | |
| US20170208080A1 (en) | Computer-readable recording medium, detection method, and detection apparatus | |
| CN103034808B (en) | Scan method, equipment and system and cloud management and equipment | |
| JP5312701B1 (en) | Business card management server, business card image acquisition device, business card management method, business card image acquisition method, and program | |
| WO2016164844A1 (en) | Message report processing and threat prioritization | |
| CN108170580A (en) | A kind of rule-based log alarming method, apparatus and system | |
| US11126614B2 (en) | Log query user interface | |
| CN111459763A (en) | Cross-kubernets cluster monitoring system and method | |
| CN108415748B (en) | Information display method and system, computer storage medium and device | |
| CN110545232A (en) | group message prompting method, group message prompting device, data processing method, data processing device, electronic equipment and storage equipment | |
| CN106250290A (en) | The analysis method and device of abnormal information | |
| CN107168844B (en) | Performance monitoring method and device | |
| US20220222266A1 (en) | Monitoring and alerting platform for extract, transform, and load jobs | |
| EP3699796A1 (en) | Message report processing and threat prioritization | |
| CN105117411A (en) | Server log file management system and method | |
| CN113923181A (en) | Group message processing method, device, system and storage medium | |
| JP2010061569A (en) | Failure handling management server and failure handling management program | |
| CN111756778A (en) | Server disk cleaning script pushing method and device and storage medium | |
| CN112990308A (en) | Method, device and equipment for monitoring printing content | |
| CN107644463A (en) | A kind of two-dimensional code scanning Work attendance method | |
| CN109491841A (en) | A method of improving Spark on yarn real-time task reliability |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20140813 |