CN106126672A - A kind of update method of Linking All Classes network monitoring daily record - Google Patents

A kind of update method of Linking All Classes network monitoring daily record Download PDF

Info

Publication number
CN106126672A
CN106126672A CN201610490941.7A CN201610490941A CN106126672A CN 106126672 A CN106126672 A CN 106126672A CN 201610490941 A CN201610490941 A CN 201610490941A CN 106126672 A CN106126672 A CN 106126672A
Authority
CN
China
Prior art keywords
daily record
data
network monitoring
value
tables
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Withdrawn
Application number
CN201610490941.7A
Other languages
Chinese (zh)
Inventor
陈中伟
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Anhui Ke Cheng Information Technology Co Ltd
Original Assignee
Anhui Ke Cheng Information Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Anhui Ke Cheng Information Technology Co Ltd filed Critical Anhui Ke Cheng Information Technology Co Ltd
Priority to CN201610490941.7A priority Critical patent/CN106126672A/en
Publication of CN106126672A publication Critical patent/CN106126672A/en
Withdrawn legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F16/00Information retrieval; Database structures therefor; File system structures therefor
    • G06F16/10File systems; File servers
    • G06F16/13File access structures, e.g. distributed indices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F16/00Information retrieval; Database structures therefor; File system structures therefor
    • G06F16/10File systems; File servers
    • G06F16/18File system types
    • G06F16/1805Append-only file systems, e.g. using logs or journals to store data
    • G06F16/1815Journaling file systems

Abstract

A kind of update method of Linking All Classes network monitoring daily record, set up mapping table, described mapping table storage has key value, tables of data, data base, the corresponding relation of API daily record, each data base comprises multiple tables of data, in each tables of data, record has the value value corresponding with key value, the invention has the beneficial effects as follows: the update method of the Linking All Classes network monitoring daily record of the present invention passes through Distributed Calculation, can information relevant for daily record be enriched in the middle of the network monitoring daily record of magnanimity in the way of unifying and being prone to retrieval and inquisition, ensure that real-time and the effectiveness of information, the efficient retrieval of the information of being conducive to and inquiry.

Description

A kind of update method of Linking All Classes network monitoring daily record
Technical field
The present invention relates to network monitoring daily record, especially relate to the update method of a kind of Linking All Classes network monitoring daily record.
Background technology
Along with constantly the expanding of scope of the enterprise, being continuously increased of the network bandwidth, the quantity of the daily record of corresponding network monitoring Also constantly increasing, difficulty and the workload of network monitoring increase the most therewith.Such as, when pinpointing the problems we it is to be appreciated that Which employee that ip address in daily record is corresponding is, the ip address of access is a what kind of address, or the territory accessed Name is the safest etc., and can only carry out manual association by the different data base of lookup under existence conditions and just can know that above Information, this obvious efficiency is the lowest.
Summary of the invention
The present invention is the update method of a kind of Linking All Classes network monitoring daily record provided for overcoming the deficiencies in the prior art.
The technical solution used in the present invention is: the update method of a kind of Linking All Classes network monitoring daily record, it is characterised in that build Vertical mapping table, described mapping table storage has key value, tables of data, data base, the corresponding relation of API daily record, each number Comprising multiple tables of data according to storehouse, in each tables of data, record has the value value corresponding with key value, and described update method also includes Following steps: S1, acquisition network monitoring daily record are also updated, by described network monitoring daily record to be sent to Message Processing system System;S2, each node of message handling system obtain described network monitoring daily record;S3, traversal obtain described network monitoring daily record Data in key value and value value;S4, according in S3 obtain each key value search from described mapping table accordingly Data base and tables of data;S5, generation trusted file list: comprise the following steps: obtain each system literary composition in system disk Unique mark of part;By described identification record in a dynamic library file;According to described dynamic library file, generate a trusted file List.From the sequence that the hash value of each system file of described dynamic library file is formed, form described trusted file row Table.
As a further improvement on the present invention, described dynamic base can dynamically apply for the hash value of multiple described system file.
The invention has the beneficial effects as follows: the update method of the Linking All Classes network monitoring daily record of the present invention passes through distributed meter Calculating, the network monitoring daily record that information relevant for daily record can be enriched in the way of unifying and being prone to retrieval and inquisition magnanimity is worked as In, it is ensured that the efficient retrieval of the real-time of information and effectiveness, beneficially information and inquiry.
Accompanying drawing explanation
Fig. 1 is the FB(flow block) of the present invention.
Detailed description of the invention
Below in conjunction with the accompanying drawings, the present invention is described further.
As shown in Figure 1, embodiment 1: the technical solution used in the present invention is: the renewal of a kind of Linking All Classes network monitoring daily record Method, it is characterised in that set up mapping table, described mapping table storage has key value, tables of data, data base, API day The corresponding relation of will, each data base comprises multiple tables of data, and in each tables of data, record has the value value corresponding with key value, Described update method is further comprising the steps of: S1, obtains network monitoring daily record and is also updated, by described network monitoring daily record with It is sent to message handling system;S2, each node of message handling system obtain described network monitoring daily record;S3, traversal obtain Key value in the data of described network monitoring daily record and value value;S4, according in S3 obtain each key value from described correspondence Relation table is searched corresponding data base and tables of data;S5, generation trusted file list: comprise the following steps: obtain system Unique mark of each system file in disk;By described identification record in a dynamic library file;According to described dynamic library text Part, generates a trusted file list.
Embodiment 2: the technical solution used in the present invention is: the update method of a kind of Linking All Classes network monitoring daily record, it is special Levying and be, set up mapping table, described mapping table storage has the corresponding pass of key value, tables of data, data base, API daily record System, each data base comprises multiple tables of data, and in each tables of data, record has the value value corresponding with key value, described renewal side Method is further comprising the steps of: S1, acquisition network monitoring daily record are also updated, by described network monitoring daily record to be sent to message Processing system;S2, each node of message handling system obtain described network monitoring daily record;S3, traversal obtain described network prison Key value in the data of control daily record and value value;S4, according in S3 obtain each key value look into from described mapping table Look for corresponding data base and tables of data;S5, generation trusted file list: comprise the following steps: obtain in system disk each Unique mark of system file;By described identification record in a dynamic library file;According to described dynamic library file, generating one can Letter listed files.Corresponding tables of data is searched using the value value of acquisition in described S3 step as search condition and obtains phase The data answered.
Embodiment 3: the technical solution used in the present invention is: the update method of a kind of Linking All Classes network monitoring daily record, it is special Levying and be, set up mapping table, described mapping table storage has the corresponding pass of key value, tables of data, data base, API daily record System, each data base comprises multiple tables of data, and in each tables of data, record has the value value corresponding with key value, described renewal side Method is further comprising the steps of: S1, acquisition network monitoring daily record are also updated, by described network monitoring daily record to be sent to message Processing system;S2, each node of message handling system obtain described network monitoring daily record;S3, traversal obtain described network prison Key value in the data of control daily record and value value;S4, according in S3 obtain each key value look into from described mapping table Look for corresponding data base and tables of data;S5, generation trusted file list: comprise the following steps: obtain in system disk each Unique mark of system file;By described identification record in a dynamic library file;According to described dynamic library file, generating one can Letter listed files.Being run after fame with key-value by the data content found weighs newly is packaged into the data of json form, will encapsulation After the initial data combination of data and described network monitoring daily record.
Embodiment 4: the technical solution used in the present invention is: the update method of a kind of Linking All Classes network monitoring daily record, it is special Levying and be, set up mapping table, described mapping table storage has the corresponding pass of key value, tables of data, data base, API daily record System, each data base comprises multiple tables of data, and in each tables of data, record has the value value corresponding with key value, described renewal side Method is further comprising the steps of: S1, acquisition network monitoring daily record are also updated, by described network monitoring daily record to be sent to message Processing system;S2, each node of message handling system obtain described network monitoring daily record;S3, traversal obtain described network prison Key value in the data of control daily record and value value;S4, according in S3 obtain each key value look into from described mapping table Look for corresponding data base and tables of data;S5, generation trusted file list: comprise the following steps: obtain in system disk each Unique mark of system file;By described identification record in a dynamic library file;According to described dynamic library file, generating one can Letter listed files.Data after combination are stored in a network log information retrieval system.
Embodiment 5: the technical solution used in the present invention is: the update method of a kind of Linking All Classes network monitoring daily record, it is special Levying and be, set up mapping table, described mapping table storage has the corresponding pass of key value, tables of data, data base, API daily record System, each data base comprises multiple tables of data, and in each tables of data, record has the value value corresponding with key value, described renewal side Method is further comprising the steps of: S1, acquisition network monitoring daily record are also updated, by described network monitoring daily record to be sent to message Processing system;S2, each node of message handling system obtain described network monitoring daily record;S3, traversal obtain described network prison Key value in the data of control daily record and value value;S4, according in S3 obtain each key value look into from described mapping table Look for corresponding data base and tables of data;S5, generation trusted file list: comprise the following steps: obtain in system disk each Unique mark of system file;By described identification record in a dynamic library file;According to described dynamic library file, generating one can Letter listed files.From the sequence that the hash value of each system file of described dynamic library file is formed, formation is described can message Part list.
Embodiment 6: the technical solution used in the present invention is: the update method of a kind of Linking All Classes network monitoring daily record, it is special Levying and be, set up mapping table, described mapping table storage has the corresponding pass of key value, tables of data, data base, API daily record System, each data base comprises multiple tables of data, and in each tables of data, record has the value value corresponding with key value, described renewal side Method is further comprising the steps of: S1, acquisition network monitoring daily record are also updated, by described network monitoring daily record to be sent to message Processing system;S2, each node of message handling system obtain described network monitoring daily record;S3, traversal obtain described network prison Key value in the data of control daily record and value value;S4, according in S3 obtain each key value look into from described mapping table Look for corresponding data base and tables of data;S5, generation trusted file list: comprise the following steps: obtain in system disk each Unique mark of system file;By described identification record in a dynamic library file;According to described dynamic library file, generating one can Letter listed files.Described dynamic base can dynamically apply for the hash value of multiple described system file.
Those skilled in the art are it is to be understood that the protection scheme of the present invention is not limited only to the above embodiments, it is also possible to Various permutation and combination and conversion is carried out, on the premise of spirit of the present invention, to the present invention on the basis of above-described embodiment The various conversion carried out all fall within protection scope of the present invention.

Claims (2)

1. the update method of a Linking All Classes network monitoring daily record, it is characterised in that set up mapping table, described corresponding relation Table storage has key value, tables of data, data base, the corresponding relation of API daily record, and each data base comprises multiple tables of data, each number Having the value value corresponding with key value according to record in table, described update method is further comprising the steps of: S1, acquisition network monitoring day Will is also updated, by described network monitoring daily record to be sent to message handling system;S2, each node of message handling system Obtain described network monitoring daily record;S3, traversal obtain the key value in the data of described network monitoring daily record and value value;S4、 Each key value according to obtaining in S3 searches corresponding data base and tables of data from described mapping table;S5, generate can Letter listed files: comprise the following steps: obtain unique mark of each system file in system disk;Described identification record is existed In one dynamic library file;According to described dynamic library file, generate a trusted file list;From each system of described dynamic library file In the sequence that the hash value of system file is formed, form described trusted file list.
The update method of Linking All Classes network monitoring daily record the most according to claim 1, it is characterised in that described dynamic base can Dynamically apply for the hash value of multiple described system files.
CN201610490941.7A 2016-06-27 2016-06-27 A kind of update method of Linking All Classes network monitoring daily record Withdrawn CN106126672A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201610490941.7A CN106126672A (en) 2016-06-27 2016-06-27 A kind of update method of Linking All Classes network monitoring daily record

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201610490941.7A CN106126672A (en) 2016-06-27 2016-06-27 A kind of update method of Linking All Classes network monitoring daily record

Publications (1)

Publication Number Publication Date
CN106126672A true CN106126672A (en) 2016-11-16

Family

ID=57284298

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201610490941.7A Withdrawn CN106126672A (en) 2016-06-27 2016-06-27 A kind of update method of Linking All Classes network monitoring daily record

Country Status (1)

Country Link
CN (1) CN106126672A (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108512689A (en) * 2017-12-15 2018-09-07 中国平安财产保险股份有限公司 Micro services business monitoring method and server

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101505245A (en) * 2009-03-06 2009-08-12 成都市华为赛门铁克科技有限公司 Method and apparatus for sending log information
CN102594564A (en) * 2012-02-22 2012-07-18 中国船舶重工集团公司第七0九研究所 Equipment for traffic guidance information security management
CN102930207A (en) * 2012-04-27 2013-02-13 北京金山安全软件有限公司 API log monitoring method and device
CN104965935A (en) * 2015-08-06 2015-10-07 携程计算机技术(上海)有限公司 Update method for network monitoring log

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101505245A (en) * 2009-03-06 2009-08-12 成都市华为赛门铁克科技有限公司 Method and apparatus for sending log information
CN102594564A (en) * 2012-02-22 2012-07-18 中国船舶重工集团公司第七0九研究所 Equipment for traffic guidance information security management
CN102930207A (en) * 2012-04-27 2013-02-13 北京金山安全软件有限公司 API log monitoring method and device
CN104965935A (en) * 2015-08-06 2015-10-07 携程计算机技术(上海)有限公司 Update method for network monitoring log

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108512689A (en) * 2017-12-15 2018-09-07 中国平安财产保险股份有限公司 Micro services business monitoring method and server

Similar Documents

Publication Publication Date Title
CN105138592B (en) A kind of daily record data storage and search method based on distributed structure/architecture
IL273860A (en) Event context management system
TW201800967A (en) Method and device for processing distributed streaming data
CN107241221B (en) Support the network management protocol data unified processing system and method for different network management protocols
CN104965935B (en) The update method of network monitoring daily record
WO2015109250A1 (en) CREATING NoSQL DATABASE INDEX FOR SEMI-STRUCTURED DATA
CN105072196B (en) The storage of distributed data packet, retrogressive method and system
CN106534164B (en) Effective virtual identity depicting method based on cyberspace user identifier
CN104317966A (en) Dynamic indexing method applied to quick combined querying of big electric power data
US9723045B2 (en) Communicating tuples in a message
CN106528641B (en) Data storage method and device and communication gateway machine
CN103246963B (en) Based on the staffs training system of Internet of Things
CN103838770A (en) Logic data partition method and system
CN104462421A (en) Multi-tenant expanding method based on Key-Value database
CN102609464A (en) Method and device for associative table query of MONGODB shards
CN107665246A (en) Dynamic date migration method and chart database cluster based on chart database
CN104346466A (en) Method and device of adding new attribute data in database
CN103856580A (en) Access method for IPv6 client to IPv4 server
CN103729479A (en) Web page content statistical method and system based on distributed file storage
CN105373607A (en) Method for compressing SQL access log of power business system
CN106790749A (en) A kind of method that optimizing field name resolution speed is updated based on hosts
RU2014136486A (en) METHOD AND TECHNICAL INSPECTION SYSTEM AND THE MACHINE-READABLE DATA CARRIER corresponding to them
CN106126671A (en) A kind of update method of network log
Choi et al. Improving database system performance by applying NoSQL
CN106126672A (en) A kind of update method of Linking All Classes network monitoring daily record

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
WW01 Invention patent application withdrawn after publication

Application publication date: 20161116

WW01 Invention patent application withdrawn after publication