CN111769996A - Equipment monitoring method applied to complex network environment - Google Patents
Equipment monitoring method applied to complex network environment Download PDFInfo
- Publication number
- CN111769996A CN111769996A CN202010907365.8A CN202010907365A CN111769996A CN 111769996 A CN111769996 A CN 111769996A CN 202010907365 A CN202010907365 A CN 202010907365A CN 111769996 A CN111769996 A CN 111769996A
- Authority
- CN
- China
- Prior art keywords
- data
- network
- area
- information
- module
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/02—Standardisation; Integration
- H04L41/0213—Standardised network management protocols, e.g. simple network management protocol [SNMP]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/06—Protocols specially adapted for file transfer, e.g. file transfer protocol [FTP]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L69/00—Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
- H04L69/22—Parsing or analysis of headers
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
- Computer And Data Communications (AREA)
Abstract
The invention relates to an equipment monitoring method applied to a complex network environment, which belongs to the technical field of operation and maintenance, and comprises the following steps of S1, starting a snmp protocol agent in advance for network equipment needing to be monitored; s2, pre-combing the management information item OID of the network equipment; s3, obtaining the performance index information data of the network equipment needing to be monitored by using the class in the support class library for the snmp protocol operation packaged in the high-level programming language. The invention has the advantages that the information is acquired by regular acquisition and is bound with the device ip to form a performance information database of the local area network internal device, a network device information big data warehouse is established by using big data related processing and storage components, the network device information big data warehouse can be used for network device monitoring and alarming, and the effect of collecting the collected data in a centralized way is realized by modifying and flexibly starting and stopping related function modules.
Description
Technical Field
The invention relates to the technical field of operation and maintenance, in particular to a device monitoring method applied to a complex network environment.
Background
The standard framework for network management proposed by the international organization for standardization (i.e., the open systems interconnection management framework) divides network management into 5 major functional modules, configuration management, performance management, fault management, billing management, and security management. The Internet architecture committee proposes a corresponding network management standard, namely a Simple Network Management Protocol (SNMP), on the basis of the framework.
As is known, each device in a computer room needs to communicate through an IP network, and SNMP is a network management standard based on the TCP/IP protocol suite, which is a standard protocol for managing network nodes (e.g., servers, workstations, routers, switches, etc.) in an IP network. SNMP enables a network administrator to improve network management efficiency, discover and solve network problems in time, and plan the growth of the network. At present, when a complex network environment is involved, an effective method for monitoring network equipment does not exist.
Disclosure of Invention
The invention aims to provide a device monitoring method applied to a complex network environment, which solves the defects of the prior art.
In order to achieve the purpose, the invention adopts the following technical scheme:
a device monitoring method applied to a complex network environment comprises the following steps:
s1, for the network equipment needing to be monitored, starting a snmp protocol agent in advance;
s2, pre-combing the management information item OID of the network equipment;
s3, acquiring performance index information data of the network equipment to be monitored by using classes in a support class library for the snmp protocol operation, which are encapsulated in the high-level programming language;
s4, for network equipment in the same network area with the big data component, installing a collecting device on one server equipment, configuring the equipment ip and equipment type to be monitored in the area and the relevant interface address of the big data component, and finally starting a data collecting and data sending module in the collecting device, namely collecting the performance index information data of the network equipment in the area regularly;
s5, for the equipment performance index collection of the sub-network group which is not in a network area with the big data component, firstly, a DMZ zone needs to be established, the zone allows the collection device which is not in a network area with the big data component to write data, and the collection equipment which is in the same network area with the big data component to download data files; installing a collecting device on a server device which is not in a network area with the big data component, configuring the device ip and the device type which need to be monitored in the area, configuring the ip of a DMZ area data exchange server and a data transmission mode, then starting a data collecting module, a data packaging module and a data transferring module, periodically sending a file with index information data to a network management device, finally modifying the collecting device which is installed in the same network area with the big data component, starting a data downloading module and a data analyzing module, obtaining a device performance data file of the DMZ area, analyzing the information, and sending the information to the big data component.
Preferably, in S1, the SNMP agent is a network management software template on the managed device, which possesses the relevant management information of the local devices and is used to convert them into SNMP-compatible format for delivery to the NMS.
Preferably, in S2, the OID means that corresponding information in the MIB of the device has an OID number, and the OID number is a unique identifier of the performance indicator item.
Preferably, in S3, different high-level programming languages have different classes of operation snmp protocols, and the obtaining process is: the management station extracts the interested object identification into an application program, sends out a GetRequest message, and acquires the information of a specified object from network equipment with an SNMP management agent; the management agent responds to the GetRequest message with a GetResponse message.
Preferably, in S4, the acquisition device installed in the server capable of communicating with the big data component only needs to start the data acquisition and data transmission module under the condition of a pure network without an isolation area; if the isolation area network exists and the isolation area network equipment needs to be monitored, a data acquisition module, a data downloading module, a data analysis module and a data sending module need to be started, wherein the data downloading module and the data analysis module perform data transfer cooperative work for the isolation area data acquisition device.
Preferably, in S5, when there is a network area isolated from the big data component, a DMZ area needs to be established, where the DMZ area allows a collection device that is not in a network area with the big data component to write data, and a collection device that is in the same network area with the big data component to download data files, where the collection device is installed on a server device that is not in a network area with the big data component, the device ip and the device type that need to be monitored in the area are configured, and a network manager or a bridge device ip and a data transmission mode that communicate with the network area where the big data component is located are configured, then a data collection, data encapsulation and data transfer module is started, files with index information data are periodically sent to the network manager device, and finally, the collection device that is installed in the same network area with the big data component is modified, and starting a data downloading and data analyzing module, acquiring an equipment performance data file of the DMZ area, analyzing information in the data file, and sending the information to the big data assembly.
The beneficial effects of the invention are as follows:
1. the information is acquired by regular acquisition and is bound with the device ip to form a performance information database of the local area network internal device, and a network device information big data warehouse is established by using a big data related processing and storing component and can be used for network device monitoring and alarming.
2. The data acquisition device needs to have the capacity of data acquisition, data packaging, data transfer, data downloading, data analysis and data transmission (sending to big data), and when the data acquisition device is installed in different areas, related functional modules are flexibly started and stopped by modifying configuration, so that the effect of centralized collection of acquired data is realized.
Drawings
FIG. 1 is a network management model of snmp;
fig. 2 illustrates a method for collecting and integrating network device performance data in a complex network environment.
Detailed Description
The technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments.
As shown in fig. 1 and 2, the area where the network device of our company is located is divided into a core area, an isolation area and a relay area, wherein a big data service platform is built in the core area, sftp service is deployed in the isolation area, and unidirectional circulation of data is realized. Therefore, in the process of implementing the invention of the equipment monitoring method applied to the complex network environment, the method comprises the following steps:
and S1, starting the snmp protocol proxy in advance for the network equipment needing to be monitored in the core area and the relay area.
And S2, management information items OID of the network equipment need to be combed in advance, for example, 1.3.6.1.2.1.25.3.3.1.2 identifies the cpu utilization of the window server equipment. And (5) sorting the information into a good form and writing the good form into a configuration file.
And S3, writing a management application program by using related java classes in org.snmp4j of java language, and acquiring performance index information data of the network equipment.
And S4, installing a collecting device on one server device in the core area, and configuring the device ip and the device type to be monitored in the area and the interface address related to the big data assembly. And finally, starting a data acquisition module, a data transmission module, a data downloading module and a data analysis module in the acquisition device, wherein the data downloading module and the data analysis module are used for continuously installing the acquisition device in cooperation to transfer data.
And S5, installing a collecting device on one server device in the relay area. Then, the device ip and the device type which need to be monitored in the area are configured, and the ip and data transmission mode (such as sftp) of the isolation area data exchange server is configured. And finally, starting a data acquisition module, a data packaging module and a data transfer module, and periodically sending the file with the index information data to the exchange server in the isolation area.
Further, in S1, the SNMP agent is a network management software template on the managed device, holds the relevant management information of the local devices, and is used to convert them into a format compatible with SNMP, and delivers them to the NMS.
Further, in S2, the OID means that there is an OID number in the corresponding information in the MIB of the device, and the OID number is a unique identifier of the performance indicator item, and the identifier needs to be queried by a device manufacturer. The MIB browsing software of the iReasoining MIBBrowser is used, and the MIB package provided by the equipment manufacturer is imported into the browser, so that some OID related information of the equipment can be seen.
Further, in S3, different high-level programming languages have different classes for operating the snmp protocol. The acquisition process is detailed as follows: the management station extracts the interested object identification into the application program, sends out a GetRequest message, and acquires the information of the specified object from the network equipment with the SNMP management agent. The management agent responds to the GetRequest message with a GetResponse message. GetNextRequest is a message used by a management station to query information, and it can get the next object in a table to a specified object to traverse the entire table. Get implements the query of the device information, and if the configuration of the agent needs to be changed, the management station needs to send a SetRequest message to the managed agent. SetRequest is commonly used to remotely configure network devices.
Further, in S4, the acquisition device installed in the server capable of communicating with the big data component is only required to open the data acquisition and data transmission module under the condition of a pure network without an isolation area. However, if there is an isolation area network and the isolation area network device needs to be monitored, the data acquisition module, the data download module, the data analysis module, and the data transmission module need to be started, where the data download module and the data analysis module perform a cooperative work of data transfer for the isolation area data acquisition device.
Further, in S5, when there is a network area isolated from the big data component, a DMZ zone needs to be established first, which allows the acquisition devices in the "military" zone to write data, and the acquisition devices in the "trusted" zone to download data files. The method comprises the steps that a collecting device is installed on one server device in a military area, the device ip and the device type which need to be monitored in the area are configured, and a network manager or a network bridge device ip and a data transmission mode (such as sftp) which are communicated with a network area where a big data assembly is located are configured. And then starting a data acquisition module, a data packaging module and a data transfer module, and periodically sending the file with the index information data to network management equipment. And finally, modifying the acquisition device installed in the trust zone, starting a data downloading and data analyzing module, acquiring an equipment performance data file of the DMZ zone, analyzing the information in the data file, and sending the information to the big data assembly.
The invention provides a device monitoring method applied to a complex network environment, which comprises the following two contents:
c1: based on a simple network management protocol (snmp protocol), a Network Management System (NMS) can obtain management information of managed network nodes (e.g., servers, workstations, routers, switches, databases, etc.) in an ip network, where the management information includes performance information of the network nodes, such as cpu usage rate of service, memory usage, number of bytes in and out of the network, etc. The information is acquired by regular acquisition and is bound with the device ip to form a performance information database of the local area network internal device, and a network device information big data warehouse is established by using a big data related processing and storing component and can be used for network device monitoring and alarming.
C2: in a complex network environment, in order to ensure the internal security of each subnet area, the subnets are not directly connected to each other, and data exchange needs to be performed through devices in an isolation zone (hereinafter referred to as "DMZ zone"). Under the circumstances, the data acquisition device needs to have the capabilities of data acquisition, data packaging, data transfer, data downloading, data analysis and data transmission (sending to big data), and when the data acquisition device is installed in different areas, the related functional modules are flexibly started and stopped by modifying configuration, so that the effect of centralized collection of acquired data is realized.
Referring to fig. 1 and 2:
(1) get, executed by the management station, to obtain the MIB object value of the agent;
(2) set, executed by the management station, setting the MIB object value of the agent;
(3) trap, unsolicited information sent by agents, asynchronously reports important events to the management station.
Specifically, the management station extracts an interested object identifier into an application program, sends out a GetRequest message, and acquires information of a specified object from network equipment having an SNMP management agent. The management agent responds to the GetRequest message with a GetResponse message. GetNextRequest is a message used by a management station to query information, and it can get the next object in a table to a specified object to traverse the entire table. Get implements the query of the device information, and if the configuration of the agent needs to be changed, the management station needs to send a SetRequest message to the managed agent. SetRequest is commonly used to remotely configure network devices
The above embodiments are merely illustrative of the principles and effects of the present invention, and do not limit the invention. Modifications and variations can be made to the above-described embodiments by those skilled in the art without departing from the spirit and scope of the present invention. Accordingly, it is intended that all equivalent modifications or changes which can be made by those skilled in the art without departing from the spirit and technical spirit of the present invention be covered by the claims of the present invention.
The above description is only for the preferred embodiment of the present invention, but the scope of the present invention is not limited thereto, and any person skilled in the art should be considered to be within the technical scope of the present invention, and the technical solutions and the inventive concepts thereof according to the present invention should be equivalent or changed within the scope of the present invention.
Claims (6)
1. A device monitoring method applied to a complex network environment is characterized by comprising the following steps:
s1, for the network equipment needing to be monitored, starting a snmp protocol agent in advance;
s2, pre-combing the management information item OID of the network equipment;
s3, acquiring performance index information data of the network equipment to be monitored by using classes in a support class library for the snmp protocol operation, which are encapsulated in the high-level programming language;
s4, for network equipment in the same network area with the big data component, installing a collecting device on one server equipment, configuring the equipment ip and equipment type to be monitored in the area and the relevant interface address of the big data component, and finally starting a data collecting and data sending module in the collecting device, namely collecting the performance index information data of the network equipment in the area regularly;
s5, for the equipment performance index collection of the sub-network group which is not in a network area with the big data component, firstly, a DMZ zone needs to be established, the zone allows the collection device which is not in a network area with the big data component to write data, and the collection equipment which is in the same network area with the big data component to download data files; installing a collecting device on a server device which is not in a network area with the big data component, configuring the device ip and the device type which need to be monitored in the area, configuring the ip of a DMZ area data exchange server and a data transmission mode, then starting a data collecting module, a data packaging module and a data transferring module, periodically sending a file with index information data to a network management device, finally modifying the collecting device which is installed in the same network area with the big data component, starting a data downloading module and a data analyzing module, obtaining a device performance data file of the DMZ area, analyzing the information, and sending the information to the big data component.
2. The method for monitoring devices in a complex network environment as claimed in claim 1, wherein in S1, the SNMP agent is a template of network management software on the managed device, which possesses the relevant management information of the local devices and is used to convert them into SNMP-compatible format for delivery to the NMS.
3. The method as claimed in claim 1, wherein in S2, the OID indicates that corresponding information in the MIB of the device has an OID number, and the OID number is a unique identifier of the performance indicator item.
4. The method according to claim 1, wherein in S3, different high-level programming languages have different classes of operating snmp protocols, and the obtaining process comprises: the management station extracts the interested object identification into an application program, sends out a GetRequest message, and acquires the information of a specified object from network equipment with an SNMP management agent; the management agent responds to the GetRequest message with a GetResponse message.
5. The method for monitoring equipment in a complex network environment as claimed in claim 1, wherein in S4, the collecting device installed in the server capable of communicating with the big data component only needs to turn on the data collecting and sending module in case of a pure network without isolation area; if the isolation area network exists and the isolation area network equipment needs to be monitored, a data acquisition module, a data downloading module, a data analysis module and a data sending module need to be started, wherein the data downloading module and the data analysis module perform data transfer cooperative work for the isolation area data acquisition device.
6. The device monitoring method applied under the complex network environment as claimed in claim 1, wherein in S5, when there is a network area isolated from the big data component, it is first necessary to establish a DMZ area that allows data to be written by a collection apparatus not in one network area with the big data component, and download data files by a collection device in the same network area with the big data component, install the collection apparatus on a server device not in one network area with the big data component, configure the ip and device type of the device to be monitored in the area, configure the ip and data transmission mode of the network management or bridge device communicating the network area where the big data component is located, then start the data collection, data encapsulation, data transfer module, send the file with index information data to the network management device periodically, and finally, modifying the acquisition device installed in the same network area with the big data assembly, starting a data downloading and data analyzing module, acquiring an equipment performance data file of the DMZ area, analyzing the information in the data file, and sending the information to the big data assembly.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010907365.8A CN111769996A (en) | 2020-09-02 | 2020-09-02 | Equipment monitoring method applied to complex network environment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010907365.8A CN111769996A (en) | 2020-09-02 | 2020-09-02 | Equipment monitoring method applied to complex network environment |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN111769996A true CN111769996A (en) | 2020-10-13 |
Family
ID=72729248
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202010907365.8A Pending CN111769996A (en) | 2020-09-02 | 2020-09-02 | Equipment monitoring method applied to complex network environment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN111769996A (en) |
Citations (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20060200547A1 (en) * | 2005-03-01 | 2006-09-07 | Edwards Anthony V V | Methods, devices, systems and computer program products for providing secure communications between managed devices in firewall protected areas and networks segregated therefrom |
| CN101473594A (en) * | 2006-06-20 | 2009-07-01 | 阿尔卡特朗讯公司 | Network service performance monitoring apparatus and methods |
| CN103442354A (en) * | 2013-09-04 | 2013-12-11 | 上海辰锐信息科技公司 | Mobile-police-terminal safety management and control system |
| CN106411646A (en) * | 2016-09-30 | 2017-02-15 | 郑州云海信息技术有限公司 | Unified monitoring method and system of multiple business networks |
| CN107294764A (en) * | 2017-04-26 | 2017-10-24 | 中国科学院信息工程研究所 | Intelligent supervision method and intelligent monitoring system |
| CN107819625A (en) * | 2017-11-13 | 2018-03-20 | 广东电网有限责任公司电力调度控制中心 | A kind of performance diagnogtics method based on electric power radio communication access device |
| CN107976969A (en) * | 2016-10-24 | 2018-05-01 | 费希尔-罗斯蒙特系统公司 | Process device situation and performance monitoring |
| CN108432202A (en) * | 2015-11-03 | 2018-08-21 | 巴科股份有限公司 | The method and system of optimization routing for the data flow in telecommunication network |
| CN109818831A (en) * | 2019-03-05 | 2019-05-28 | 山东浪潮通软信息科技有限公司 | A kind of system data dynamic monitoring device and method across private network based on DMZ |
| CN110223765A (en) * | 2018-03-01 | 2019-09-10 | 西门子医疗有限公司 | The method of fault management is executed in an electronic |
-
2020
- 2020-09-02 CN CN202010907365.8A patent/CN111769996A/en active Pending
Patent Citations (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20060200547A1 (en) * | 2005-03-01 | 2006-09-07 | Edwards Anthony V V | Methods, devices, systems and computer program products for providing secure communications between managed devices in firewall protected areas and networks segregated therefrom |
| CN101473594A (en) * | 2006-06-20 | 2009-07-01 | 阿尔卡特朗讯公司 | Network service performance monitoring apparatus and methods |
| CN103442354A (en) * | 2013-09-04 | 2013-12-11 | 上海辰锐信息科技公司 | Mobile-police-terminal safety management and control system |
| CN108432202A (en) * | 2015-11-03 | 2018-08-21 | 巴科股份有限公司 | The method and system of optimization routing for the data flow in telecommunication network |
| CN106411646A (en) * | 2016-09-30 | 2017-02-15 | 郑州云海信息技术有限公司 | Unified monitoring method and system of multiple business networks |
| CN107976969A (en) * | 2016-10-24 | 2018-05-01 | 费希尔-罗斯蒙特系统公司 | Process device situation and performance monitoring |
| CN107294764A (en) * | 2017-04-26 | 2017-10-24 | 中国科学院信息工程研究所 | Intelligent supervision method and intelligent monitoring system |
| CN107819625A (en) * | 2017-11-13 | 2018-03-20 | 广东电网有限责任公司电力调度控制中心 | A kind of performance diagnogtics method based on electric power radio communication access device |
| CN110223765A (en) * | 2018-03-01 | 2019-09-10 | 西门子医疗有限公司 | The method of fault management is executed in an electronic |
| CN109818831A (en) * | 2019-03-05 | 2019-05-28 | 山东浪潮通软信息科技有限公司 | A kind of system data dynamic monitoring device and method across private network based on DMZ |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US20020161883A1 (en) | System and method for collecting, aggregating, and coalescing network discovery data | |
| US20100228843A1 (en) | Element management system in wireless communication network | |
| CN103546343B (en) | The network traffics methods of exhibiting of network traffic analysis system and system | |
| CN101631053B (en) | EAPS ring-network topology monitoring method and system | |
| EP0762281B1 (en) | Network management with acquisition of formatted dump data from remote process | |
| CN102215132A (en) | Embedded SNMP (Simple Network Management Protocol) management end data collecting device, system and method based on database | |
| CN103516543A (en) | Filtering within device management protocol queries | |
| CN109547257B (en) | Network flow control method, device, equipment, system and storage medium | |
| CN109039701B (en) | Method and system for multiple management modes of network equipment based on MIB database | |
| CN101710862A (en) | Method and device for processing network management operation error message | |
| CN101022364A (en) | Trap message reporting method and system warning information resource/warning agent service device | |
| EP1079566A2 (en) | System management in a communications network comprising SNMP and CMIP agents | |
| CN111769996A (en) | Equipment monitoring method applied to complex network environment | |
| CN114089711B (en) | Industrial equipment control management method, electronic equipment and storage medium | |
| JPH10334013A (en) | Method and system for operation monitoring for distributed system | |
| JP5304200B2 (en) | Network management system, network management method, manager and agent | |
| JP3877557B2 (en) | Hierarchical network management system | |
| CN107612768B (en) | Windows-based local database access flow acquisition method and system | |
| KR20010055482A (en) | Converting Method of Managing Operation from service management system to Switching Command in a Integrated Network | |
| CN113407611B (en) | Data integration distribution platform and system | |
| Kazaz et al. | One approach to the development of custom SNMP agents and integration with management systems | |
| CN101964726B (en) | SNMP-based reliable data transmission method | |
| Gaspary et al. | Towards a programmable agent-based distributed architecture for enterprise application and service management | |
| Cardoso et al. | SNMP and industrial networks | |
| Piliouras | Network Management Tools |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20201013 |
|
| RJ01 | Rejection of invention patent application after publication |