KR101375099B1 - An apparatus and system for managing application delivery controller syntagmatically and managing method thereof - Google Patents

An apparatus and system for managing application delivery controller syntagmatically and managing method thereof Download PDF

Info

Publication number
KR101375099B1
KR101375099B1 KR1020130120815A KR20130120815A KR101375099B1 KR 101375099 B1 KR101375099 B1 KR 101375099B1 KR 1020130120815 A KR1020130120815 A KR 1020130120815A KR 20130120815 A KR20130120815 A KR 20130120815A KR 101375099 B1 KR101375099 B1 KR 101375099B1
Authority
KR
South Korea
Prior art keywords
adc
setting
virtual
information
monitoring
Prior art date
Application number
KR1020130120815A
Other languages
Korean (ko)
Inventor
양승호
박병욱
채현주
김윤경
김연주
Original Assignee
(주)오픈베이스
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by (주)오픈베이스 filed Critical (주)오픈베이스
Priority to KR1020130120815A priority Critical patent/KR101375099B1/en
Application granted granted Critical
Publication of KR101375099B1 publication Critical patent/KR101375099B1/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance or administration or management of packet switching networks
    • H04L41/02Arrangements for maintenance or administration or management of packet switching networks involving integration or standardization
    • H04L41/024Arrangements for maintenance or administration or management of packet switching networks involving integration or standardization using relational databases for representation of network management data, e.g. managing via structured query language [SQL]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance or administration or management of packet switching networks
    • H04L41/06Arrangements for maintenance or administration or management of packet switching networks involving management of faults or events or alarms
    • H04L41/0695Arrangements for maintenance or administration or management of packet switching networks involving management of faults or events or alarms involving fault of the network management or monitoring system

Abstract

The present invention relates to an ADC integrated management apparatus and system, and an integrated management method, which are capable of improving user convenience and also preventing fault, which may be caused by setting error, by integrally managing individual manufacturers′ ADCs having various setting methods in a consistent way. ADCs requiring different setting methods and monitoring methods for each manufacturer can be set through the ADC integrated management apparatus in a consistent way, and operation states of the ADC set in this manner can be monitored according to the same criteria, thereby obtaining the effect that improves management convenience and greatly reduces management burden of a system, where ADCs of many manufacturers coexist, by facilitating error detection. [Reference numerals] (210) Syslog monitor agent; (220) System monitor agent; (230) ADC monitor agent; (240) Database; (250) Setting unit; (255) Monitoring analyzing unit; (260) Web server

Description

An apparatus and system for managing application delivery controller syntagmatically and managing method

The present invention relates to an integrated management device, a system and an integrated management method for an application delivery controller (hereinafter referred to as an ADC), and in particular, to provide integrated management of ADCs of individual manufacturers having various configuration methods in a consistent manner. The present invention relates to an ADC integrated management device, a system, and an integrated management method which can increase the number of errors and prevent a failure caused by a configuration error in advance.

An application delivery controller (ADC) is a network device that distributes server load to coordinate application data.

Key features of these ADCs include Server Load Balancing, Firewall Load Balancing, Health Check, and Bandwidth Management.

Here, the server load distribution refers to a function that distributes the load of the server by efficiently distributing the traffic from one Internet service to the server to multiple servers providing the same service.

In more detail, the server load distribution manages a group of servers that perform the same role through a virtual IP address, and receives traffic destined for the server to a network device (ADC) having a virtual address. According to the distribution to the appropriate server. This virtual address may be referred to as a representative IP of the server group.

Recently, since most sites cannot handle the traffic of users with one server, there are several servers that play the same role, so that even if the traffic of users increases, the site operates flexibly and stably. Doing.

Server Load Balancing is a method of connecting to a server with fast response or a server with the fewest connections depending on the configuration. This method is called Load Balancing Method. There is a difference in the methods provided for each equipment.

Health check is a function that periodically checks the state of the server to which the load balancing service is applied and reflects the result to the load balancing service. There is a difference in functions provided by each manufacturer, and a health check of TFTP is usually provided for HTTP, ICMP, and TCP / U.

ADC, a network equipment, is widely used by various manufacturers such as F5, Alteon, and PIOLINK, and the settings and methods of these ADCs are not standardized. Therefore, in order to set up and manage the ADC, each manufacturer's setup method and management method must be learned separately, and if an ADC of an unfamiliar manufacturer is set up, there is a high possibility of failure due to an error.

On the other hand, the work to be performed to check the status of the equipment for each manufacturer is different, so in the case of a system failure in the case of a mixed system ADC of a variety of manufacturers it may take a long time to determine the cause of the failure.

1 is a diagram schematically illustrating a general embodiment in which an ADC is used.

As shown in the drawing, a conventional server load balancing management system includes a web server 10 through which a user accesses a virtual address, application servers 14, 15, and 16 stored in an application, and between the web server 10 and an application server. It consists of an ADC 12 that distributes the load.

The illustrated configuration is an example configuration in which one ADC 12 distributes load across three practical application servers 14, 15, and 16, but in practice multiple ADCs are associated with multiple Real Servers. It is common to set up and monitor the status of a plurality of virtual servers that are connected in various ways and logically configured within the corresponding physical server. In particular, since various service providers are repeatedly merging and splitting, and various manufacturer ADCs are selected according to need, a plurality of manufacturer ADCs are often mixed in a real site.

Therefore, in the related art, it is difficult to change the ADC configuration, check the ADC configuration history, check the virtual server status, and analyze the cause in case of failure since it connects to several hundreds of ADCs individually to manage settings and monitor each function individually.

Although some manufacturers provide a system for managing a plurality of their own ADCs, their effectiveness was low in the case of mixed ADCs.

Therefore, there is a growing demand for an integrated management system and method that allows the ADC to be set up regardless of the manufacturer and the condition can be monitored according to the same criteria even in the presence of mixed ADCs of various manufacturers.

Korea Patent Registration No. 10-0511687 Korea Patent Registration No. 10-0507707

An object of the embodiment of the present invention devised to solve the above problems is to set up the ADC in a consistent manner, each of which requires a different setting method and monitoring method for each manufacturer through the ADC integrated management device, through the same operation state of the set ADC It provides an integrated application delivery controller management system, system, and integrated management method that improves management convenience and makes error detection easier by enabling monitoring according to standards.

Another object of the embodiment of the present invention is to receive the configuration information as a standardized setting item for the ADC configuration, and to modify according to each manufacturer, and then connected by the manufacturer-specific access method to perform the settings lower than the virtual server according to the manufacturer If there is, the lowest setting unit is regarded as a virtual server, and a manufacturer that does not provide a pool function for managing a plurality of virtual servers as a group is provided by providing a virtual pool function by setting a plurality of designated virtual servers as a group. It is to provide integrated application management controller, system, and integrated management method of application delivery controller that can configure all possible manufacturers' ADCs in a standard setting method independent of the manufacturer and monitor them in a hierarchical structure of pools and virtual servers.

ADC integrated management system of the present invention for achieving the above object comprises a plurality of real server having the same content for load balancing corresponding to the request of the content by the user terminal; A plurality of types of application delivery controllers (ADCs) for connecting the user terminal requesting content according to the load balancing setting to one of the virtual servers corresponding to the real server in a load balancing manner; Collecting manager setting information about a setting item standardized to be insensitive to the type and setting method of the ADC, converting the collected setting information according to a preset conversion condition corresponding to the type of the ADC to be set, and according to the type of the ADC After connecting to the corresponding ADC by the connection method, the ADC is set based on the converted setting information, but if there is a lower setting unit of the virtual server so that the management unit becomes a virtual server, the lower setting unit is replaced with a virtual server. If the pool function for integrated management of a plurality of virtual server groups is not supported, the ADC integrated management device may be configured to group loads of the specified virtual servers into a virtual pool to perform load balancing.

The ADC integrated management device includes an information collector for collecting log information and monitoring information from the plurality of ADC to store in a database; A web server for outputting monitoring information about the plurality of ADCs and the real server and providing a web page for receiving administrator setting information for the ADC; Receive administrator setting information about the ADC provided through the web server, convert the setting information according to the type of the target ADC, set the target ADC, and integrate the plurality of virtual servers for the ADC that does not support the pool. If there is a setting, the virtual pool is set up by applying the setting to each of the specified virtual servers, and the virtual server setting for the ADC of the type in which the virtual service setting under the virtual server exists is used instead of the virtual server. Setting unit to perform through; Generate and provide a standardized monitoring result for each pool and virtual server from the log and monitoring information for the plurality of ADCs collected through the information collection unit, and the log for the virtual service under the virtual server is the corresponding virtual service. It may include a monitoring analysis unit that provides a monitoring result by replacing with a virtual server.

The ADC integrated management device may set an account of a different security level for each virtual server to be set.

ADC integrated management apparatus according to an embodiment of the present invention includes an information collector for collecting log information and monitoring information from the plurality of ADC to store in a database; A web server for outputting monitoring information about the plurality of ADCs and the real server and providing a web page for receiving administrator setting information for the ADC; Receive administrator setting information about the ADC provided through the web server, convert the setting information according to the type of the target ADC, set the target ADC, and integrate the plurality of virtual servers for the ADC that does not support the pool. If there is a setting, the virtual pool is set up by applying the setting to each of the specified virtual servers, and the virtual server setting for the ADC of the type in which the virtual service setting under the virtual server exists is used instead of the virtual server. A setting unit for performing the setting and storing the setting information; Generate and provide a standardized monitoring result for each pool and virtual server from the log and monitoring information for the plurality of ADCs collected through the information collection unit, and the log for the virtual service under the virtual server is the corresponding virtual service. It characterized in that it comprises a monitoring analysis unit to provide a monitoring result by replacing with a virtual server.

The monitoring analyzer may be connected in a different connection scheme according to the ADC type to determine the change of the ADC setting, and the setting unit may restore the ADC setting to the previously stored setting by the administrator's selection.

ADC integrated management method according to another embodiment of the present invention comprises a request receiving step for the application delivery controller (ADC) receives a request for content by the user terminal; A load balancing step of connecting the user terminal with one of a plurality of virtual servers configured in a real server according to a set load balancing scheme; The ADC integrated management apparatus collects the manager setting information for the standardized setting items so as to be insensitive to the type and the setting method of the ADC, and converts the collected setting information according to a preset conversion condition corresponding to the type of the ADC to be set. After connecting to the ADC by the connection method according to the type of ADC, the ADC is set based on the converted configuration information, and if there is a virtual server lower setting unit so that the management unit becomes a virtual server, the lower setting unit is virtualized. If it is regarded as a server, and does not support a pool function for managing a plurality of virtual server groups, a setting step of grouping the designated virtual servers into a virtual pool to perform load balancing setting; characterized in that it comprises a.

The ADC integrated management apparatus may further include a monitoring step of analyzing information provided from the ADC to provide an administrator with a standardized monitoring result in a hierarchical relationship between a virtual server, a pool, and a real server.

The setting step may include collecting administrator setting information by providing a common setting form in which a different setting method is integrated into a standardized setting item according to the ADC type to a user; It may include providing a history of the settings and restoring the ADC's settings to the existing settings as the administrator selects.

The monitoring step includes the steps of monitoring a fault associated with the ADC and load balancing, displaying a recovery or resolution state of the fault, and providing a pop-up and system log alert notification to the user; Monitoring the status of the ADC, storing the contents of the monitoring in a database, and displaying the monitoring result.

The setting step may include setting an account having different access rights for each ADC or virtual server.

The monitoring step may include collecting monitoring information of the ADC by identifying the type of the ADC and accessing it through a protocol or API supported by the ADC of the type when an event related to a system log or ADC configuration change occurs from the ADC. have.

ADC integrated management method according to another embodiment of the present invention includes an information collection step of collecting and storing log information and monitoring information from the plurality of types of ADC through an information collector; An interface step of outputting monitoring information about the plurality of ADCs and the actual server through a web server, and receiving administrator setting information on the ADC; A setting unit receives the administrator setting information for the ADC provided through the web server, converts the setting information according to the type of the target ADC to set the target ADC, but does not support a plurality of virtual servers for the ADC that does not support the pool. If there is an integration setting for the virtual server, the virtual pool is set up by applying the settings to each of the specified virtual servers, and the virtual server setting for the ADC of the type in which the virtual service setting under the virtual server exists is used instead of the virtual server. A setting step performed through setting and storing setting information; The monitoring analyzer generates and provides a standardized monitoring result in units of pools and virtual servers from the logs and monitoring information of the plurality of ADCs collected through the information collecting step, and logs the virtual service under the virtual server. The monitoring step of providing a monitoring result by replacing the virtual service with a virtual server; characterized in that it comprises a.

Application delivery controller integrated management device, system and integrated management method according to an embodiment of the present invention configured as described above is set in a consistent manner to the ADC requiring a different setting method and monitoring method for each manufacturer through the ADC integrated management device In this way, it is possible to monitor the operation status of the set ADC according to the same criteria, thereby improving management convenience and easily identifying errors, thereby greatly reducing the management burden on a system in which ADCs of various manufacturers are mixed.

Application delivery controller integrated management device, system and integrated management method according to an embodiment of the present invention to receive the configuration information as a standardized setting item for the ADC configuration to automatically perform the settings for each manufacturer than the virtual server depending on the manufacturer If there is a lower setting, the lowest setting unit is replaced with a virtual server, and a manufacturer that does not provide a pool function for merging and managing multiple virtual servers (real servers) sets a plurality of designated virtual servers as a group. By providing the virtual pool function, all supported manufacturers' ADCs can be set to the standard setting method irrelevant to the manufacturer, and the pool and virtual server hierarchy can be monitored consistently to increase the convenience of setting, reduce the possibility of setting error, It has the effect of being able to respond quickly to errors that occur. .

In addition, the integrated application delivery controller management system according to an embodiment of the present invention can be separately managed not only in the ADC unit but also in the virtual server unit, thereby making it easy to manage access rights by changing access rights to them. have.

1 is an exemplary diagram illustrating a configuration of a general system in which an ADC is used.
2 is a diagram showing the configuration of the ADC integrated management system according to the present invention.
3 is a view showing in detail the configuration of the ADC integrated management apparatus according to the present invention.
Figure 4 is a flow chart showing the flow of the ADC integrated management method according to the present invention.
5 is a conceptual diagram showing an example of ADC manufacturers interoperable with the ADC integrated management apparatus according to the present invention.
Figure 6 is a view showing the flow of account management for each ADC according to the present invention.
7 is a view showing the flow of account management for each ADC service according to the present invention.

Hereinafter, preferred embodiments of the present invention will be described in detail with reference to the accompanying drawings.

2 is a view showing the configuration of the ADC integrated management system according to the present invention, Figure 3 is a view showing a specific configuration of the ADC integrated management apparatus according to the present invention, Figure 4 is a ADC integrated management according to the present invention A flow chart showing the flow of the method.

As shown in FIG. 2, the ADC integrated management system according to the present invention includes a plurality of real servers 400 corresponding to a content request, having the same contents for load balancing, and a general request for contents according to load balancing settings. Insensitive to the types and setting methods of the plurality of types of application delivery controllers (ADCs) 300 and the ADCs 300 for connecting a user terminal (not shown) to one of virtual servers logically configured in the real server 400. Collect setting information from the manager terminal 100 through a standardized setting item, and converts the collected setting information according to a preset conversion condition according to the type of the ADC 300 to the type of the ADC 300. In accordance with the connection and setting method according to the ADC 300 includes an ADC integrated management device 200 for setting in accordance with the setting information and monitoring the status of the set ADC.

When the ADC integrated management apparatus 200 sets up the various types of ADCs 300, the setting and management unit becomes a virtual server. If the manufacturer ADC 300 has a virtual server lower setting unit, the corresponding lower setting unit Is considered a virtual server. For example, the ADC 300 of the manufacturer, in which the virtual server is the lowest setting unit, sets the ADC 300 according to the setting information, and if there is a lower setting unit such as a virtual service under the virtual server, the virtual service is regarded as a virtual server. Set to manage. According to this setting, the operation status monitoring of the ADC can be basically integrated in the unit of the virtual server.

On the other hand, some manufacturers' ADCs consider the pool as a parent management object of the virtual server, such as grouping virtual servers (physical servers) into pools and setting the load balancing mode for that pool. It does not support this pool function.

Accordingly, the ADC integrated management apparatus 200 according to an embodiment of the present invention provides a virtual pool function of setting a plurality of virtual servers as a group and managing virtual servers in the group as if they were set as a pool. Accordingly, if load balancing is set on a per-pool basis, even if the ADC does not support the pool function, the load balancing setting may be collectively reflected in a preset group and managed as if the pool function is supported.

As a result, the basic setup information generally set in the ADC is converted according to the conversion conditions corresponding to each manufacturer's setup method to set each manufacturer's ADC, and the management unit is unified into a hierarchical configuration of a pool and a virtual server. Standardized setup items enable consistent ADC setup and monitoring of its status.

The ADC integrated management device 200 will be described in more detail with reference to FIG. 3.

As shown in FIG. 3, the ADC integrated management apparatus 200 may include the plurality of types of ADCs 300 (in the illustrated example, PIOLINK, F5, and Radware alteon). Information collection unit 225 for collecting log information and monitoring information from A10 Networks, Citrix, Riverbed, and Pumpkin Networks Inc.) and storing it in a database 240; A web server 260 for outputting monitoring information about the 300 and the real server 400 and providing a web page for receiving administrator setting information for the ADC 300 through the web server 260. A setting unit 250 and the information collecting unit 225 which receive the manager setting information on the ADC 300 provided and set the target ADC 300 by substituting the setting information suitable for the type of the target ADC 300. The plurality of types collected through Analyzing the operating status of the application service network including a virtual server unit from the logs, and monitoring information for the ADC (300) and includes a monitoring analysis unit 255 to identify an abnormal state.

When there is an integrated setting for a plurality of virtual servers for the ADC 300 that does not support the pool, the setting unit 250 sets a virtual pool by applying the corresponding settings to predetermined virtual servers, respectively, The virtual server setting for the ADC 300 having the virtual service setting under the server is performed through the virtual service setting instead of the virtual server.

The monitoring analyzer 255 generates a standardized monitoring result in units of a pool and a virtual server from logs and monitoring information of the plurality of types of ADCs 300 collected through the information collector 225. The log for the virtual service under the virtual server is provided as a monitoring result by replacing the virtual service with a single virtual server.

On the other hand, the information collecting unit 225 is a syslog monitor agent 210 for collecting and analyzing log information generated according to the system operation, a system monitor agent for checking whether the components of the system are operating normally (System Monitor Age nts) 220 and ADC monitor agent 230 for directly verifying the status information by a predetermined protocol by directly connecting to the ADC 300 and verifying whether each of the configured virtual servers is normally load balancing. .

As shown in FIG. 4, the ADC integrated management method according to the present invention corresponds to a request corresponding to a request for content by the user terminal 100 having the same content for load balancing by a plurality of real servers 400. Step (S10) and the load for connecting the user terminal 100 requesting the content according to the load balancing settings by a plurality of types of application delivery controller (ADC) with one of the virtual server corresponding to the real server 400 In step S20, the ADC integrated management device 200 collects the administrator setting information for the standardized setting items so as to be insensitive to the type and setting method of the ADC 300 to set the collected setting information ( Converts according to a preset conversion condition corresponding to the type of 300), connects to the corresponding ADC in a connection method according to the type of the ADC 300, and then converts the ADC based on the converted setting information If there is a virtual server subsetting unit so that the management unit is a virtual server, the subsetting unit is regarded as a virtual server, and if it does not support the pool function of managing multiple virtual server groups, the specified virtual And a setting step (S30) of grouping servers into a virtual pool to perform load balancing setting.

The setting step (S30) is a step of providing a common setting form (form) incorporating different setting methods of specific manufacturers (eg, F5, Alteon, PIOLINK, etc.) into a standardized setting item, history of the setting Providing and supporting configuration recovery, monitoring the failures associated with the ADC 300 and SLB operation, displaying the recovery or resolution status of the failure, providing the user with alerts in the form of pop-up and syslog, ADC (300) Monitoring the status of the), storing the contents of the monitoring in the database 240, displaying the monitoring results, by setting the permissions through account management by account and account management by ADC, providing a function of enhanced security It may include.

This will be described in more detail with reference to FIGS. 3 and 5.

First, since the ADC integrated management apparatus 200 can be installed and operated regardless of the network section, it is possible to easily manage and condition the ADC by providing a web (WEB) -based user interface (interface) and to access the ADC ( 300 may be installed at any location with network access.

Looking at the individual setting method of F5, Alteon and PIOLINK of various manufacturers of the ADC (300) network equipment, there is a difference in the connection method or setting items for the setting. The ADC integrated management device 200 operates to standardize the difference in consideration of the difference or setting items of the connection method.

First, in the basic connection method for setting, the Alteon and PIOLINK ADCs should be connected to the ADC using telnet during configuration, and F5 should be connected to the ADC using SSL protocol during configuration. Therefore, when the user accesses the ADC through each connection method and applies the user's settings, the result is stored in the database 240, and the result is provided to the user through the web screen for quick ADC setting. Support.

The ADC integrated management apparatus 200 periodically monitors the resources of the ADC 300 through the SNMP protocol in the ADC 300 and stores them in the database 240, and monitors the results through a web server 260. To the administrator.

In addition, the ADC integrated management device 200 collects and analyzes the system log (syslog) of the ADC 300 and stores it in the database 240, ADC integrated management device such as check the configuration change history, failure list check, recovery settings, etc. Provides only 200 specialized ADC management services.

The ADC 300 has a different setting environment and operation method for each manufacturer. ADC 300 of the F5 company provides a web console to the user environment, and Alton or PIOLINK provides a CLI (Command Line Interface) for inputting a command to the console to the user environment. The user needs to know a command or a setting method of each ADC 300 to set and manage the ADC 300. However, in the embodiment of the present invention, when the setting unit 250 receives the standardized setting information, it is actually set. Through the connection method suitable for the manufacturer of the ADC 300 automatically converts the setting to proceed with the setting.

As an example of such a setting method, the administrator first selects the ADC 300 or the virtual server to be changed on the web screen of the ADC integrated management apparatus 200 and enters into the modification menu screen (eg, service port, poolmember, health check, LoadBalancing methods).

The manager's input is transmitted to the setting unit 250 of the ADC integrated management apparatus 200 through the web server 260 of the ADC integrated management apparatus 200, and the setting unit 250 requests the user. Is stored in the database 240 and at the same time, if the ADC 300 to be set is a specific manufacturer (Alteon and PIOLINK), Telnet (Telnet), in the case of another specific manufacturer (F5) ADC (using the SSL protocol) 300) to synchronize and execute the command related to ADC setup.

Thereafter, the setting unit 250 receives the value for the function execution result after the function execution and stores it in the database 240. At the same time, the configuration change of the ADC 300 is sensed by using the time difference of the setting change in the ADC 300 and the setting time difference of the ADC integrated management apparatus 200, and the SNMP protocol, Telnet, and SSL protocol are detected. After collecting the information of the ADC (300), and updates the changes to the database (240) and delivers the results to the web server (260).

The web server 260 delivers the information received from the setting unit 250 in the form requested by the user, and the user finally checks the changed setting information after the screen update.

On the other hand, the ADC integrated management device 200 provides a history of the settings, supports the recovery of the settings, manages the SLB and stores the history. SLB change management is performed by storing the history of SLB directly operated by ADC itself. In addition, the SLB change history management provides a configuration recovery function to quickly set the previous configuration information in case of SLB failure.

As described above, the ADC integrated management apparatus 200 sets the load balancing of the ADC through the following process after accessing the ADC through a different connection method for each manufacturer.

First, the setting unit 250, which receives the server load balancing setting information from the user through the web server 260, determines which manufacturer's ADC 300 is an ADC to be set in response to the request. If the ADC 300 is from a specific manufacturer (F5), Secure Sockets Layer (SSL), Simple Network Management Protocol (SNMP), and API (Application Program Interface) provided by the specific manufacturer (F5) (aka, i- Initialize the connection using Control. If the ADC 300 is of another specific manufacturer (Alteon or PIOLINK), the connection is initialized using Telnet or SNMP protocol.

After connecting to ADC through connection initialization, requested information is converted for each ADC, the appropriate command is transmitted, and the result is received to provide the user with the setting status.

The server load balancing configuration information according to an embodiment of the present invention provided by the user at this time is standardized information for managing the ADC in a hierarchical structure of virtual servers, pools, and real servers. Instruction converts standardized information into instructions and settings for each ADC.

Here, the standardized information for setting the ADC includes a setting function for the ADC which does not have a setting content for a function specially added according to a manufacturer or a function necessary for integrated management but does not support this.

In order to use the standardized setting information for setting a function having no or no setting content according to the ADC, the embodiment of the present invention unifies the ADC setting method to set a management unit as a virtual server and manage the virtual server as a pool.

For example, a specific manufacturer (Alteon) is configured to set a virtual service further under the virtual server. In this case, the ADC of the manufacturer sets the virtual service using the virtual server configuration information which is a standardized management unit. In other words, if the virtual server is operated with one virtual server, the virtual service is divided into multiple virtual servers and managed. This eliminates the need for administrators to understand the concept of virtual services. It is always necessary to configure and manage virtual server-pool-real server relationships.

On the other hand, there is a pool function that manages virtual servers in groups, and it is a function for easily managing by defining a server load balancing method and a health check method of an actual server in units of pools. This is a superordinate concept of virtual servers, and it is a way to manage real servers in groups. That is, one pool may be allocated to one virtual server and one or more real servers may be allocated and operated in the allocated pool. You can assign and use a real server directly on a single virtual server, but by putting this pool, you can easily manage it. For example, if you need to replace a physical server that corresponds to the same virtual server, you need to create a pool, which is a group of physical servers that need to be replaced, and then assign the pool created on the virtual server to the replaced physical server.

However, since the ADC of the manufacturer (PIOLINK) that does not support such a pool function is assigned a real server directly to the virtual server without this concept, the administrator has to perform a complicated task of allocating all virtual servers to the real server. If the set target ADC is a specific manufacturer (PIOLINK), the ADC integrated management apparatus 200 virtually creates a pool and manages it as if the ADC provides a pool function. In other words, if a user provides information to set up a pool irrespective of ADC (POOL Index, Load Balancing, Health Checking, and allocated real servers), it can be stored internally and stored as a virtual server. A real server and the like are set based on the stored pool information. That is, in case of updating the load balancing method for a predetermined pool, the ADC integrated management apparatus 200 directly provides configuration update information about the pool to the ADC supporting the pool function but does not provide the pool function. The setting unit) may automatically perform a task of updating all load balancing methods for each virtual server corresponding to the corresponding virtual pool (group) based on the stored pool setting information.

On the other hand, the ADC integrated management device 200 also provides a function to determine the configuration change of the ADC, restore the configuration or manage the version of the configuration. To this end, the ADC integrated management apparatus 200 is directly connected to the ADC in the following manner.

When the ADC 300 is a specific manufacturer (F5), the ADC integrated management device 200 is connected by using a web (WEB) console, and in the case of other specific manufacturers (Alteon and PIOLINK), to input a command in the CLI window How to connect

When the ADC integrated management apparatus 200 accesses the ADC 300, the ADC manufacturer-specific connection method is used to change the server load balancing setting according to the setting contents.

On the other hand, if the settings of each ADC is changed through the ADC integrated management device 200, the ADC 300 when the connection as described above transmits the ADC change notification to the ADC integrated management device (200).

The ADC integrated management apparatus 200 determines the changed setting information by analyzing the ADC change notification transmitted from the ADC 300 using a pattern matching method.

If the setting change is determined (using version, setting date information, etc.), the changed information is collected and the data before and after the setting change is compared. If there is a change, the setting difference is saved as a history.

If the configuration change is identified, the ADC integrated management apparatus 200 may restore the changed setting to the previous setting, thereby easily recovering an error due to an incorrect setting.

When the user requests to restore the previous setting through the web server 260, the setting unit 250 obtains the previous setting information from the database 240 in response to the setting recovery request.

The setting unit 250 determines whether the request is for the ADC 300 of the manufacturer, and in the case of a specific manufacturer (F5) is connected using the SSL, SNMP protocol and API provided by the specific manufacturer (F5), ADC If the 300 is another specific manufacturer (Alteon or PIOLINK), the connection is made using the Telnet or SNMP protocol. Thereafter, the command for the corresponding ADC is transmitted using the previous setting information, and the result thereof is provided to the administrator through the web server 260.

The changed setting information may be stored in the database 240 again.

Meanwhile, the ADC integrated management apparatus 200 monitors the failures associated with the ADC 300 and the server load balancing operation, displays the recovery or resolution status of the failure, and provides a pop-up and alarm notification to the user, as described above. Virtual Server-Pool-Provides monitoring information using standardized hierarchical structure of real server, which helps to quickly identify and troubleshoot failures. To this end, the monitoring and analyzing unit 255 matches the system log information provided by each ADC with the setting server 250 to a virtual server, a pool, and a real server corresponding to the setting criteria, and then to the user through the web server 260. to provide.

When the state of the ADC 300 changes, the monitoring analyzer 255 of the ADC integrated management apparatus 200 uses the time and version difference between the ADC 300 and the ADC 300 to change the ADC 300 and the ADC. In order to minimize the load on the integrated management device 200, the configuration change is detected to check the state of the ADC 300. Also, by checking the status of virtual server, poolmember member and service, it monitors the failure status such as disconnection or disconnection in real time. Here, when the monitoring analyzer 255 receives the information from the ADC 300 providing the monitoring information for the virtual service, the monitoring analyzer 255 converts the information into information about the set virtual server and provides the virtual server of the ADC that does not support the pool. The information provided from the server is integrated and provided according to the pool configuration.

In addition, the monitoring analysis unit 255 of the ADC integrated management device 200 collects and analyzes the log occurrence when using a system log (syslog) provided by the ADC, and provides a pop-up or alarm notification when a failure occurs Make it quick to recognize. Provides a list of the status of faults and whether they are resolved in a sequential order, enabling fast fault handling when a fault occurs.

Looking at the operation of the monitoring analysis unit 255 of the ADC integrated management device 200, first, the monitoring analysis unit 255 that receives the setting for the use of the failure alert-related notifications from the administrator through the web server 260 ) Stores the user setting in the database 240 and determines a failure alert occurrence response event according to the corresponding setting.

Thereafter, the monitoring analyzer 255 analyzes the information collected from the ADC through the information collector 225 and checks the type when a specific event occurs. Basically, when a system log is collected, the corresponding log is collected. And it is stored in the database 240, when the ADC configuration change event is received from the ADC monitor agent 230 receives information about which ADC in the configuration change occurred.

The monitoring analyzer 255 may monitor the state in detail by directly connecting to the ADC 300 by using the setting unit 250 or the ADC monitor agent 230, if necessary, for a specific manufacturer F5, The manufacturer ADC 300 is connected through SNMP, SSL, and API (i-control), and other manufacturers (Alteon and PIOLINK) are connected to the manufacturer ADC 300 using SNMP and Telnet.

Thereafter, the monitoring analyzer 255 stores the monitored data in the database 240 by accessing the ADC 300 and compares and analyzes the system log and the data directly monitored by the ADC. If it is determined that the analysis falls within the preset error range, a screen is displayed to the user to indicate whether such a failure occurs.

At this time, the state of the ADC 300 that can be monitored through the ADC integrated management device 200 is output (Throughput), Connection (Connection), CPU / Memory (Memory) and Interface (Interface) (Utilization rate, Error (Error) ), Drops, and the like, and real-time connection information.

On the other hand, when the ADC integrated management device 200 monitors the ADC 300, there are two methods for periodically monitoring the state by accessing the ADC, and at the same time to monitor the event occurs.

In the method of monitoring at regular intervals, the monitoring analysis unit 255 first checks the monitoring period and starts monitoring when the monitoring period is reached. The appropriate connection method (F5: SNMP) is determined according to ADC information classified by the ADC monitor agent 230. / SSL / API, Alteon / PIOLINK: SNMP / Telnet) to connect to the ADC 300. After receiving the information from the connected ADC 300 and stores the monitoring information in the database 240 and performs the above-described monitoring procedure.

The method of monitoring when an event occurs is, first, when the monitoring analysis unit 255 confirms the occurrence of the event through the information collecting unit 225, determines the type (manufacturer) of the ADC 300 and collects the log when the system is logged in. Storage and carry out the monitoring analysis mentioned above. If the event is an ADC configuration change event, the ADC 300 is connected to the ADC 300 using an appropriate connection method (F5: SNMP / SSL / API, Alteon / PIOLINK: SNMP / Telnet) according to the ADC information distinguished by the ADC monitor agent 230. After connecting and collecting and storing the monitoring data, ask the administrator whether the above-mentioned setting is restored or not, and update the setting information or restore the existing setting information according to the administrator's selection.

On the other hand, the ADC integrated management apparatus 200 described above can provide a function of enhanced security by setting rights through account management for each ADC and account management for each service. For example, in addition to an account having all rights to the ADC integrated management device 200 and the ADC 300, an account that can modify the virtual server of the assigned ADC 300, and the information of only the assigned housekeeping server can be viewed and modified. There are four accounts that can only be viewed, and only the information about the assigned ADC (300). As an example of these four accounts, the following settings are possible.

SystemAdmin is an administrator account and is an account having all rights to the ADC integrated management apparatus 200 and the ADC 300. You can use this account to add or delete other accounts. Each account can be assigned a separate ADC and virtual server.

There are three types of accounts that can be authorized as SystemAdmin: ConfigAdmin, VSAdmin, and ReadOnlyUser.

ConfigAdmin is an account that can change the configuration of the virtual server and the information inquiry to the ADC 300 assigned to them. You can add, delete, and manage virtual servers for each ADC.

The VSAdmin account is an account that can view and change information about the virtual server assigned to it, but cannot add or delete it.

As such, the ADC integrated management apparatus 200 according to the embodiment of the present invention uses a standardized management layer irrespective of the different functions of the ADC for each manufacturer, thereby subdividing the setting authority for the virtual server serving as the setting and monitoring unit in a specific service. Operational mistakes or changes can be prevented in advance. On the other hand, when these settings are changed, all of these contents are stored and managed in the database 240, so that the administrator can manage and assign an account to the service operator. Can be minimized.

ReadOnlyUser can only inquire information about the assigned ADC (300). Accounts that cannot be modified or altered specifically can be used to enhance the security of ADC operations by allowing specific services to be monitored.

The following table is a table for the function of the account that can be set by way of example in the ADC integrated management apparatus 200 according to an embodiment of the present invention.

function
 Systemadmin  ConfigAdmin  ReadOnlyUser    VSAdmin
ADC addition
      O       X        X       X
ADC Lookup
      O       O        O       O
ADC delete
      O       X        X       X
ADC change
      O       X        X       X
VS Lookup
      O       O        O       O
VS added
      O       O        X       X
VS change
      O       O        X       O
VS delete
      O       O        X       X

6 is a view showing an exemplary flow of account management for each ADC according to the present invention, Figure 7 is a view showing an example of the flow of account management for each ADC service according to the present invention.

As shown in FIG. 6, the Open.com operator A 110 is through the ADC of Alteon, the manufacturer of the Open.com ADC 310, and the Open.Department.Operator B 120 is the F5 ADC, which is a manufacturer of the Open. Through, the open duty free operator C 130 is connected to the open dot com server 410, open department store server 420, open duty free server 430 through the PIOLINK ADC, the manufacturer of the open duty free ADC 330, respectively. In other words, the account management in the unit of the ADC is configured to manage the account in the unit of the ADC is also possible in the existing ADC and of course also possible through the ADC integrated management apparatus of the embodiment of the present invention.

FIG. 7 illustrates an example of account management through the ADC integrated management apparatus 200 according to an embodiment of the present invention. Each operator may be an ADC 310 or 320 or an actual server 410 or 420. , 430) can be set up and managed by a virtual server unit irrelevant, so Open.com operator A (110) can access the virtual server that the open. The C 130 may access and manage only a virtual server having an open department store and a virtual server having an open duty free shop, respectively. Even if Open.com and Open Duty Free are physically connected through the same ADC, as shown, Open.com Operator A 110 may be configured not to access Open Duty Free. This is different from that shown in the case where some operational services are distributed to a plurality of real servers without separating servers, or when a plurality of operational services are configured on one real server, or when one service is interworked with a plurality of ADCs. Even in a more realistic case where multiple services are linked with one ADC, account management is possible based on the virtual server rather than physical connection or device setting, so configuration is free, convenient, easy and safe. .

The foregoing embodiments and advantages are merely exemplary and are not to be construed as limiting the present invention. However, the present invention is not limited to the above-described embodiments, and various changes and modifications may be made by those skilled in the art without departing from the scope of the present invention. .

100: user terminal 200: ADC integrated management device
210: syslog monitor agent 220: system monitor agent
225: information collector 230: ADC system monitor agent
240: database 250: setting section
255: monitoring analysis unit 260: web server
300: application delivery controller 400: real server

Claims (12)

  1. A plurality of real servers having the same content for load balancing and corresponding to a request for content by the user terminal;
    A plurality of types of application delivery controllers (ADCs) for connecting the user terminal requesting content according to the load balancing setting to one of the virtual servers corresponding to the real server in a load balancing manner;
    Collects administrator setting information about the setting items standardized to support the type of ADC and a plurality of setting methods, converts the collected setting information according to a preset conversion condition corresponding to the type of ADC to be set, and types of the ADC. After connecting to the ADC in accordance with the connection method according to the configuration of the ADC on the basis of the converted configuration information, if there is a virtual server sub-setting unit so that the management unit is a virtual server, replace the sub-setting unit with a virtual server And a ADC integrated management system configured to perform load balancing by grouping the specified virtual servers into a virtual pool if the pool function of managing a plurality of virtual server groups is not integrated. .
  2. The method of claim 1,
    The ADC integrated management device
    An information collector configured to collect log information and monitoring information from the plurality of ADCs and store them in a database;
    A web server for outputting monitoring information about the plurality of ADCs and the real server and providing a web page for receiving administrator setting information for the ADC;
    Receive administrator setting information about the ADC provided through the web server, convert the setting information according to the type of the target ADC, set the target ADC, and integrate the plurality of virtual servers for the ADC that does not support the pool. If there is a setting, the virtual pool is set up by applying the setting to each of the specified virtual servers, and the virtual server setting for the ADC of the type in which the virtual service setting under the virtual server exists is used instead of the virtual server. Setting unit to perform through;
    Generate and provide a standardized monitoring result for each pool and virtual server from the log and monitoring information for the plurality of ADCs collected through the information collection unit, and the log for the virtual service under the virtual server is the corresponding virtual service. ADC integrated management system comprising a monitoring analysis unit to provide a monitoring result by substituting a virtual server.
  3. The method of claim 1,
    The ADC integrated management device
    ADC integrated management system, characterized in that by setting the account of a different security level for each virtual server to be set.
  4. An information collector configured to collect log information and monitoring information from a plurality of ADCs and store the information in a database;
    A web server for outputting monitoring information about the plurality of ADCs and the actual server and providing a web page for receiving administrator setting information for the ADC;
    Receive administrator setting information about the ADC provided through the web server, convert the setting information according to the type of the target ADC, set the target ADC, and integrate the plurality of virtual servers for the ADC that does not support the pool. If there is a setting, the virtual pool is set up by applying the setting to each of the specified virtual servers, and the virtual server setting for the ADC of the type in which the virtual service setting under the virtual server exists is used instead of the virtual server. A setting unit for executing the setting information and storing the setting information;
    Generate and provide a standardized monitoring result for each pool and virtual server from the log and monitoring information for the plurality of ADCs collected through the information collection unit, and the log for the virtual service under the virtual server is the corresponding virtual service. ADC integrated management device comprising a monitoring analysis unit for providing a monitoring result by substituting a virtual server.
  5. 5. The method of claim 4,
    The monitoring analyzer is connected to the connection method according to the ADC type to determine the change of the ADC settings,
    The setting unit ADC integrated management apparatus, characterized in that for restoring the settings of the ADC to the pre-stored settings by the selection of the administrator.
  6. A request receiving step of receiving, by the application delivery controller ADC, a request for content by the user terminal;
    A load balancing step of connecting the user terminal with one of a plurality of virtual servers configured in a real server according to a set load balancing scheme;
    The ADC integrated management apparatus collects administrator setting information on the standardized setting items to support the type of ADC and a plurality of setting methods, and converts the collected setting information according to a preset conversion condition corresponding to the type of ADC to be set. After setting the ADC based on the converted configuration information after accessing the ADC in a connection method according to the type of the ADC, if there is a virtual server lower setting unit so that the management unit becomes a virtual server, the corresponding lower setting unit A virtual server, and if it does not support a pool function of collectively managing a plurality of virtual server groups, a setting step of grouping designated virtual servers into a virtual pool to perform load balancing setting;
    ADC integrated management method comprising a.
  7. The method according to claim 6,
    The ADC integrated management apparatus further comprises a monitoring step of analyzing the information provided from the ADC to provide the administrator with the standardized monitoring results in a hierarchical relationship between the virtual server and the pool and the real server; .
  8. The method according to claim 6,
    The setting step
    Collecting administrator setting information by providing a common setting form in which different setting methods are integrated into standardized setting items according to an ADC type to a user;
    Provided with a history of the settings and the ADC integrated management method comprising the step of restoring the settings of the ADC to the existing settings according to the administrator selection.
  9. 8. The method of claim 7,
    The monitoring step
    Monitoring a fault associated with the ADC and load balancing, displaying a recovery or resolution state of the fault, and providing alert notifications in the form of pop-ups and system logs to the user;
    Monitoring the status of the ADC, storing the contents of the monitoring in a database, and displaying the monitoring results.
  10. The method according to claim 6,
    The setting step
    ADC integrated management method comprising the step of setting an account with different access rights for each ADC or virtual server.
  11. 8. The method of claim 7,
    In the monitoring step, when an event related to a system log or ADC configuration change occurs from the ADC, the ADC type is identified and connected through a protocol or API (application program interface) supported by the ADC to collect monitoring information of the ADC. ADC integrated management method comprising the step of.
  12. An information collecting step of collecting and storing log information and monitoring information from a plurality of types of ADCs through an information collecting unit;
    An interface step of outputting monitoring information about the plurality of ADCs and a real server through a web server, and receiving administrator setting information on the ADC;
    A setting unit receives the administrator setting information for the ADC provided through the web server, converts the setting information according to the type of the target ADC to set the target ADC, but does not support a plurality of virtual servers for the ADC that does not support the pool. If there is an integration setting for the virtual server, the virtual pool is set up by applying the settings to each of the specified virtual servers. A setting step performed through setting and storing setting information;
    The monitoring analyzer generates and provides a standardized monitoring result in units of pools and virtual servers from the logs and monitoring information of the plurality of ADCs collected through the information collecting step, and logs the virtual service under the virtual server. The monitoring step of replacing the virtual service with a virtual server to provide a monitoring result;
    ADC integrated management method comprising a.
KR1020130120815A 2013-10-10 2013-10-10 An apparatus and system for managing application delivery controller syntagmatically and managing method thereof KR101375099B1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
KR1020130120815A KR101375099B1 (en) 2013-10-10 2013-10-10 An apparatus and system for managing application delivery controller syntagmatically and managing method thereof

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
KR1020130120815A KR101375099B1 (en) 2013-10-10 2013-10-10 An apparatus and system for managing application delivery controller syntagmatically and managing method thereof

Publications (1)

Publication Number Publication Date
KR101375099B1 true KR101375099B1 (en) 2014-03-19

Family

ID=50648885

Family Applications (1)

Application Number Title Priority Date Filing Date
KR1020130120815A KR101375099B1 (en) 2013-10-10 2013-10-10 An apparatus and system for managing application delivery controller syntagmatically and managing method thereof

Country Status (1)

Country Link
KR (1) KR101375099B1 (en)

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2002149621A (en) 2000-11-08 2002-05-24 Nekusutekku:Kk Contents distribution server system and contents distribution method
JP2008234651A (en) 2004-07-30 2008-10-02 Hewlett-Packard Development Co Lp System and method for operating load balancers for multiple instance applications
US20100131636A1 (en) 2008-11-24 2010-05-27 Vmware, Inc. Application delivery control module for virtual network switch
KR20100091125A (en) * 2009-02-09 2010-08-18 애플 인크. Intelligent download of application programs

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2002149621A (en) 2000-11-08 2002-05-24 Nekusutekku:Kk Contents distribution server system and contents distribution method
JP2008234651A (en) 2004-07-30 2008-10-02 Hewlett-Packard Development Co Lp System and method for operating load balancers for multiple instance applications
US20100131636A1 (en) 2008-11-24 2010-05-27 Vmware, Inc. Application delivery control module for virtual network switch
KR20100091125A (en) * 2009-02-09 2010-08-18 애플 인크. Intelligent download of application programs

Similar Documents

Publication Publication Date Title
US10476905B2 (en) Security actions for computing assets based on enrichment information
US20180077224A1 (en) Application monitoring for cloud-based architectures
US20170228389A1 (en) System and method for storing a skeleton representation of at least one application in a computerized organization including generating and utilizing application structure using skeleton-based discovery and re-discovery
US10402293B2 (en) System for virtual machine risk monitoring
KR101891506B1 (en) Methods and systems for portably deploying applications on one or more cloud systems
US10394703B2 (en) Managing converged IT infrastructure with generic object instances
US9100289B2 (en) Creating searchable and global database of user visible process traces
CN103607297B (en) Fault processing method of computer cluster system
JP5529972B2 (en) Failover and recovery for replicated data instances
US8914478B2 (en) Automated deployment of software for managed hardware in a storage area network
WO2016119436A1 (en) Alarm processing method and device, and controller
US20140143602A1 (en) Techniques for evaluating and managing cloud networks
US8225011B2 (en) Method of monitoring device forming information processing system, information apparatus and information processing system
JP2017525055A (en) Analysis of cyber security risk in industrial control environment
US20150347264A1 (en) Tracking application deployment errors via cloud logs
US9164950B2 (en) Use tag clouds to visualize components related to an event
US9697722B2 (en) Methods, systems, and devices for managing a plurality of alarms
US7577729B1 (en) Distributed storage management services
US7441024B2 (en) Method and apparatus for applying policies
US8909758B2 (en) Physical server discovery and correlation
US20120331388A1 (en) Discovering, defining, and implementing computer application topologies
US6785827B2 (en) System for determining servers power supply requirement by sampling power usage values thereof at a rate based upon the criticality of its availability
US9715222B2 (en) Infrastructure control fabric system and method
US9058211B2 (en) Pre-validation in a computing on demand system
EP1952259B1 (en) Non-centralized network device management using console communications system and method

Legal Events

Date Code Title Description
A201 Request for examination
A302 Request for accelerated examination
E902 Notification of reason for refusal
E701 Decision to grant or registration of patent right
GRNT Written decision to grant
FPAY Annual fee payment

Payment date: 20170210

Year of fee payment: 4

FPAY Annual fee payment

Payment date: 20180201

Year of fee payment: 5

FPAY Annual fee payment

Payment date: 20190311

Year of fee payment: 6

FPAY Annual fee payment

Payment date: 20200310

Year of fee payment: 7