WO2016101532A1 - Network operation management method and apparatus - Google Patents

Network operation management method and apparatus Download PDF

Info

Publication number
WO2016101532A1
WO2016101532A1 PCT/CN2015/080341 CN2015080341W WO2016101532A1 WO 2016101532 A1 WO2016101532 A1 WO 2016101532A1 CN 2015080341 W CN2015080341 W CN 2015080341W WO 2016101532 A1 WO2016101532 A1 WO 2016101532A1
Authority
WO
WIPO (PCT)
Prior art keywords
network
log
operation request
managed object
request
Prior art date
Application number
PCT/CN2015/080341
Other languages
French (fr)
Chinese (zh)
Inventor
吴娟
刘明慧
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2016101532A1 publication Critical patent/WO2016101532A1/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks

Definitions

  • This document relates to the field of communication technologies, and in particular, to a network operation log management method and apparatus.
  • SNMP Simple Network Management Protocol
  • NMS Network Management System
  • the MIB Management Information Base
  • the MIB can also be regarded as an interface between the NMS and the Agent. Through this interface, the NMS can perform read/write operations on each managed object in the Agent, that is, read/write operations on the MIB, thereby achieving management and Monitor the purpose of the device.
  • the relationship between NMS, Agent and MIB is shown in Figure 1.
  • the NMS sends an operation request to the MIB corresponding to the Agent, and the managed object in the MIB receives the operation request, processes the operation request, and returns a processing result to the operation request to the Agent.
  • This paper provides a network operation log management method and device, which can play an important auxiliary role in fault checking in the network process based on SNMP protocol.
  • a network operation management method includes:
  • the operation request is written as a log record in the network operation log.
  • SNMP Simple Network Management Protocol
  • the network management NMS side further includes:
  • the switch state of the network operation log is on, and the managed object returns to the NMS end of the network management system based on the Simple Network Management Protocol (SNMP), the result of executing the operation request is correct, and the operation request is used as a log record. , written in the network operation log.
  • SNMP Simple Network Management Protocol
  • the method further includes:
  • the managed object returns to the NMS end of the network management system based on the Simple Network Management Protocol (SNMP), the result of executing the operation request is correct, and the cached operation request is released.
  • SNMP Simple Network Management Protocol
  • the method further includes:
  • the network operation log operation function is opened to the user, so that the user can perform the operation defined by the authority on the network operation log.
  • the log record includes an IP address of the network management end, an attribute of the managed object network element, The operation type of the operation request, the request time of the operation request, the management information base MIB identifier OID of the managed object, the management information base MIB node name of the managed object, and the managed object pair operation The result of the request processing.
  • a network operation management device includes:
  • the operation request acquisition module is configured to: obtain an operation request of the managed object in the management information base MIB based on the simple network management protocol SNMP by the NMS end of the network management;
  • the network management log first management module is configured to: if the managed object returns an error to the NMS end of the network management system based on the simple network management protocol, and the result of the operation request is an error, the operation request is used as a log record. Write to the network operation log.
  • the device further includes:
  • the log switch status reading module is set to: read the switch status of the network operation log;
  • the second operation module of the network operation log is configured to: when the switch state of the network operation log is on, and the managed object returns to the NMS end of the network management system based on the simple network management protocol SNMP, the result of performing the operation request is When correct, the operation request is written as a log record in the network operation log.
  • the device further includes:
  • An operation request record caching module is configured to: when the switch state of the network operation log is off, buffer the operation request;
  • the third operation module of the network operation log is configured to: if the managed object returns to the NMS end of the network management system based on the Simple Network Management Protocol (SNMP), the result of executing the operation request is correct, and the cached operation request is released.
  • SNMP Simple Network Management Protocol
  • the device further includes:
  • the log operation request receiving module is configured to: receive a network operation log operation request sent by the user;
  • the permission reading module is configured to: obtain, according to the network operation log operation request, the operation authority of the user to the network operation log from the preset authorization template;
  • the log operation authority management module is configured to: open the network operation to the user according to the permission
  • a log operation function is enabled to enable the user to perform an operation defined by the authority on the network operation log.
  • the log record includes a network management end IP address, the managed object network element attribute, an operation type of the operation request, a request time of the operation request, and a management information database MIB identifier of the managed object.
  • a computer readable storage medium storing computer executable instructions for performing the method of any of the above.
  • the network operation management method and apparatus can properly record SNMP-based network operations, so that when network communication between the NMS end of the network management system and the managed object in the MIB fails.
  • the ability to have a record to find, to facilitate the inspection of the cause of the failure helps the network management personnel to solve the network communication failure between the NMS end of the network management and the managed object in the MIB.
  • the method and device provided by the method set permissions on the network operation log through the authorization template to ensure the security of the network operation information.
  • FIG. 1 is a schematic diagram of a relationship between an NMS, an Agent, and an MIB of the related art
  • FIG. 2 is a schematic diagram of a network operation management method according to an embodiment of the present invention.
  • FIG. 3 is a schematic structural diagram of a network operation management apparatus according to an embodiment of the present invention.
  • the embodiment of the present invention first provides a network operation management method, including the steps shown in FIG. 2:
  • Step 201 Acquire an operation request of the managed object in the management information base MIB by the network management NMS end based on the simple network management protocol SNMP;
  • Step 202 If the managed object returns an error to the NMS end of the network management system based on the Simple Network Management Protocol (SNMP), the result of the operation request is an error, then the operation request is taken as Log records are written to the network operation log.
  • SNMP Simple Network Management Protocol
  • the network operation log management method can record the error of the operation request processing error of the managed object on the network management end in the log, so as to facilitate subsequent viewing by the network user based on the SNMP protocol.
  • the log obtains the operation request error and the cause of the fault, and solves the problem that the network fault between the NMS end and the MIB object is difficult to locate and difficult to reproduce, which is difficult to find and solve in time.
  • the user sends an operation request to the managed object in the MIB corresponding to the SNMP agent server (Agent) through the network management NMS, and the information about the current operation is obtained from the operation request message.
  • the information is used to be recorded in the network operation log when the managed object performs a failure or error in the operation request.
  • the network management method provided by the embodiment of the present invention is recorded on the network management NMS end and the managed object by recording the network operation log on the basis that the current product SNMP agent function, the log management function, and the user management function have been implemented. Errors and failures in the process of network communication do not require new functions to be added to the NMS side or the managed object side of the network management system, and the effect of fault monitoring and recording can be achieved without more complicated operations, which is convenient, feasible, and easy to implement.
  • the network management NMS side after obtaining the operation request of the management object in the management information base MIB based on the simple network management protocol SNMP, the network management NMS side further includes:
  • the switch state of the network operation log is on, and the managed object returns to the NMS end of the network management system based on the Simple Network Management Protocol (SNMP), the result of executing the operation request is correct, and the operation request is used as a log record. , written in the network operation log.
  • SNMP Simple Network Management Protocol
  • the operation result of the operation request can be simultaneously recorded regardless of the execution result of the operation request. If all operation requests are written to the network log as log records, the operation requests may also be marked according to the correct or erroneous results of the operation request execution to distinguish the operation requests with correct execution results and incorrect execution results.
  • the switch state of the network operation log can be set according to the network element status of the managed object in the MIB and the product requirement. And at any Time, you can change the status of the set network operation log switch, change from off state to on state, or change from on state to off state.
  • the method after reading the switch state of the network operation log, the method further includes:
  • the managed object returns to the NMS end of the network management system based on the Simple Network Management Protocol (SNMP), the result of executing the operation request is correct, and the cached operation request is released.
  • SNMP Simple Network Management Protocol
  • the switch state of the network operation log is off, the operation request sent by the NMS end of the managed object is correct, that is, no error or failure occurs when the operation request of the NMS end of the network management is performed. Then do not record this operation request. In this way, the content of the network operation log can be simplified, and the space occupied by the network operation log is saved.
  • the method further includes:
  • the network operation log operation function is opened to the user, so that the user can perform the operation defined by the authority on the network operation log.
  • management personnel matching information such as a user name and a password
  • different network management personnel IDs record different rights in the authorization template
  • the network management personnel When the network operation log performs operations such as accessing, writing, and deleting, first obtain the log operation authority record corresponding to the ID recorded in the authorization template by using the matched ID and password, and then open the log recorded in the permission operation record.
  • Operational authority The network administrator with the corresponding operation authority can perform corresponding operations on the network operation log to prevent the leakage of the network operation content and cause a security risk.
  • the log record may include a request message of the operation request. And a processed result message of the operation request by the managed object.
  • the log record includes a network management end IP address, the managed object network element attribute, an operation type of the operation request, a request time of the operation request, and management of the managed object.
  • the information base MIB identifier OID (Object ID), the management information base MIB node name of the managed object, and the processing result of the managed object on the operation request.
  • the network management end IP address, the operation request operation type, the operation request request time, the managed object management information base MIB identifier OID, and the managed object management information base MIB node name may be from the network management
  • the NMS obtains the packet of the operation request sent by the managed object.
  • the managed object network element attribute and the processing result of the managed object to the operation request may be obtained from a response message when the managed object answers the operation request.
  • the NMS end of the NMS that sends the operation request in the fault operation can be known through the IP address of the network management end in the above log record; the operation type of the operation request can be used to restore the operation request sent in the fault operation;
  • the request time can assist the network administrator to determine the cause of the fault operation.
  • the fault may be related to the network congestion; the management information base MIB identifier of the managed object The management information base MIB node name of the OID and the managed object may be used to find a managed object applied by the fault operation; the processing result of the operation request by the managed object may be used to determine the cause of the fault operation, for example, if the operation If the processing result of the request indicates that the operation request message is ambiguous, the message of the operation request may be damaged or lost during transmission.
  • the content contained in the log record can provide an effective and powerful clue for the network administrator to perform a fault query.
  • the method comprises the following steps:
  • the NMS end of the network management system receives an operation request sent by the network user.
  • the network management NMS sends the operation request in the form of a message to the managed object in the MIB corresponding to the SNMP proxy server.
  • the information carried in the request packet includes: the network management end IP address that sends the operation request, and the operation.
  • the request message of the operation request and the processing result message of the managed object are recorded in the MIB network operation log;
  • the embodiment of the invention provides a network operation management device, and the structure is as shown in FIG. 3, which includes:
  • the operation request obtaining module 31 is configured to: obtain an operation request of the managed object in the management information base MIB by the network management NMS end based on the simple network management protocol SNMP;
  • the network operation log first management module 32 is configured to: if the managed object returns to the NMS end of the network management system based on the simple network management protocol SNMP, and the result of executing the operation request is an error, the operation request is used as a log record. , written to the network operation log.
  • the apparatus further includes:
  • the log switch status reading module is set to: read the switch status of the network operation log;
  • the second operation module of the network operation log is configured to: when the switch state of the network operation log is on, and the managed object returns to the NMS end of the network management system based on the simple network management protocol SNMP, the result of performing the operation request is When correct, the operation request is written as a log record in the network operation log.
  • the apparatus further includes:
  • the operation request record cache module is set to: when the switch state of the network operation log is off When closed, the operation request is cached;
  • the third operation module of the network operation log is configured to: if the managed object returns to the NMS end of the network management system based on the Simple Network Management Protocol (SNMP), the result of executing the operation request is correct, and the cached operation request is released.
  • SNMP Simple Network Management Protocol
  • the apparatus further includes:
  • the log operation request receiving module is configured to: receive a network operation log operation request sent by the user;
  • the permission reading module is configured to: obtain, according to the network operation log operation request, the operation authority of the user to the network operation log from the preset authorization template;
  • the log operation authority management module is configured to: open a network operation log operation function to the user according to the authority, so that the user can perform the operation defined by the authority on the network operation log.
  • the log record includes a network management end IP address, the managed object network element attribute, an operation type of the operation request, a request time of the operation request, and management of the managed object.
  • all or part of the steps of the above embodiments may also be implemented by using an integrated circuit. These steps may be separately fabricated into individual integrated circuit modules, or multiple modules or steps may be fabricated into a single integrated circuit module. achieve.
  • the devices/function modules/functional units in the above embodiments may be implemented by a general-purpose computing device, which may be centralized on a single computing device or distributed over a network of multiple computing devices.
  • the device/function module/function unit in the above embodiment is implemented in the form of a software function module and When sold or used as a stand-alone product, it can be stored on a computer readable storage medium.
  • the above mentioned computer readable storage medium may be a read only memory, a magnetic disk or an optical disk or the like.
  • the network operation management method and apparatus provided by the embodiments of the present invention can appropriately record SNMP-based network operations, so that when the network communication between the NMS end of the network management system and the managed object in the MIB fails, records can be found. It is convenient for the operation to check the cause of the failure, which helps the network administrator to solve the network communication failure between the NMS end of the network management and the managed object in the MIB. In the meantime, the method and the device provided by the embodiment of the present invention set the authority on the network operation log through the authorization template to ensure the security of the network operation information.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer And Data Communications (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

A network operation management method and apparatus. The method includes the following steps: obtaining from a Network Management System (NMS) end an operation request, which is based on Simple Network Management Protocol (SNMP), for a managed object in a Management Information Base (MIB); if the operation request execution result, returned from the managed object to the NMS end based on the SNMP, is an error, writing the operation request as a log record in a network operation log.

Description

一种网络操作管理方法及装置Network operation management method and device 技术领域Technical field
本文涉及通信技术领域,尤其涉及一种网络操作日志管理方法及装置。This document relates to the field of communication technologies, and in particular, to a network operation log management method and apparatus.
背景技术Background technique
简单网络管理协议(Simple Network Management Protocol,SNMP)是目前TCP/IP网络中应用最为广泛的网络管理协议。用户可以利用网管NMS(Network Management System,网络管理系统)模块在管理站和被管网元间的SNMP代理模块(Agent)通过发送和接收SNMP报文进行网络管理。Simple Network Management Protocol (SNMP) is the most widely used network management protocol in TCP/IP networks. You can use the NMS (Network Management System) module to manage and manage SNMP packets by sending and receiving SNMP messages between the management station and the managed network element.
任何一个被管理的资源都表示成一个对象,称为被管理的对象。MIB(Management Information Base,管理信息库)是被管理对象的集合。它定义了被管理对象的一系列属性:对象的名称、对象的访问权限和对象的数据类型等。每个Agent都有自己的MIB。MIB也可以看作是NMS和Agent之间的一个接口,通过这个接口,NMS可以对Agent中的每一个被管理对象进行读/写操作,也就是对MIB进行读/写操作,从而达到管理和监控设备的目的。NMS、Agent和MIB之间的关系如图1所示。NMS向Agent所对应的MIB发送操作请求,MIB中的被管理对象收到所述操作请求、处理所述操作请求并向Agent回复对操作请求的处理结果。Any managed resource is represented as an object called a managed object. The MIB (Management Information Base) is a collection of managed objects. It defines a set of properties of the managed object: the name of the object, the access rights of the object, and the data type of the object. Each Agent has its own MIB. The MIB can also be regarded as an interface between the NMS and the Agent. Through this interface, the NMS can perform read/write operations on each managed object in the Agent, that is, read/write operations on the MIB, thereby achieving management and Monitor the purpose of the device. The relationship between NMS, Agent and MIB is shown in Figure 1. The NMS sends an operation request to the MIB corresponding to the Agent, and the managed object in the MIB receives the operation request, processes the operation request, and returns a processing result to the operation request to the Agent.
随着网络技术的应用和发展,网络规模不断扩大,对于运营商来说,需要管理的网络和网络设备数量急剧增加,使得基于SNMP协议的MIB库也变得非常庞大。因此在对MIB对象进行操作的过程中,由于MIB节点的数量多复杂性高,可以进行的异常操作任务很繁重,导致产品在测试过程中的不充分,在工程项目的使用过程中难免会出现一些安全故障。With the application and development of network technologies, the network scale continues to expand. For operators, the number of networks and network devices that need to be managed has increased dramatically, making the SNMP-based MIB library very large. Therefore, in the process of operating the MIB object, due to the high complexity of the number of MIB nodes, the abnormal operation tasks that can be performed are very heavy, resulting in insufficient product in the testing process, which inevitably occurs during the use of the engineering project. Some security failures.
此类故障产生的无规律性和突发性使得在定位故障原因时比较棘手,存在着:故障节点难以排查、故障操作不容易复现、故障解决颇费时间等问题,使产品存在着很大的安全隐患。如何有效快速定位此类故障,提高产品的安全性亟待解决。 The irregularity and suddenness caused by such faults make it more difficult to locate the cause of the fault. There are problems such as difficulty in troubleshooting the faulty node, difficulty in recurring the faulty operation, and time-consuming troubleshooting, which makes the product very large. Security risks. How to effectively locate such faults quickly and improve the safety of products needs to be solved.
发明内容Summary of the invention
本文提供一种网络操作日志管理方法及装置,能够对基于SNMP协议的网络过程中的故障检查起到重要的辅助作用。This paper provides a network operation log management method and device, which can play an important auxiliary role in fault checking in the network process based on SNMP protocol.
一种网络操作管理方法,包括:A network operation management method includes:
获取网管NMS端基于简单网络管理协议SNMP对管理信息库MIB中的被管理对象的操作请求;Obtaining an operation request of the managed object in the management information base MIB based on the simple network management protocol SNMP by the NMS end of the network management;
如果所述被管理对象基于简单网络管理协议SNMP所返回给网管NMS端的、执行所述操作请求的结果为错误,则将本次操作请求作为日志记录,写入网络操作日志中。If the result of executing the operation request returned by the managed object to the NMS end of the NMS based on the Simple Network Management Protocol (SNMP) is an error, the operation request is written as a log record in the network operation log.
可选的,获取网管NMS端基于简单网络管理协议SNMP对管理信息库MIB中的被管理对象的操作请求之后,还包括:Optionally, after obtaining the operation request of the managed object in the management information base MIB based on the simple network management protocol SNMP, the network management NMS side further includes:
读取网络操作日志的开关状态;Read the switch status of the network operation log;
当所述网络操作日志的开关状态为开启,且所述被管理对象基于简单网络管理协议SNMP所返回给网管NMS端的、执行所述操作请求的结果为正确时,将所述操作请求作为日志记录,写入所述网络操作日志中。When the switch state of the network operation log is on, and the managed object returns to the NMS end of the network management system based on the Simple Network Management Protocol (SNMP), the result of executing the operation request is correct, and the operation request is used as a log record. , written in the network operation log.
可选的,读取网络操作日志的开关状态之后,还包括:Optionally, after reading the switch status of the network operation log, the method further includes:
当所述网络操作日志的开关状态为关闭时,缓存所述操作请求;When the switch state of the network operation log is off, the operation request is cached;
如果所述被管理对象基于简单网络管理协议SNMP所返回给网管NMS端的、执行所述操作请求的结果为正确,释放所缓存的所述操作请求。If the managed object returns to the NMS end of the network management system based on the Simple Network Management Protocol (SNMP), the result of executing the operation request is correct, and the cached operation request is released.
可选的,所述方法还包括:Optionally, the method further includes:
接收用户发送的网络操作日志操作请求;Receiving a network operation log operation request sent by the user;
根据所述网络操作日志操作请求,从预设的授权模板中获得所述用户对网络操作日志的操作权限;Obtaining the operation authority of the user for the network operation log from the preset authorization template according to the network operation log operation request;
根据所述权限,向该用户开放网络操作日志操作功能,使得该用户能够对所述网络操作日志执行所述权限所限定的操作。And according to the authority, the network operation log operation function is opened to the user, so that the user can perform the operation defined by the authority on the network operation log.
可选的,所述日志记录包括网管端IP地址、所述被管理对象网元属性、 所述操作请求的操作类型、所述操作请求的请求时间、所述被管理对象的管理信息库MIB标示符OID、被管理对象的管理信息库MIB节点名称和所述被管理对象对所述操作请求的处理结果。Optionally, the log record includes an IP address of the network management end, an attribute of the managed object network element, The operation type of the operation request, the request time of the operation request, the management information base MIB identifier OID of the managed object, the management information base MIB node name of the managed object, and the managed object pair operation The result of the request processing.
一种网络操作管理装置,包括:A network operation management device includes:
操作请求获取模块,设置为:获取网管NMS端基于简单网络管理协议SNMP对管理信息库MIB中的被管理对象的操作请求;The operation request acquisition module is configured to: obtain an operation request of the managed object in the management information base MIB based on the simple network management protocol SNMP by the NMS end of the network management;
网络操作日志第一管理模块,设置为:如果所述被管理对象基于简单网络管理协议SNMP所返回给网管NMS端的、执行所述操作请求的结果为错误,则将本次操作请求作为日志记录,写入网络操作日志中。The network management log first management module is configured to: if the managed object returns an error to the NMS end of the network management system based on the simple network management protocol, and the result of the operation request is an error, the operation request is used as a log record. Write to the network operation log.
可选的,所述装置还包括:Optionally, the device further includes:
日志开关状态读取模块,设置为:读取网络操作日志的开关状态;The log switch status reading module is set to: read the switch status of the network operation log;
网络操作日志第二管理模块,设置为:当所述网络操作日志的开关状态为开启,且所述被管理对象基于简单网络管理协议SNMP所返回给网管NMS端的、执行所述操作请求的结果为正确时,将所述操作请求作为日志记录,写入所述网络操作日志中。The second operation module of the network operation log is configured to: when the switch state of the network operation log is on, and the managed object returns to the NMS end of the network management system based on the simple network management protocol SNMP, the result of performing the operation request is When correct, the operation request is written as a log record in the network operation log.
可选的,所述装置还包括:Optionally, the device further includes:
操作请求记录缓存模块,设置为:当所述网络操作日志的开关状态为关闭时,缓存所述操作请求;An operation request record caching module is configured to: when the switch state of the network operation log is off, buffer the operation request;
网络操作日志第三管理模块,设置为:如果所述被管理对象基于简单网络管理协议SNMP所返回给网管NMS端的、执行所述操作请求的结果为正确,释放所缓存的所述操作请求。The third operation module of the network operation log is configured to: if the managed object returns to the NMS end of the network management system based on the Simple Network Management Protocol (SNMP), the result of executing the operation request is correct, and the cached operation request is released.
可选的,所述装置还包括:Optionally, the device further includes:
日志操作请求接收模块,设置为:接收用户发送的网络操作日志操作请求;The log operation request receiving module is configured to: receive a network operation log operation request sent by the user;
权限读取模块,设置为:根据所述网络操作日志操作请求,从预设的授权模板中获得所述用户对网络操作日志的操作权限;The permission reading module is configured to: obtain, according to the network operation log operation request, the operation authority of the user to the network operation log from the preset authorization template;
日志操作权限管理模块,设置为:根据所述权限,向该用户开放网络操 作日志操作功能,使得该用户能够对所述网络操作日志执行所述权限所限定的操作。The log operation authority management module is configured to: open the network operation to the user according to the permission A log operation function is enabled to enable the user to perform an operation defined by the authority on the network operation log.
可选的,所述日志记录包括网管端IP地址、所述被管理对象网元属性、所述操作请求的操作类型、所述操作请求的请求时间、所述被管理对象的管理信息库MIB标示符OID、被管理对象的管理信息库MIB节点名称和所述被管理对象对所述操作请求的处理结果。Optionally, the log record includes a network management end IP address, the managed object network element attribute, an operation type of the operation request, a request time of the operation request, and a management information database MIB identifier of the managed object. The OID, the management information base MIB node name of the managed object, and the processing result of the operation request by the managed object.
一种计算机可读存储介质,存储有计算机可执行指令,所述计算机可执行指令用于执行上述任一项的方法。A computer readable storage medium storing computer executable instructions for performing the method of any of the above.
从上面所述可以看出,本文提供的网络操作管理方法和装置,能够对基于SNMP的网络操作进行适当的记录,从而在网管NMS端和MIB中的被管理对象之间的网络通信出现故障时能够有记录可以查找,方便操作故障原因的检查,有助于网络管理人员解决网管NMS端和MIB中的被管理对象之间的网络通信故障。同时,本文所提供的方法和装置,通过授权模板对网络操作日志设置权限,保障网络操作信息的安全。As can be seen from the above, the network operation management method and apparatus provided herein can properly record SNMP-based network operations, so that when network communication between the NMS end of the network management system and the managed object in the MIB fails. The ability to have a record to find, to facilitate the inspection of the cause of the failure, helps the network management personnel to solve the network communication failure between the NMS end of the network management and the managed object in the MIB. At the same time, the method and device provided by the method set permissions on the network operation log through the authorization template to ensure the security of the network operation information.
附图概述BRIEF abstract
图1为相关技术的NMS、Agent和MIB之间的关系示意图;1 is a schematic diagram of a relationship between an NMS, an Agent, and an MIB of the related art;
图2为本发明实施例所提供的网络操作管理方法示意图;2 is a schematic diagram of a network operation management method according to an embodiment of the present invention;
图3为本发明实施例所提供的网络操作管理装置结构示意图。FIG. 3 is a schematic structural diagram of a network operation management apparatus according to an embodiment of the present invention.
本发明的实施方式Embodiments of the invention
以下结合说明书附图对本发明的实施方式进行说明。Embodiments of the present invention will be described below with reference to the accompanying drawings.
本发明实施例首先提供一种网络操作管理方法,包括如图2所示的步骤:The embodiment of the present invention first provides a network operation management method, including the steps shown in FIG. 2:
步骤201:获取网管NMS端基于简单网络管理协议SNMP对管理信息库MIB中的被管理对象的操作请求;Step 201: Acquire an operation request of the managed object in the management information base MIB by the network management NMS end based on the simple network management protocol SNMP;
步骤202:如果所述被管理对象基于简单网络管理协议SNMP所返回给网管NMS端的、执行所述操作请求的结果为错误,则将本次操作请求作为 日志记录,写入网络操作日志中。Step 202: If the managed object returns an error to the NMS end of the network management system based on the Simple Network Management Protocol (SNMP), the result of the operation request is an error, then the operation request is taken as Log records are written to the network operation log.
从上面所述可以看出,本发明实施例所提供的网络操作日志管理方法,能够将被管理对象对网管端的操作请求处理错误的记录记载于日志中,方便基于SNMP的协议的网络用户后续查看该日志,获得操作请求处理错误、故障的原因,解决了网管NMS端和MIB对象之间的网络故障难以定位、难以重现所导致的故障问题难以及时发现并解决的问题。It can be seen from the above that the network operation log management method provided by the embodiment of the present invention can record the error of the operation request processing error of the managed object on the network management end in the log, so as to facilitate subsequent viewing by the network user based on the SNMP protocol. The log obtains the operation request error and the cause of the fault, and solves the problem that the network fault between the NMS end and the MIB object is difficult to locate and difficult to reproduce, which is difficult to find and solve in time.
在本发明的实施例中,用户通过网管NMS端向SNMP代理服务器(Agent)所对应的MIB中的被管理对象发送操作请求,从所述操作请求报文中可获取关于本次操作的信息,这些信息用于当被管理对象执行所述操作请求出现故障或错误时记录于所述网络操作日志中。In the embodiment of the present invention, the user sends an operation request to the managed object in the MIB corresponding to the SNMP agent server (Agent) through the network management NMS, and the information about the current operation is obtained from the operation request message. The information is used to be recorded in the network operation log when the managed object performs a failure or error in the operation request.
本发明实施例所提供的网络管理方法,在当前产品SNMP代理功能、日志管理功能以及用户管理功能已经实现的基础上,通过记录网络操作日志的方法记录在网管NMS端和被管理对象之间进行网络通信的过程中出现的错误和故障,无需在网管NMS端或被管理对象端增设新的功能,无需更多复杂的操作即能达到故障监控和记录的效果,方便可行,易于实现。The network management method provided by the embodiment of the present invention is recorded on the network management NMS end and the managed object by recording the network operation log on the basis that the current product SNMP agent function, the log management function, and the user management function have been implemented. Errors and failures in the process of network communication do not require new functions to be added to the NMS side or the managed object side of the network management system, and the effect of fault monitoring and recording can be achieved without more complicated operations, which is convenient, feasible, and easy to implement.
在本发明的实施例中,获取网管NMS端基于简单网络管理协议SNMP对管理信息库MIB中的被管理对象的操作请求之后,还包括:In the embodiment of the present invention, after obtaining the operation request of the management object in the management information base MIB based on the simple network management protocol SNMP, the network management NMS side further includes:
读取网络操作日志的开关状态;Read the switch status of the network operation log;
当所述网络操作日志的开关状态为开启,且所述被管理对象基于简单网络管理协议SNMP所返回给网管NMS端的、执行所述操作请求的结果为正确时,将所述操作请求作为日志记录,写入所述网络操作日志中。When the switch state of the network operation log is on, and the managed object returns to the NMS end of the network management system based on the Simple Network Management Protocol (SNMP), the result of executing the operation request is correct, and the operation request is used as a log record. , written in the network operation log.
在本发明所有实施例中,在将操作请求作为日志记录,写入网络操作日志中的时候,无论所述操作请求的执行结果如何,都可以将操作请求的操作结果同时记录。若是将所有操作请求作为日志记录写入所述网络日志中,也可以根据操作请求执行的正确或错误的结果对所述操作请求进行标记,以区分执行结果正确和执行结果错误的操作请求。In all embodiments of the present invention, when an operation request is written as a log record in the network operation log, the operation result of the operation request can be simultaneously recorded regardless of the execution result of the operation request. If all operation requests are written to the network log as log records, the operation requests may also be marked according to the correct or erroneous results of the operation request execution to distinguish the operation requests with correct execution results and incorrect execution results.
在本发明的实施例中,可根据MIB中的被管理对象的网元状态以及产品需求在被管理对象端进行配置,设置网络操作日志的开关状态。并且在任意 时间,可以对设定的所述网络操作日志开关状态进行更改,从关闭状态更改为开启状态,或从开启状态更改为关闭状态。In the embodiment of the present invention, the switch state of the network operation log can be set according to the network element status of the managed object in the MIB and the product requirement. And at any Time, you can change the status of the set network operation log switch, change from off state to on state, or change from on state to off state.
在本发明的实施例中,读取网络操作日志的开关状态之后,还包括:In the embodiment of the present invention, after reading the switch state of the network operation log, the method further includes:
当所述网络操作日志的开关状态为关闭时,缓存所述操作请求;When the switch state of the network operation log is off, the operation request is cached;
如果所述被管理对象基于简单网络管理协议SNMP所返回给网管NMS端的、执行所述操作请求的结果为正确,释放所缓存的所述操作请求。If the managed object returns to the NMS end of the network management system based on the Simple Network Management Protocol (SNMP), the result of executing the operation request is correct, and the cached operation request is released.
在本发明的实施例中,若网络操作日志的开关状态为关闭,那么当被管理对象执行网管NMS端发送的操作请求结果为正确,即在执行网管NMS端的操作请求时未出现错误或故障,那么不对本次操作请求进行记录。如此,可以精简所述网络操作日志的内容,节约网络操作日志所占用的空间。In the embodiment of the present invention, if the switch state of the network operation log is off, the operation request sent by the NMS end of the managed object is correct, that is, no error or failure occurs when the operation request of the NMS end of the network management is performed. Then do not record this operation request. In this way, the content of the network operation log can be simplified, and the space occupied by the network operation log is saved.
在本发明的实施例中,所述方法还包括:In an embodiment of the invention, the method further includes:
接收用户发送的网络操作日志操作请求;Receiving a network operation log operation request sent by the user;
根据所述网络操作日志操作请求,从预设的授权模板中获得所述用户对网络操作日志的操作权限;Obtaining the operation authority of the user for the network operation log from the preset authorization template according to the network operation log operation request;
根据所述权限,向该用户开放网络操作日志操作功能,使得该用户能够对所述网络操作日志执行所述权限所限定的操作。And according to the authority, the network operation log operation function is opened to the user, so that the user can perform the operation defined by the authority on the network operation log.
在本发明的上述实施例中,通过间接地设置授权模板,在所述授权模板中记录不同用户对所述网络操作日志的不同权限,而不是直接将不同用户对网络日志的操作权限记录在网络日志中,如此能够在设置权限的基础上进一步保障网络操作日志文件的安全性。In the foregoing embodiment of the present invention, by setting an authorization template indirectly, different permissions of different users to the network operation log are recorded in the authorization template, instead of directly recording operation rights of different users on the network log in the network. In the log, the security of the network operation log file can be further ensured on the basis of setting permissions.
在本发明的实施例中,可以在所述授权模板中设置管理人员匹配信息,如用户名和密码,不同的网络管理人员的ID在所述授权模板中记录有不同的权限,在网络管理人员对网络操作日志进行访问、写入、删除等操作时,首先通过匹配的ID和密码获取授权模板中记录的、与该ID对应的日志操作权限记录,然后开放所述权限操作记录中所记录的日志操作权限。使得具有相应的操作权限的网络管理人员能够对网络操作日志进行相应的操作,防止网络操作内容的泄露而造成安全隐患。In the embodiment of the present invention, management personnel matching information, such as a user name and a password, may be set in the authorization template, and different network management personnel IDs record different rights in the authorization template, and the network management personnel When the network operation log performs operations such as accessing, writing, and deleting, first obtain the log operation authority record corresponding to the ID recorded in the authorization template by using the matched ID and password, and then open the log recorded in the permission operation record. Operational authority. The network administrator with the corresponding operation authority can perform corresponding operations on the network operation log to prevent the leakage of the network operation content and cause a security risk.
在本发明的实施例中,所述日志记录可以包括所述操作请求的请求报文 和被管理对象对所述操作请求的处理结果报文。In an embodiment of the present invention, the log record may include a request message of the operation request. And a processed result message of the operation request by the managed object.
在本发明的实施例中,所述日志记录包括网管端IP地址、所述被管理对象网元属性、所述操作请求的操作类型、所述操作请求的请求时间、所述被管理对象的管理信息库MIB标示符OID(Object ID)、被管理对象的管理信息库MIB节点名称、所述被管理对象对所述操作请求的处理结果。In an embodiment of the present invention, the log record includes a network management end IP address, the managed object network element attribute, an operation type of the operation request, a request time of the operation request, and management of the managed object. The information base MIB identifier OID (Object ID), the management information base MIB node name of the managed object, and the processing result of the managed object on the operation request.
在实际应用过程中,网管端IP地址、操作请求的操作类型、操作请求的请求时间、所述被管理对象的管理信息库MIB标示符OID、被管理对象的管理信息库MIB节点名称可以从网管NMS端向被管理对象端发送的操作请求的报文中获取。所述被管理对象网元属性、所述被管理对象对所述操作请求的处理结果可以从被管理对象应答所述操作请求时的应答报文中获取。对于一个网络通信故障,通过上述日志记录中的网管端IP地址可以得知故障操作中发送操作请求的网管NMS端;操作请求的操作类型可用于还原故障操作中所发送的操作请求;操作请求的请求时间可协助网络管理人员判断故障操作出现的原因,例如,若故障操作出现的时间点为网络拥堵的时间点,那么本次故障可能与网络拥堵有关;被管理对象的管理信息库MIB标示符OID和被管理对象的管理信息库MIB节点名称可用于查找故障操作所施加的被管理对象;所述被管理对象对所述操作请求的处理结果可用于判断故障操作出现的原因,例如,若操作请求的处理结果指示操作请求报文不明确,那么可能操作请求的报文在传输过程中出现损坏或信息丢失。综上所述,所述日志记录中包含的内容,能够为网络管理人员进行故障查询时提供有效且有力的线索。In the actual application process, the network management end IP address, the operation request operation type, the operation request request time, the managed object management information base MIB identifier OID, and the managed object management information base MIB node name may be from the network management The NMS obtains the packet of the operation request sent by the managed object. The managed object network element attribute and the processing result of the managed object to the operation request may be obtained from a response message when the managed object answers the operation request. For a network communication failure, the NMS end of the NMS that sends the operation request in the fault operation can be known through the IP address of the network management end in the above log record; the operation type of the operation request can be used to restore the operation request sent in the fault operation; The request time can assist the network administrator to determine the cause of the fault operation. For example, if the time point of the fault operation is the time point of the network congestion, the fault may be related to the network congestion; the management information base MIB identifier of the managed object The management information base MIB node name of the OID and the managed object may be used to find a managed object applied by the fault operation; the processing result of the operation request by the managed object may be used to determine the cause of the fault operation, for example, if the operation If the processing result of the request indicates that the operation request message is ambiguous, the message of the operation request may be damaged or lost during transmission. In summary, the content contained in the log record can provide an effective and powerful clue for the network administrator to perform a fault query.
在本发明一种实施例中,所述方法包括如下步骤:In an embodiment of the invention, the method comprises the following steps:
网管NMS端接收到网络用户所发送的操作请求;The NMS end of the network management system receives an operation request sent by the network user.
网管NMS端将操作请求以报文的形式发送到SNMP代理服务器所对应的MIB中的被管理对象;所述请求报文携带的信息包括:发送所述操作请求的网管端IP地址、所述操作请求的操作类型、所述操作请求的请求时间、所述被管理对象的管理信息库MIB标示符OID(Object ID)、被管理对象的管理信息库MIB节点名称;The network management NMS sends the operation request in the form of a message to the managed object in the MIB corresponding to the SNMP proxy server. The information carried in the request packet includes: the network management end IP address that sends the operation request, and the operation. The requested operation type, the request time of the operation request, the management information base MIB identifier OID (Object ID) of the managed object, and the management information base MIB node name of the managed object;
检测MIB网络操作日志的开关状态; Detecting the switch status of the MIB network operation log;
若所述开关状态为打开,将所述操作请求的请求报文和被管理对象的处理结果报文记录在MIB网络操作日志中;If the switch status is on, the request message of the operation request and the processing result message of the managed object are recorded in the MIB network operation log;
若所述开关状态为关闭,将所述操作请求的请求报文进行缓存;If the switch state is off, the request message of the operation request is cached;
当被管理对象对所述操作请求的处理结果显示出现错误,那么将所述操作请求的请求报文和被管理对象的处理结果报文记录在MIB网络操作日志中;When the processing result of the operation request by the managed object indicates that an error occurs, the request message of the operation request and the processing result message of the managed object are recorded in the MIB network operation log;
当被管理对象对所述操作请求的处理结果显示为正常,那么将缓存的操作请求的请求报文释放并丢弃,对本次操作请求不予以记录。When the processing result of the operation request by the managed object is displayed as normal, the request message of the cached operation request is released and discarded, and the operation request is not recorded.
在本发明实施例中,可以通过检测被管理对象对所述操作请求的处理结果报文判断所述处理结果是否出现错误或故障。In the embodiment of the present invention, it is possible to determine whether the processing result has an error or a fault by detecting a processing result message of the operation request by the managed object.
在本发明的实施例中,当所述网络操作日志开关状态为打开时,也可以根据预设的原则仅记录被管理对象处理结果为错误或故障的操作请求,以便节省日志存储空间。In the embodiment of the present invention, when the network operation log switch state is on, only the operation request that the managed object processing result is an error or a fault may be recorded according to a preset principle, so as to save log storage space.
本发明实施例提供一种网络操作管理装置,结构如图3所示,包括:The embodiment of the invention provides a network operation management device, and the structure is as shown in FIG. 3, which includes:
操作请求获取模块31,设置为:获取网管NMS端基于简单网络管理协议SNMP对管理信息库MIB中的被管理对象的操作请求;The operation request obtaining module 31 is configured to: obtain an operation request of the managed object in the management information base MIB by the network management NMS end based on the simple network management protocol SNMP;
网络操作日志第一管理模块32,设置为:如果所述被管理对象基于简单网络管理协议SNMP所返回给网管NMS端的、执行所述操作请求的结果为错误,则将本次操作请求作为日志记录,写入网络操作日志中。The network operation log first management module 32 is configured to: if the managed object returns to the NMS end of the network management system based on the simple network management protocol SNMP, and the result of executing the operation request is an error, the operation request is used as a log record. , written to the network operation log.
在本发明一些实施例中,所述装置还包括:In some embodiments of the present invention, the apparatus further includes:
日志开关状态读取模块,设置为:读取网络操作日志的开关状态;The log switch status reading module is set to: read the switch status of the network operation log;
网络操作日志第二管理模块,设置为:当所述网络操作日志的开关状态为开启,且所述被管理对象基于简单网络管理协议SNMP所返回给网管NMS端的、执行所述操作请求的结果为正确时,将所述操作请求作为日志记录,写入所述网络操作日志中。The second operation module of the network operation log is configured to: when the switch state of the network operation log is on, and the managed object returns to the NMS end of the network management system based on the simple network management protocol SNMP, the result of performing the operation request is When correct, the operation request is written as a log record in the network operation log.
在本发明一些实施例中,所述装置还包括:In some embodiments of the present invention, the apparatus further includes:
操作请求记录缓存模块,设置为:当所述网络操作日志的开关状态为关 闭时,缓存所述操作请求;The operation request record cache module is set to: when the switch state of the network operation log is off When closed, the operation request is cached;
网络操作日志第三管理模块,设置为:如果所述被管理对象基于简单网络管理协议SNMP所返回给网管NMS端的、执行所述操作请求的结果为正确,释放所缓存的所述操作请求。The third operation module of the network operation log is configured to: if the managed object returns to the NMS end of the network management system based on the Simple Network Management Protocol (SNMP), the result of executing the operation request is correct, and the cached operation request is released.
在本发明一些实施例中,所述装置还包括:In some embodiments of the present invention, the apparatus further includes:
日志操作请求接收模块,设置为:接收用户发送的网络操作日志操作请求;The log operation request receiving module is configured to: receive a network operation log operation request sent by the user;
权限读取模块,设置为:根据所述网络操作日志操作请求,从预设的授权模板中获得所述用户对网络操作日志的操作权限;The permission reading module is configured to: obtain, according to the network operation log operation request, the operation authority of the user to the network operation log from the preset authorization template;
日志操作权限管理模块,设置为:根据所述权限,向该用户开放网络操作日志操作功能,使得该用户能够对所述网络操作日志执行所述权限所限定的操作。The log operation authority management module is configured to: open a network operation log operation function to the user according to the authority, so that the user can perform the operation defined by the authority on the network operation log.
在本发明一些实施例中,所述日志记录包括网管端IP地址、所述被管理对象网元属性、所述操作请求的操作类型、所述操作请求的请求时间、所述被管理对象的管理信息库MIB标示符OID、被管理对象的管理信息库MIB节点名称、所述被管理对象对所述操作请求的处理结果。In some embodiments of the present invention, the log record includes a network management end IP address, the managed object network element attribute, an operation type of the operation request, a request time of the operation request, and management of the managed object. The information base MIB identifier OID, the management information base MIB node name of the managed object, and the processing result of the managed object to the operation request.
本领域普通技术人员可以理解上述实施例的全部或部分步骤可以使用计算机程序流程来实现,所述计算机程序可以存储于一计算机可读存储介质中,所述计算机程序在相应的硬件平台上(如系统、设备、装置、器件等)执行,在执行时,包括方法实施例的步骤之一或其组合。One of ordinary skill in the art will appreciate that all or a portion of the steps of the above-described embodiments can be implemented using a computer program flow, which can be stored in a computer readable storage medium, such as on a corresponding hardware platform (eg, The system, device, device, device, etc. are executed, and when executed, include one or a combination of the steps of the method embodiments.
可选地,上述实施例的全部或部分步骤也可以使用集成电路来实现,这些步骤可以被分别制作成一个个集成电路模块,或者将它们中的多个模块或步骤制作成单个集成电路模块来实现。Alternatively, all or part of the steps of the above embodiments may also be implemented by using an integrated circuit. These steps may be separately fabricated into individual integrated circuit modules, or multiple modules or steps may be fabricated into a single integrated circuit module. achieve.
上述实施例中的装置/功能模块/功能单元可以采用通用的计算装置来实现,它们可以集中在单个的计算装置上,也可以分布在多个计算装置所组成的网络上。The devices/function modules/functional units in the above embodiments may be implemented by a general-purpose computing device, which may be centralized on a single computing device or distributed over a network of multiple computing devices.
上述实施例中的装置/功能模块/功能单元以软件功能模块的形式实现并 作为独立的产品销售或使用时,可以存储在一个计算机可读取存储介质中。上述提到的计算机可读取存储介质可以是只读存储器,磁盘或光盘等。The device/function module/function unit in the above embodiment is implemented in the form of a software function module and When sold or used as a stand-alone product, it can be stored on a computer readable storage medium. The above mentioned computer readable storage medium may be a read only memory, a magnetic disk or an optical disk or the like.
工业实用性Industrial applicability
本发明实施例提供的网络操作管理方法和装置,能够对基于SNMP的网络操作进行适当的记录,从而在网管NMS端和MIB中的被管理对象之间的网络通信出现故障时能够有记录可以查找,方便操作故障原因的检查,有助于网络管理人员解决网管NMS端和MIB中的被管理对象之间的网络通信故障。同时,本发明实施例所提供的方法和装置,通过授权模板对网络操作日志设置权限,保障网络操作信息的安全。 The network operation management method and apparatus provided by the embodiments of the present invention can appropriately record SNMP-based network operations, so that when the network communication between the NMS end of the network management system and the managed object in the MIB fails, records can be found. It is convenient for the operation to check the cause of the failure, which helps the network administrator to solve the network communication failure between the NMS end of the network management and the managed object in the MIB. In the meantime, the method and the device provided by the embodiment of the present invention set the authority on the network operation log through the authorization template to ensure the security of the network operation information.

Claims (11)

  1. 一种网络操作管理方法,包括:A network operation management method includes:
    获取网管NMS端基于简单网络管理协议SNMP对管理信息库MIB中的被管理对象的操作请求;Obtaining an operation request of the managed object in the management information base MIB based on the simple network management protocol SNMP by the NMS end of the network management;
    如果所述被管理对象基于简单网络管理协议SNMP所返回给网管NMS端的、执行所述操作请求的结果为错误,则将本次操作请求作为日志记录,写入网络操作日志中。If the result of executing the operation request returned by the managed object to the NMS end of the NMS based on the Simple Network Management Protocol (SNMP) is an error, the operation request is written as a log record in the network operation log.
  2. 根据权利要求1所述的方法,获取网管NMS端基于简单网络管理协议SNMP对管理信息库MIB中的被管理对象的操作请求之后,还包括:The method of claim 1, after obtaining the operation request of the managed object in the management information base MIB based on the simple network management protocol SNMP, the network management NMS side further includes:
    读取网络操作日志的开关状态;Read the switch status of the network operation log;
    当所述网络操作日志的开关状态为开启,且所述被管理对象基于简单网络管理协议SNMP所返回给网管NMS端的、执行所述操作请求的结果为正确时,将所述操作请求作为日志记录,写入所述网络操作日志中。When the switch state of the network operation log is on, and the managed object returns to the NMS end of the network management system based on the Simple Network Management Protocol (SNMP), the result of executing the operation request is correct, and the operation request is used as a log record. , written in the network operation log.
  3. 根据权利要求2所述的方法,读取网络操作日志的开关状态之后,还包括:The method according to claim 2, after reading the switch state of the network operation log, further comprising:
    当所述网络操作日志的开关状态为关闭时,缓存所述操作请求;When the switch state of the network operation log is off, the operation request is cached;
    如果所述被管理对象基于简单网络管理协议SNMP所返回给网管NMS端的、执行所述操作请求的结果为正确,释放所缓存的所述操作请求。If the managed object returns to the NMS end of the network management system based on the Simple Network Management Protocol (SNMP), the result of executing the operation request is correct, and the cached operation request is released.
  4. 根据权利要求1-3中任意一项所述的方法,还包括:The method of any of claims 1-3, further comprising:
    接收用户发送的网络操作日志操作请求;Receiving a network operation log operation request sent by the user;
    根据所述网络操作日志操作请求,从预设的授权模板中获得所述用户对网络操作日志的操作权限;Obtaining the operation authority of the user for the network operation log from the preset authorization template according to the network operation log operation request;
    根据所述权限,向该用户开放网络操作日志操作功能,使得该用户能够对所述网络操作日志执行所述权限所限定的操作。And according to the authority, the network operation log operation function is opened to the user, so that the user can perform the operation defined by the authority on the network operation log.
  5. 根据权利要求1所述的方法,其中,所述日志记录包括网管端IP地址、所述被管理对象网元属性、所述操作请求的操作类型、所述操作请求的请求时间、所述被管理对象的管理信息库MIB标示符OID、被管理对象的管 理信息库MIB节点名称和所述被管理对象对所述操作请求的处理结果。The method according to claim 1, wherein the log record comprises a network management end IP address, the managed object network element attribute, an operation type of the operation request, a request time of the operation request, and the managed Object management information base MIB identifier OID, managed object management The information base MIB node name and the processing result of the operation request by the managed object.
  6. 一种网络操作管理装置,包括:A network operation management device includes:
    操作请求获取模块,设置为:获取网管NMS端基于简单网络管理协议SNMP对管理信息库MIB中的被管理对象的操作请求;The operation request acquisition module is configured to: obtain an operation request of the managed object in the management information base MIB based on the simple network management protocol SNMP by the NMS end of the network management;
    网络操作日志第一管理模块,设置为:如果所述被管理对象基于简单网络管理协议SNMP所返回给网管NMS端的、执行所述操作请求的结果为错误,则将本次操作请求作为日志记录,写入网络操作日志中。The network management log first management module is configured to: if the managed object returns an error to the NMS end of the network management system based on the simple network management protocol, and the result of the operation request is an error, the operation request is used as a log record. Write to the network operation log.
  7. 根据权利要求6所述的装置,还包括:The apparatus of claim 6 further comprising:
    日志开关状态读取模块,设置为:读取网络操作日志的开关状态;The log switch status reading module is set to: read the switch status of the network operation log;
    网络操作日志第二管理模块,设置为:当所述网络操作日志的开关状态为开启,且所述被管理对象基于简单网络管理协议SNMP所返回给网管NMS端的、执行所述操作请求的结果为正确时,将所述操作请求作为日志记录,写入所述网络操作日志中。The second operation module of the network operation log is configured to: when the switch state of the network operation log is on, and the managed object returns to the NMS end of the network management system based on the simple network management protocol SNMP, the result of performing the operation request is When correct, the operation request is written as a log record in the network operation log.
  8. 根据权利要求7所述的装置,还包括:The apparatus of claim 7 further comprising:
    操作请求记录缓存模块,设置为:当所述网络操作日志的开关状态为关闭时,缓存所述操作请求;An operation request record caching module is configured to: when the switch state of the network operation log is off, buffer the operation request;
    网络操作日志第三管理模块,设置为:如果所述被管理对象基于简单网络管理协议SNMP所返回给网管NMS端的、执行所述操作请求的结果为正确,释放所缓存的所述操作请求。The third operation module of the network operation log is configured to: if the managed object returns to the NMS end of the network management system based on the Simple Network Management Protocol (SNMP), the result of executing the operation request is correct, and the cached operation request is released.
  9. 根据权利要求6-8中任意一项所述的装置,还包括:The apparatus of any of claims 6-8, further comprising:
    日志操作请求接收模块,设置为:接收用户发送的网络操作日志操作请求;The log operation request receiving module is configured to: receive a network operation log operation request sent by the user;
    权限读取模块,设置为:根据所述网络操作日志操作请求,从预设的授权模板中获得所述用户对网络操作日志的操作权限;The permission reading module is configured to: obtain, according to the network operation log operation request, the operation authority of the user to the network operation log from the preset authorization template;
    日志操作权限管理模块,设置为:根据所述权限,向该用户开放网络操作日志操作功能,使得该用户能够对所述网络操作日志执行所述权限所限定的操作。 The log operation authority management module is configured to: open a network operation log operation function to the user according to the authority, so that the user can perform the operation defined by the authority on the network operation log.
  10. 根据权利要求6所述的装置,其中,所述日志记录包括网管端IP地址、所述被管理对象网元属性、所述操作请求的操作类型、所述操作请求的请求时间、所述被管理对象的管理信息库MIB标示符OID、被管理对象的管理信息库MIB节点名称和所述被管理对象对所述操作请求的处理结果。The apparatus according to claim 6, wherein the log record comprises a network management end IP address, the managed object network element attribute, an operation type of the operation request, a request time of the operation request, and the managed The management information base MIB identifier OID of the object, the management information base MIB node name of the managed object, and the processing result of the operation request by the managed object.
  11. 一种计算机可读存储介质,存储有计算机可执行指令,所述计算机可执行指令用于执行权利要求1-5任一项的方法。 A computer readable storage medium storing computer executable instructions for performing the method of any of claims 1-5.
PCT/CN2015/080341 2014-12-22 2015-05-29 Network operation management method and apparatus WO2016101532A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201410810985.4 2014-12-22
CN201410810985.4A CN105790979A (en) 2014-12-22 2014-12-22 Network operation management method and device

Publications (1)

Publication Number Publication Date
WO2016101532A1 true WO2016101532A1 (en) 2016-06-30

Family

ID=56149102

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2015/080341 WO2016101532A1 (en) 2014-12-22 2015-05-29 Network operation management method and apparatus

Country Status (2)

Country Link
CN (1) CN105790979A (en)
WO (1) WO2016101532A1 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107547246A (en) * 2017-05-31 2018-01-05 新华三技术有限公司 A kind of method for reading data and device

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20060294214A1 (en) * 2005-06-23 2006-12-28 Joey Chou Event logging techniques for broadband wireless access networks
CN101282237A (en) * 2008-05-27 2008-10-08 中山大学 Synthetic network management system based on SNMP
CN101667932A (en) * 2009-09-30 2010-03-10 中兴通讯股份有限公司 Method of network element equipment log management and device
CN102014407A (en) * 2010-12-10 2011-04-13 北京交通大学 Simple network management protocol (SNMP)-based wireless sensor network domain authorized proxy management mechanism

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN100420206C (en) * 2006-04-05 2008-09-17 华为技术有限公司 SNMP communication system and method
CN103516530A (en) * 2012-06-20 2014-01-15 中兴通讯股份有限公司 Method and device for obtaining extension error information from agent end

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20060294214A1 (en) * 2005-06-23 2006-12-28 Joey Chou Event logging techniques for broadband wireless access networks
CN101282237A (en) * 2008-05-27 2008-10-08 中山大学 Synthetic network management system based on SNMP
CN101667932A (en) * 2009-09-30 2010-03-10 中兴通讯股份有限公司 Method of network element equipment log management and device
CN102014407A (en) * 2010-12-10 2011-04-13 北京交通大学 Simple network management protocol (SNMP)-based wireless sensor network domain authorized proxy management mechanism

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107547246A (en) * 2017-05-31 2018-01-05 新华三技术有限公司 A kind of method for reading data and device
CN107547246B (en) * 2017-05-31 2021-04-16 新华三技术有限公司 Data reading method and device

Also Published As

Publication number Publication date
CN105790979A (en) 2016-07-20

Similar Documents

Publication Publication Date Title
Marty Cloud application logging for forensics
US9647891B2 (en) Managing network configurations
US9658914B2 (en) Troubleshooting system using device snapshots
US20180109425A1 (en) Component detection and management using relationships
Kasick et al. Black-Box Problem Diagnosis in Parallel File Systems.
US9916147B2 (en) Deployment of a tool for testing migrated applications
US8738761B2 (en) Method and system to capture and playback network activity
EP3140960B1 (en) Methods, systems, and computer readable media for providing fuzz testing functionality
Wu et al. Exploring the use of PLC debugging tools for digital forensic investigations on SCADA systems
US8498214B2 (en) Switching device, information processing device, and recording medium for failure notification control program
WO2021086523A1 (en) Support ticket platform for improving network infrastructures
US10083070B2 (en) Log file reduction according to problem-space network topology
CN110633195A (en) Performance data display method and device, electronic equipment and storage medium
CA3216355C (en) Generating synthetic transactions with packets
CN111522499A (en) Operation and maintenance data reading device and reading method thereof
WO2016101532A1 (en) Network operation management method and apparatus
Lee et al. A framework for policy inconsistency detection in software-defined networks
Kavasseri Event Mib
Jagdish et al. Modeling software architecture design on data storage security in cloud computing environments
US11792065B2 (en) Network controller, failure injection communication protocol, and failure injection module for production network environment
CN117093639B (en) Socket connection processing method and system based on audit service
Daubner Effective computer infrastructure monitoring
US20240144269A1 (en) Dynamic tracing of document data leaks via application instrumentation
ES2812152T3 (en) A method and a system to enable a (re) configuration of a telecommunications network
CN117493133A (en) Alarm method, alarm device, electronic equipment and medium

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 15871608

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 15871608

Country of ref document: EP

Kind code of ref document: A1