WO2023213060A1 - Procédé et système de gestion basés sur une plateforme de surveillance zabbix - Google Patents

Procédé et système de gestion basés sur une plateforme de surveillance zabbix Download PDF

Info

Publication number
WO2023213060A1
WO2023213060A1 PCT/CN2022/128007 CN2022128007W WO2023213060A1 WO 2023213060 A1 WO2023213060 A1 WO 2023213060A1 CN 2022128007 W CN2022128007 W CN 2022128007W WO 2023213060 A1 WO2023213060 A1 WO 2023213060A1
Authority
WO
WIPO (PCT)
Prior art keywords
monitoring
query
zabbix
platform
data
Prior art date
Application number
PCT/CN2022/128007
Other languages
English (en)
Chinese (zh)
Inventor
钱寅
吴志远
谢虎
李琳
潘圆
霍正鸣
Original Assignee
上海欣诺通信技术股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 上海欣诺通信技术股份有限公司 filed Critical 上海欣诺通信技术股份有限公司
Publication of WO2023213060A1 publication Critical patent/WO2023213060A1/fr

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/06Management of faults, events, alarms or notifications
    • H04L41/0631Management of faults, events, alarms or notifications using root cause analysis; using analysis of correlation between notifications, alarms or events based on decision criteria, e.g. hierarchy, tree or time analysis
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/06Management of faults, events, alarms or notifications
    • H04L41/069Management of faults, events, alarms or notifications using logs of notifications; Post-processing of notifications
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L43/00Arrangements for monitoring or testing data switching networks
    • H04L43/08Monitoring or testing based on specific metrics, e.g. QoS, energy consumption or environmental parameters

Definitions

  • the present invention relates to the technical field of network security monitoring, and specifically relates to a management method and system based on Zabbix monitoring platform.
  • the present invention provides a management method and system based on the Zabbix monitoring platform, specifically:
  • the present invention provides a management method based on the Zabbix monitoring platform, which includes: a monitoring management platform, the Zabbix monitoring platform connected to the monitoring management platform through an API interface, and also includes:
  • the Zabbix monitoring platform In the state where the Zabbix monitoring platform obtains the query instruction, the Zabbix monitoring platform obtains the query data matching the query instruction from the Zabbix client according to the query instruction, and returns the query data to The monitoring and management platform.
  • the above-mentioned management method based on Zabbix monitoring platform includes:
  • the monitoring and management platform determines whether to form a warning notification based on the query data
  • the target account matching the warning notification is read according to the warning notification, and the warning notification is sent according to the target account.
  • the monitoring and management platform obtains the query command, it first outputs the query command, and obtains the query target matching the query command according to the query command;
  • the above-mentioned management method based on Zabbix monitoring platform wherein the monitoring and management platform determines whether to form a warning notification based on the query data specifically includes:
  • the query data reads process monitoring data, monitoring status data, file status data, and Principal log monitoring data;
  • the warning notification is generated when any data among the process monitoring data, monitoring status data, file status data, and Xin'an log monitoring data matches predetermined monitoring data.
  • Warning notices specifically include:
  • the alert notification is sent according to the reading sequence.
  • the present invention further provides a management system based on the Zabbix monitoring platform, which includes: a monitoring management platform, the Zabbix monitoring platform connected to the monitoring management platform through an API interface, and the Zabbix monitoring platform is connected to at least a DPI server;
  • the Zabbix monitoring platform at least includes a Zabbix client, a device, a program, and a Zabbix data storage unit connected to the Zabbix server;
  • the monitoring management platform at least includes a monitoring display unit, a third-party interface unit, and a monitoring data storage unit connected to a monitoring server.
  • the Zabbix server is connected to the monitoring server.
  • the system is used to implement any of the above based on Management method of Zabbix monitoring platform.
  • the present invention provides an electronic device, including a memory, a processor, and a computer program stored in the memory and executable on the processor, wherein when the processor executes the computer program, any one of the above is implemented.
  • the project is based on the management method of Zabbix monitoring platform.
  • this application provides a computer program product, which includes computer readable code, or a readable storage medium carrying computer readable code.
  • computer readable code When the computer readable code is run in a processor of an electronic device, the The processor in the electronic device executes any management method based on the Zabbix monitoring platform.
  • Figure 1 is a flow chart of a management method based on Zabbix monitoring platform provided in Embodiment 1 of the present invention
  • Figure 2 is a schematic structural diagram of a management system based on Zabbix monitoring platform provided in Embodiment 2 of the present invention
  • FIG. 3 is a schematic structural diagram of an electronic device provided in Embodiment 3 of the present invention.
  • the existing Zabbix monitoring platform needs to use the monitoring system to check the server status and website traffic indicators, and use the data of the monitoring system to understand the results of the online release and the health status of the website.
  • the display method of the Zabbix monitoring platform is usually very unfriendly. It usually displays all data at the same time. Therefore, when a fault occurs, the device status associated with the fault cannot be accurately obtained. For example, if device A fails, the Zabbix monitoring platform will follow the predefined logic. A warning notification of equipment A is output, but the maintenance personnel cannot quickly determine the cause of the failure of equipment A and need to query a large amount of information. Based on this, this application provides a management method and system based on Zabbix monitoring platform
  • a management method based on the Zabbix monitoring platform includes: a monitoring management platform, the Zabbix monitoring platform connected to the monitoring management platform through an API interface, and the Zabbix monitoring platform is connected to at least one DPI server; Specifically: the Zabbix monitoring platform at least includes a Zabbix client, a device, a program, and a Zabbix data storage unit connected to the Zabbix server.
  • the monitoring management platform at least includes a monitoring display unit and a third-party interface connected to a monitoring server. unit and a monitoring data storage unit, and the Zabbix server is connected to the monitoring server. Also includes:
  • Step S110 Output the query command when the monitoring and management platform obtains the query command, and obtain at least one query command matching the query command according to the query command; further, it specifically includes:
  • Step S1101 When the monitoring and management platform obtains the query command, first output the query command, and obtain the query target matching the query command according to the query command; wherein the query command can be output by the monitoring and management platform, for example, monitoring management
  • the platform receives externally input query target information and forms the query command based on the query target information.
  • the query command After the query command is formed, it can be sent and executed by the corresponding device.
  • the query command is formed based on the data stored inside the monitoring management platform. Schematically, according to the query command, the transmission path of the query command can be simulated first. According to the query command, The transmission path obtains the corresponding query target.
  • Step S1102 Form a query target flow information according to the query target, wherein the query target flow information matches the signal flow transmitted by the query command. For example, if it is currently received that device A is in a fault alarm state, a query command needs to be issued to device A.
  • the transmission process of the query command can be understood as a signal flow transmitted by the query command.
  • Step S1103 Form at least one query instruction matching the query target information according to the query target flow information.
  • the query instruction is in the state of obtaining the query object matching the query instruction.
  • the cause of the failure of device A may be caused by device A itself or may be caused by other devices.
  • device A has the previous device for signal transmission, and the previous device for signal transmission with the previous device. Therefore, the query object at least includes the working status of all devices matching the signal flow, and each device has a corresponding query command.
  • Step S120 When the Zabbix monitoring platform obtains the query instruction, the Zabbix monitoring platform obtains the query data matching the query instruction from the Zabbix client according to the query instruction, and converts the query instruction into the Zabbix client. The data is returned to the monitoring and management platform.
  • the Zabbix monitoring platform When the Zabbix monitoring platform obtains the corresponding state of the query instruction, it obtains query data from the Zabbix client according to the query instruction. It should be noted that the query data not only contains the data required by the current query instruction, but also Need to include historical operating data of the device.
  • the Zabbix monitoring platform sends the query data to the monitoring and management platform, and the monitoring and management platform displays the query data.
  • historical operating data is used for users to determine whether a fault has actually occurred, and the data required by the current query command is used to determine whether the current fault continues to exist. For example, if all equipment is in normal working condition based on historical operating data, then the cause of the fault may be false alarms generated by the system itself. The alarm fault is not actually stored. If there is an abnormality in the historical operating data, the fault of the monitoring platform itself must be eliminated to confirm the authenticity of the alarm. In the state where the alarm actually occurs, determine whether the fault is based on the data required by the current query command. Abnormality. If the data required by the current query command is in an abnormal state, the fault continues to exist. The cause of the fault will be investigated based on the current query command and historical operating data. If the data required by the current query command is in a normal state, troubleshooting will be based on historical operating data. Reasons for the occurrence and disappearance of faults.
  • the corresponding query target flow information may be the status information of device A1 ⁇ the status information of device A2 ⁇ the status information of device A3 ⁇ the status information of device A4 ⁇ the status information of device A5 ⁇ the status information of device A, according to the query target
  • the flow information forms the query command of device A1, the query command of device A2, the query command of A3, the query command of A4, the query command of A5, and the query command of A.
  • the corresponding query data is obtained in the Zabbix monitoring platform.
  • the query data is obtained from the Zabbix client according to the query command. It should be noted that the query data not only contains the data required by the current query command, but also needs to contain historical operating data of the device. The obtained data required for the current query command and the historical operation data will be fed back to the monitoring and management platform at the same time to facilitate users to query the current status of the system.
  • the above-mentioned management method based on Zabbix monitoring platform also includes:
  • Step S130 The monitoring and management platform determines whether to form a warning notification based on the query data; specifically including:
  • Step S1301 When the monitoring and management platform obtains query data, the query data reads process monitoring data, monitoring status data, file status data, and Security log monitoring data;
  • Step S1302 The warning notification is generated when any data among the process monitoring data, monitoring status data, file status data, and security log monitoring data matches predetermined monitoring data.
  • the process monitoring data is formed by the application process monitoring in the monitoring management platform.
  • This module monitors the DPI server and the interface server. When the application process status of the DPI server and the interface server is abnormal, an alarm will be generated.
  • File status data is formed by file directory monitoring in the monitoring and management platform. This module monitors the DPI server and generates an alarm when the file size of the DPI server is greater than 2G. An alarm is generated when the time interval is greater than 5 minutes or matches other predetermined conditions.
  • the monitoring status data is formed by the policy loading monitoring module in the monitoring management platform. This module monitors the DPI server. When a DPI server is in the monitored state, but the value of a certain monitoring item monitored may be abnormal, this will uniformly return page abnormal values. . If the page returns a normal value and the number of abnormal policy loading DPIs is greater than 0, an alarm will be generated.
  • the principal log monitoring data is formed by the principal log monitoring module in the monitoring management platform. This module monitors the DPI server. If a certain DPI server is in a monitored state, an abnormality may occur in monitoring a certain monitoring item. In this case, the return Abnormal page values generate alarms.
  • Step S140 When the warning notification is formed, read the target account matching the warning notification according to the warning notification, and send the warning notification according to the target account. specifically:
  • Step S1401 In a state where a warning notification is formed, read the target account matching the warning notification according to the warning notification; the target account is usually a related person corresponding to the warning notification.
  • Step S1402 Obtain the reading order of the previous warning notification in the target account; each target account is set with at least two methods for receiving warning notifications, for example, the current account receiving methods are email, WeChat and SMS. Then first obtain the reading time of the warning notification received by WeChat, email and SMS when the last warning notification was sent, and form the reading sequence according to a reading interval.
  • the reception time of the previous warning notification and WeChat is 12: 00
  • the receiving time of the mailbox is 12:05
  • the receiving time of the text message is 12:10
  • the reading time of WeChat is 12:15.
  • the time difference of WeChat is 10 minutes, and neither the mailbox nor the text message has been read.
  • the reading interval of WeChat is 10 minutes, and the reading interval of email and text messages is M+5, M (M is the maximum reading value, that is, three hours after the first reading is completed is defined as the maximum reading value), then this The reading order is WeChat, SMS and email.
  • Step S1403 Send the warning notification according to the reading sequence.
  • the aim is to allow users to receive warning notifications in the most accustomed way.
  • the reading status of the warning notification is automatically adjusted to the read status. Because network communication has high real-time requirements, the network needs to be adjusted and perfected within the maximum reading interval.
  • the maximum reading time can be set according to the content of the warning notification. For higher warning notification levels, the maximum reading time will be smaller, and conversely, the maximum reading time will be larger. If the repair has not been completed within the maximum reading time range, the next warning notification will be sent again. Therefore, the status of unread warning notifications can be modified. In addition, if no warning notification is read within the maximum reading time of the warning notification, the warning notification will be sent again.
  • the present invention further provides a management system based on the Zabbix monitoring platform, which includes: a monitoring management platform, the Zabbix monitoring platform connected to the monitoring management platform through an API interface, and the The Zabbix monitoring platform is connected to at least one DPI server;
  • the third-party interface unit is used to connect third-party interfaces, such as SMS connection communication interface, WeChat connection communication interface, email connection communication interface, etc.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Environmental & Geological Engineering (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Debugging And Monitoring (AREA)

Abstract

L'invention concerne un procédé et un système de gestion basés sur une plateforme de surveillance Zabbix. Le système comprend une plateforme de gestion de surveillance et une plateforme de surveillance Zabbix connectée à la plateforme de gestion de surveillance au moyen d'une interface API. Le procédé consiste à : produire une commande d'interrogation dans un état dans lequel une plateforme de gestion de surveillance acquiert une commande d'interrogation, et, selon la commande d'interrogation, acquérir au moins une instruction d'interrogation correspondant à la commande d'interrogation ; et dans un état dans lequel une plateforme de surveillance Zabbix acquiert une instruction d'interrogation, la plateforme de surveillance Zabbix acquiert des données d'interrogation correspondant à l'instruction d'interrogation provenant d'un client Zabbix selon l'instruction d'interrogation, et renvoie les données d'interrogation à la plateforme de gestion de surveillance.
PCT/CN2022/128007 2022-05-06 2022-10-27 Procédé et système de gestion basés sur une plateforme de surveillance zabbix WO2023213060A1 (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN202210486596.5A CN114844772A (zh) 2022-05-06 2022-05-06 一种基于Zabbix监控平台的管理方法及系统
CN202210486596.5 2022-05-06

Publications (1)

Publication Number Publication Date
WO2023213060A1 true WO2023213060A1 (fr) 2023-11-09

Family

ID=82567893

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2022/128007 WO2023213060A1 (fr) 2022-05-06 2022-10-27 Procédé et système de gestion basés sur une plateforme de surveillance zabbix

Country Status (2)

Country Link
CN (1) CN114844772A (fr)
WO (1) WO2023213060A1 (fr)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114844772A (zh) * 2022-05-06 2022-08-02 上海欣诺通信技术股份有限公司 一种基于Zabbix监控平台的管理方法及系统

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110071951A (zh) * 2018-01-24 2019-07-30 江苏迪纳数字科技股份有限公司 一种大数据条件下的数据查询展示系统及方法
US20200250019A1 (en) * 2019-02-01 2020-08-06 EMC IP Holding Company LLC Method, device and computer program product for monitoring access request
CN112738212A (zh) * 2020-12-23 2021-04-30 高新兴智联科技有限公司 一种机动车电子标识读写设备运维的方法与系统
CN114844772A (zh) * 2022-05-06 2022-08-02 上海欣诺通信技术股份有限公司 一种基于Zabbix监控平台的管理方法及系统

Family Cites Families (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8484243B2 (en) * 2010-05-05 2013-07-09 Cisco Technology, Inc. Order-independent stream query processing
US20120330924A1 (en) * 2011-06-21 2012-12-27 Salesforce.Com, Inc. Method and system for querying an on demand database service
US10462626B2 (en) * 2014-09-23 2019-10-29 Nokia Solutions And Networks Oy Control of communication using service function chaining
CN109165024A (zh) * 2018-07-26 2019-01-08 天讯瑞达通信技术有限公司 一种运维平台自动部署和监控服务器系统的方法
CN111814029A (zh) * 2020-05-25 2020-10-23 车智互联(北京)科技有限公司 一种数据查询方法、系统及计算设备
CN111934936B (zh) * 2020-09-10 2023-07-18 广州虎牙科技有限公司 网络状态检测方法、装置、电子设备及存储介质
CN112860738B (zh) * 2021-04-23 2021-08-06 支付宝(杭州)信息技术有限公司 针对多方安全数据库的查询优化方法、装置和系统
CN113568813A (zh) * 2021-07-30 2021-10-29 中国工商银行股份有限公司 一种海量网络性能数据采集方法、装置及系统
CN114157554B (zh) * 2021-12-21 2024-02-23 唯品会(广州)软件有限公司 故障排查方法、装置、存储介质及计算机设备
CN114416470A (zh) * 2021-12-28 2022-04-29 航天科工网络信息发展有限公司 一种云端监控方法、系统、设备及计算机存储介质

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110071951A (zh) * 2018-01-24 2019-07-30 江苏迪纳数字科技股份有限公司 一种大数据条件下的数据查询展示系统及方法
US20200250019A1 (en) * 2019-02-01 2020-08-06 EMC IP Holding Company LLC Method, device and computer program product for monitoring access request
CN112738212A (zh) * 2020-12-23 2021-04-30 高新兴智联科技有限公司 一种机动车电子标识读写设备运维的方法与系统
CN114844772A (zh) * 2022-05-06 2022-08-02 上海欣诺通信技术股份有限公司 一种基于Zabbix监控平台的管理方法及系统

Also Published As

Publication number Publication date
CN114844772A (zh) 2022-08-02

Similar Documents

Publication Publication Date Title
US9716613B2 (en) Automated alert management
US11411871B2 (en) Augmenting functionality in distributed systems with payload headers
CN111343009B (zh) 服务告警通知方法及装置、存储介质、电子设备
WO2023213060A1 (fr) Procédé et système de gestion basés sur une plateforme de surveillance zabbix
CN110289997B (zh) 一种日志报文校验方法、装置及系统
CN114020735A (zh) 安全告警日志降噪方法、装置、设备及存储介质
US11303678B2 (en) Determination and autocorrection of modified security policies
US8786458B1 (en) Browser-based alerting system
CN113673945A (zh) 核电厂临时变更监控方法及装置
CN111262731B (zh) 告警方法、装置、服务器设备及存储介质
US9973410B2 (en) Notifying original state listeners of events in a domain model
CN117041120A (zh) 一种分布式全链路服务监控系统
US9594622B2 (en) Contacting remote support (call home) and reporting a catastrophic event with supporting documentation
CN114679295B (zh) 防火墙安全配置方法及装置
CN109474478B (zh) 用于监测传输数据异常的方法、装置和系统
CN113504969A (zh) 容器事件告警的方法、装置及电子设备
CN115190000A (zh) 告警数据的处理方法、装置、电子设备和存储介质
US10586283B2 (en) Elektron pulse methods, apparatuses and media
CN114091909A (zh) 一种协同开发的方法、系统、装置及电子设备
CN114567536B (zh) 异常数据处理方法、装置、电子设备和存储介质
CN115150172B (zh) 数据处理方法及装置、设备和介质
CN112596922B (zh) 通信管理方法、装置、设备和介质
CN115643091A (zh) 系统日志监控方法、装置、设备及介质
CN117270730A (zh) 一种电网线路配置方法、装置、电子设备及存储介质
CN117170978A (zh) 一种接口调用监控方法、装置、电子设备以及存储介质

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 22940754

Country of ref document: EP

Kind code of ref document: A1