CN105553743A - Log obtaining method, system, first network device and third network device - Google Patents
Log obtaining method, system, first network device and third network device Download PDFInfo
- Publication number
- CN105553743A CN105553743A CN201511026295.0A CN201511026295A CN105553743A CN 105553743 A CN105553743 A CN 105553743A CN 201511026295 A CN201511026295 A CN 201511026295A CN 105553743 A CN105553743 A CN 105553743A
- Authority
- CN
- China
- Prior art keywords
- network equipment
- log
- backup
- instruction
- network
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/06—Management of faults, events, alarms or notifications
- H04L41/0677—Localisation of faults
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L43/00—Arrangements for monitoring or testing data switching networks
- H04L43/02—Capturing of monitoring data
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
- H04L63/1425—Traffic logging, e.g. anomaly detection
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention discloses a log obtaining method, a log obtaining system, a third network device and a first network device; the log obtaining system is characterized by comprising the first network device, a second network device and the third network device, wherein the second network device sends an early warning message; the first network device receives the early warning message sent by the second network device; the first network device sends a log backup command to the third network device; the third network device receives the log backup command sent by the first network device, and backups a log according to the log backup command when determining the log backup command meets the requirements; the third network device sends the backup log to the first network device; and the first network device receives the backup log sent by the third network device. The log obtaining method, the log obtaining system, the third network device and the first network device are used for improving the log obtaining efficiency, thereby realizing the positioning analysis to a fault and improving the efficiency.
Description
Technical field
The present invention relates to communication technical field, especially relate to a kind of method, system, first network equipment and the 3rd network equipment that obtain daily record.
Background technology
In field of computer technology, along with communication technology development, the network equipment constantly increases, and needs to debug the network equipment in a lot of situation, to determine the reason of exception of network traffic, to ensure that user can normal accesses network.
Generally, the network equipment, in running, can be monitored the network equipment of this operation, the result of monitoring can by and log recording corresponding to the network equipment of this operation.In daily record, the running status of the network equipment of this operation can be recorded and record network of network flow, corresponding log recording time.Follow-up can by analyzing daily record, realize debugging the network equipment, determine the failure cause of the network equipment or determine that abnormal reason appears in the network at network equipment place.
But, the memory space of the network equipment is limited, the network equipment run has randomness when occurring abnormal, this just likely exists when the network equipment run occurs abnormal, the corresponding a large amount of daily record of network equipment meeting of this operation, when correlation log is analyzed, daily record number ratio to be analyzed is more, need to screen in numerous daily record, be unfavorable for determining required daily record fast in more daily record, in addition, in a large amount of daily record, determine the daily record relevant to abnormality, efficiency comparison is low.
Summary of the invention
The invention provides a kind of method, system, first network equipment and the 3rd network equipment that obtain daily record, for improving the efficiency obtaining daily record, and then realizing the positioning analysis to fault, raising the efficiency.
Obtain a system for daily record, comprise first network equipment, second network equipment and the 3rd network equipment, described second network equipment is for monitoring the running status of described 3rd network equipment; And/or flow through the network traffics of the 3rd network equipment; Wherein, described second network equipment sends early warning information, and wherein said early warning information is second network equipment determining the early warning that the network traffics flowing through the 3rd network equipment of monitoring send when occurring abnormal; Described first network equipment, receive the early warning information that described second network equipment sends, described first network equipment sends Log backup instruction to the 3rd network equipment, and described Log backup instruction is for notifying the daily record that the 3rd network equipment backup is corresponding with the 3rd network equipment; Described 3rd network equipment receives the Log backup instruction that first network equipment sends, when determining that described Log backup instruction meets the requirements, according to described Log backup instruction, and backup log; Described backup log is sent to described first network equipment by described 3rd network equipment; Described first network equipment receives the backup log that described 3rd network equipment sends.
Described first network equipment is also for sending log recording instruction to the 3rd network equipment, and wherein, described log recording instruction is the daily record that instruction the 3rd network equipment record is corresponding with described 3rd network equipment; Described 3rd network equipment receives the log recording instruction that described first network equipment sends, and described 3rd network equipment is according to described log recording instruction log.
A kind of method obtaining daily record, comprise: first network equipment is when receiving the early warning information that second network equipment sends, described first network equipment sends Log backup instruction to the 3rd network equipment, wherein said early warning information is second network equipment determining the early warning that the network traffics flowing through the 3rd network equipment of monitoring send when occurring abnormal, described Log backup instruction is for notifying the daily record that the 3rd network equipment backup is corresponding with the 3rd network equipment, and described second network equipment is for monitoring the running status of described 3rd network equipment; And/or flow through the network traffics of the 3rd network equipment; Described first network equipment receives the backup log that described 3rd network equipment sends.
At least comprise in described Log backup instruction following in one: the BACKUP TIME of daily record to be backed up; The backup format of daily record to be backed up; The backup address of daily record to be backed up.
Receive the early warning information of second network equipment transmission at first network equipment before, also comprise: described first network equipment sends log recording instruction to the 3rd network equipment, wherein, described log recording instruction is the daily record that instruction the 3rd network equipment record is corresponding with described 3rd network equipment.
A kind of method obtaining daily record, comprise: the 3rd network equipment receives the Log backup instruction that first network equipment sends, wherein said Log backup instruction is for notifying the daily record that the 3rd network equipment backup is corresponding with the 3rd network equipment, described second network equipment for monitoring the running status of described 3rd network equipment, and/or flows through the network traffics of the 3rd network equipment; Described 3rd network equipment when determining that described Log backup instruction meets the requirements, according to described Log backup instruction, backup log; Described backup log is sent to described first network equipment by described 3rd network equipment.
Receive the Log backup instruction of first network equipment transmission at the 3rd network equipment before, also comprise: described 3rd network equipment receives the log recording instruction that described first network equipment sends; Described 3rd network equipment is according to described log recording instruction log.
A kind of first network equipment, comprising: receiver module, and for receiving the early warning information that second network equipment sends, described early warning information is second network equipment determining the early warning that the network traffics flowing through the 3rd network equipment of monitoring send when occurring abnormal; Sending module, for when receiving the early warning information that second network equipment sends, Log backup instruction is sent to the 3rd network equipment, wherein said Log backup instruction is for notifying the daily record that the 3rd network equipment backup is corresponding with the 3rd network equipment, described second network equipment for monitoring the running status of described 3rd network equipment, and/or flows through the network traffics of the 3rd network equipment; Described receiver module, also for receiving the backup log that described 3rd network equipment sends.
At least comprise in the Log backup instruction that described sending module sends following in one:
The BACKUP TIME of daily record to be backed up;
The backup format of daily record to be backed up;
The backup address of daily record to be backed up.
Described sending module, also for sending log recording instruction to the 3rd network equipment, wherein, described log recording instruction is the daily record that instruction the 3rd network equipment record is corresponding with described 3rd network equipment.
A kind of 3rd network equipment, comprising:
Receiver module, for receiving the Log backup instruction that first network equipment sends, wherein said Log backup instruction is for notifying the daily record that the 3rd network equipment backup is corresponding with the 3rd network equipment, described second network equipment for monitoring the running status of described 3rd network equipment, and/or flows through the network traffics of the 3rd network equipment; Memory module, for when determining that described Log backup instruction meets the requirements, according to described Log backup instruction, backup log; Sending module, for sending to described first network equipment by described backup log.
Described receiver module, also for receiving the log recording instruction that described first network equipment sends; Described memory module, also for according to described log recording instruction log.
Pass through technique scheme, by first network equipment when receiving the early warning information that second network equipment sends, first network equipment sends Log backup instruction to the 3rd network equipment, first network equipment receives the backup log that the 3rd network equipment sends, thus can be implemented in the 3rd network equipment when breaking down, obtain corresponding daily record in time, do not need to screen in the daily record of magnanimity, and then the positioning analysis realized fault, raise the efficiency.
Accompanying drawing explanation
Fig. 1 is in the embodiment of the present invention, the system configuration composition schematic diagram of the acquisition daily record of proposition;
Fig. 2 is in the embodiment of the present invention, one of method flow diagram of the acquisition daily record of proposition;
Fig. 3 is in the embodiment of the present invention, the method flow diagram two of the acquisition daily record of proposition;
Fig. 4 is in the embodiment of the present invention, the first network device structure composition schematic diagram of proposition;
Fig. 5 is in the embodiment of the present invention, the 3rd network equipment infrastructure composition schematic diagram of proposition.
Embodiment
By first network equipment when receiving the early warning information that second network equipment sends, first network equipment sends Log backup instruction to the 3rd network equipment, first network equipment receives the backup log that the 3rd network equipment sends, thus when can be implemented in the 3rd network equipment appearance exception, the timely daily record obtaining correspondence, do not need to screen in the daily record of magnanimity, and then realize the positioning analysis to abnormal conditions, raise the efficiency.
In the technical scheme of the acquisition daily record that the embodiment of the present invention proposes, for ease of setting forth, the network equipment is made the differentiation of first network equipment, second network equipment and the 3rd network equipment, wherein, first network equipment, second network equipment and the 3rd network equipment, can be, but not limited to is single network equipment, also can be a network apparatus cluster with identical function attribute respectively.First network equipment is used for controlling daily record, acquisition etc.First network equipment can be an independent service equipment arranged in a network, also can be a module in integrated other network equipment in a network.Second network equipment is used for monitoring the running status of the 3rd network equipment.Second network equipment can be an independent service equipment arranged in a network, also can be a module of integrated other network equipment in a network.Second network equipment can monitor the running status of the 3rd network equipment and/or the monitoring flow network traffics through the 3rd network equipment.3rd network equipment can be the arbitrary network equipment run in network, also can be the Network Security Device run in network, such as fire compartment wall, routing device and other relaying etc.
In the technical scheme that the embodiment of the present invention proposes, be that independently the network equipment is described in detail for first network equipment, second network equipment and the 3rd network equipment.
Below in conjunction with each accompanying drawing, the main of embodiment of the present invention technical scheme is realized principle, embodiment and set forth in detail the beneficial effect that should be able to reach.
The embodiment of the present invention proposes a kind of system obtaining daily record, comprises at least one first network equipment.At least one second network equipment and at least one the 3rd network equipment.
Wherein, within the system, connected by TCP, UDP between first network equipment and second network equipment, or can also by wired or wireless mode double hit between first network equipment and second network equipment, for transmitting the data between first network equipment and second network equipment.Can be connected by wired or wireless mode between second network equipment and the 3rd network equipment, second network equipment is monitored for the running status of the 3rd network equipment, and/or monitoring flow is through the network traffics of the 3rd network equipment.Can be man-to-man monitoring between second network equipment and the 3rd network equipment, also can be the mode of one-to-many or many-one, multi-to-multi.
First network equipment can arrange engine key point in a network, the log information in collection network corresponding to each 3rd network equipment.Consider the situation of multi-process, the daily record of record according to process number, can set up individual log file separately, can solve the problem of the daily record loss that same file synchronously causes so preferably.First network equipment can also send control command to the 3rd network equipment, such as, control the 3rd network equipment whether log, and logging level, log file size and number etc.
Based on the system architecture shown in Fig. 1, the embodiment of the present invention proposes a kind of method obtaining daily record, and as shown in Figure 2, its concrete handling process is as following:
Step 21, second network equipment is monitored by the carrying out to the 3rd network equipment.
Can be connected by wired or wireless mode between second network equipment and the 3rd network equipment, second network equipment is monitored for the running status of the 3rd network equipment, and/or monitoring flow is through the network traffics of the 3rd network equipment.Can be man-to-man monitoring between second network equipment and the 3rd network equipment, also can be the mode of one-to-many or many-one, multi-to-multi.Concrete restriction is not done at this.
In the technical scheme that the embodiment of the present invention proposes, the network traffics flowing through the 3rd network equipment for second network monitoring of tools are described in detail.
Step 22, second network equipment sends early warning information to first network equipment.
Wherein early warning information is second network equipment determining the early warning that the network traffics flowing through the 3rd network equipment of monitoring send when occurring abnormal.
If when the network traffics flowing through the 3rd network equipment occur abnormal, then the 3rd network equipment may break down, or the network traffics at the 3rd network equipment place occur congested, need to debug the 3rd network equipment, to ensure that network is normal.
For second network equipment be personal PC machine, the 3rd network equipment is that fire compartment wall is described in detail.In the network architecture shown in Fig. 1, second network equipment is by being connected to the Internet, and the data of transmission all need to pass through fire compartment wall.Second network equipment is monitored the running status of fire compartment wall and network traffics.When second network device access network, when there is the obstructed situation of certain port, suppose that now failure cause is that the connection between fire compartment wall disconnects, or cannot lead to by ping, second network equipment sends early warning information to first network equipment.
When the network traffics flowing through second network equipment are greater than a certain set point, second network equipment sends early warning information to first network equipment, or when the network traffics flowing through second network equipment are less than a certain set point, second network equipment sends early warning information to first network equipment.That is, second network monitoring of tools flows through the network traffics of the 3rd network equipment, and network traffics are too much or very few suddenly, then illustrate that the 3rd network equipment occurs abnormal.
3rd network equipment occurs abnormal, and also may be that the 3rd network equipment breaks down, can also be whether have the anomalous events such as whether new file generated, data-base content change in the 3rd network equipment.
The mark of the 3rd network equipment can be comprised in early warning information.
Step 23, first network equipment receives the early warning information that second network equipment sends.
Step 24, first network equipment sends Log backup instruction to the 3rd network equipment.
Wherein Log backup instruction is for notifying the daily record that the 3rd network equipment backup is corresponding with the 3rd network equipment.
First network equipment can send Log backup instruction to multiple 3rd network equipment.
Step 25, the 3rd network equipment receives Log backup instruction.
Wherein, comprise in Log backup instruction following at least one:
A: the BACKUP TIME of daily record to be backed up.
In the BACKUP TIME of daily record to be backed up, the initial time of daily record to be backed up, end time can be comprised.
B: the backup format of daily record to be backed up.
The backup format of daily record to be backed up, can comprise and what form Log backup is become, such as, can back up as doc form, txt text formatting, compressed format etc.
The backup format of daily record to be backed up, can also comprise the date of backing up what form, such as the daily record of txt text formatting.
C: the backup address of daily record to be backed up.
The daily record in what address of backup can be comprised in the backup address of daily record to be backed up.
D: the mark of daily record to be backed up.
The mark of daily record to be backed up can be the mark of the 3rd network equipment, i.e. the mark of daily record is represented by the mark of the network equipment of its correspondence.
Step 26, the 3rd network equipment determines whether the Log backup instruction received meets the requirements, if judged result is yes, performs step 27, otherwise ends process.
Step 27, when determining that Log backup instruction meets the requirements, the 3rd network equipment according to Log backup instruction, backup log.
Step 28, backup log is sent to first network equipment by the 3rd network equipment.
Step 29, first network equipment receives the backup log that the 3rd network equipment sends.
Alternatively, as shown in Figure 3, before above-mentioned steps 21, can also comprise:
Step 30, first network equipment sends control command to the 3rd network equipment.
First network equipment sends control command to the 3rd network equipment, such as, control the 3rd network equipment whether log, and logging level, log file size and number etc.
This control command can also be log recording instruction.
Wherein, log recording instruction is the daily record that instruction the 3rd network equipment record is corresponding with the 3rd network equipment.
The mark of the 3rd network equipment can be comprised in log recording instruction, log record, log recording time etc. can also be comprised.
Step 31, the 3rd network equipment receives the log recording instruction that first network equipment sends.
Step 32, the 3rd network equipment is according to log recording instruction log.
After above-mentioned steps 32, can also comprise:
Step 33, the 3rd network equipment judges whether the daily record of recording exceedes the file size pre-set, if judged result is yes, performs step 34, otherwise ends process.
Step 34, the daily record of record exceedes the file size pre-set, and according to recently at most for using algorithm, deletes the longest daily record memory time.
According to recently at most for using algorithm, deleting the longest daily record memory time, daily record rotation can be realized preferably.
Correspondingly, the embodiment of the present invention also proposes a kind of first network equipment, and as shown in Figure 4, its structure is composed as follows to be stated:
Receiver module 401, for receiving the early warning information that second network equipment sends, described early warning information is second network equipment determining the early warning that the network traffics flowing through the 3rd network equipment of monitoring send when occurring abnormal.
Sending module 402, for when receiving the early warning information that second network equipment sends, Log backup instruction is sent to the 3rd network equipment, wherein said Log backup instruction is for notifying the daily record that the 3rd network equipment backup is corresponding with the 3rd network equipment, described second network equipment for monitoring the running status of described 3rd network equipment, and/or flows through the network traffics of the 3rd network equipment.
Described receiver module 401, also for receiving the backup log that described 3rd network equipment sends.
Particularly, at least comprise in the Log backup instruction that above-mentioned sending module 402 sends following in one:
The BACKUP TIME of daily record to be backed up;
The backup format of daily record to be backed up;
The backup address of daily record to be backed up.
Wherein, above-mentioned sending module 402, also for sending log recording instruction to the 3rd network equipment, wherein, described log recording instruction is the daily record that instruction the 3rd network equipment record is corresponding with described 3rd network equipment.
Correspondingly, the embodiment of the present invention also proposes a kind of 3rd network equipment, and as shown in Figure 5, specific as follows the stating of its structure composition comprises:
Receiver module 501, for receiving the Log backup instruction that first network equipment sends, wherein said Log backup instruction is for notifying the daily record that the 3rd network equipment backup is corresponding with the 3rd network equipment, described second network equipment for monitoring the running status of described 3rd network equipment, and/or flows through the network traffics of the 3rd network equipment;
Memory module 502, for when determining that described Log backup instruction meets the requirements, according to described Log backup instruction, backup log.
Sending module 503, for sending to described first network equipment by described backup log.
Alternatively, described receiver module, also for receiving the log recording instruction that described first network equipment sends; Described memory module, also for according to described log recording instruction log.
It will be understood by those skilled in the art that embodiments of the invention can be provided as method, device (equipment) or computer program.Therefore, the present invention can adopt the form of complete hardware embodiment, completely software implementation or the embodiment in conjunction with software and hardware aspect.And the present invention can adopt in one or more form wherein including the upper computer program implemented of computer-usable storage medium (including but not limited to magnetic disc store, read-only optical disc, optical memory etc.) of computer usable program code.
The present invention describes with reference to according to the flow chart of the method for the embodiment of the present invention, device (equipment) and computer program and/or block diagram.Should understand can by the combination of the flow process in each flow process in computer program instructions realization flow figure and/or block diagram and/or square frame and flow chart and/or block diagram and/or square frame.These computer program instructions can being provided to the processor of all-purpose computer, special-purpose computer, Embedded Processor or other programmable data processing device to produce a machine, making the instruction performed by the processor of computer or other programmable data processing device produce device for realizing the function of specifying in flow chart flow process or multiple flow process and/or block diagram square frame or multiple square frame.
These computer program instructions also can be stored in can in the computer-readable memory that works in a specific way of vectoring computer or other programmable data processing device, the instruction making to be stored in this computer-readable memory produces the manufacture comprising command device, and this command device realizes the function of specifying in flow chart flow process or multiple flow process and/or block diagram square frame or multiple square frame.
These computer program instructions also can be loaded in computer or other programmable data processing device, make on computer or other programmable devices, to perform sequence of operations step to produce computer implemented process, thus the instruction performed on computer or other programmable devices is provided for the step realizing the function of specifying in flow chart flow process or multiple flow process and/or block diagram square frame or multiple square frame.
Although describe the preferred embodiments of the present invention, those skilled in the art once obtain the basic creative concept of cicada, then can make other change and amendment to these embodiments.So claims are intended to be interpreted as comprising preferred embodiment and falling into all changes and the amendment of the scope of the invention.
Obviously, those skilled in the art can carry out various change and modification to the present invention and not depart from the spirit and scope of the present invention.Like this, if these amendments of the present invention and modification belong within the scope of the claims in the present invention and equivalent technologies thereof, then the present invention is also intended to comprise these change and modification.
Claims (10)
1. obtain a system for daily record, it is characterized in that, comprise first network equipment, second network equipment and the 3rd network equipment, described second network equipment is for monitoring the running status of described 3rd network equipment; And/or flow through the network traffics of the 3rd network equipment;
Wherein, described second network equipment sends early warning information, and wherein said early warning information is second network equipment determining the early warning that the network traffics flowing through the 3rd network equipment of monitoring send when occurring abnormal;
Described first network equipment, receive the early warning information that described second network equipment sends, described first network equipment sends Log backup instruction to the 3rd network equipment, and described Log backup instruction is for notifying the daily record that the 3rd network equipment backup is corresponding with the 3rd network equipment;
Described 3rd network equipment receives the Log backup instruction that first network equipment sends, when determining that described Log backup instruction meets the requirements, according to described Log backup instruction, and backup log; Described backup log is sent to described first network equipment by described 3rd network equipment;
Described first network equipment receives the backup log that described 3rd network equipment sends.
2. the system as claimed in claim 1, it is characterized in that, described first network equipment is also for sending log recording instruction to the 3rd network equipment, and wherein, described log recording instruction is the daily record that instruction the 3rd network equipment record is corresponding with described 3rd network equipment;
Described 3rd network equipment receives the log recording instruction that described first network equipment sends, and described 3rd network equipment is according to described log recording instruction log.
3. obtain a method for daily record, it is characterized in that, comprising:
First network equipment is when receiving the early warning information that second network equipment sends, described first network equipment sends Log backup instruction to the 3rd network equipment, wherein said early warning information is second network equipment determining the early warning that the network traffics flowing through the 3rd network equipment of monitoring send when occurring abnormal, described Log backup instruction is for notifying the daily record that the 3rd network equipment backup is corresponding with the 3rd network equipment, and described second network equipment is for monitoring the running status of described 3rd network equipment; And/or flow through the network traffics of the 3rd network equipment;
Described first network equipment receives the backup log that described 3rd network equipment sends.
4. method as claimed in claim 3, is characterized in that, before receiving the early warning information of second network equipment transmission, also comprises at first network equipment:
Described first network equipment sends log recording instruction to the 3rd network equipment, and wherein, described log recording instruction is the daily record that instruction the 3rd network equipment record is corresponding with described 3rd network equipment.
5. obtain a method for daily record, it is characterized in that, comprising:
3rd network equipment receives the Log backup instruction that first network equipment sends, wherein said Log backup instruction is for notifying the daily record that the 3rd network equipment backup is corresponding with the 3rd network equipment, described second network equipment for monitoring the running status of described 3rd network equipment, and/or flows through the network traffics of the 3rd network equipment;
Described 3rd network equipment when determining that described Log backup instruction meets the requirements, according to described Log backup instruction, backup log;
Described backup log is sent to described first network equipment by described 3rd network equipment.
6. method as claimed in claim 5, is characterized in that, before receiving the Log backup instruction of first network equipment transmission, also comprises at the 3rd network equipment:
Described 3rd network equipment receives the log recording instruction that described first network equipment sends;
Described 3rd network equipment is according to described log recording instruction log.
7. a first network equipment, is characterized in that, comprising:
Receiver module, for receiving the early warning information that second network equipment sends, described early warning information is second network equipment determining the early warning that the network traffics flowing through the 3rd network equipment of monitoring send when occurring abnormal;
Sending module, for when receiving the early warning information that second network equipment sends, Log backup instruction is sent to the 3rd network equipment, wherein said Log backup instruction is for notifying the daily record that the 3rd network equipment backup is corresponding with the 3rd network equipment, described second network equipment for monitoring the running status of described 3rd network equipment, and/or flows through the network traffics of the 3rd network equipment;
Described receiver module, also for receiving the backup log that described 3rd network equipment sends.
8. first network equipment as claimed in claim 7, it is characterized in that, described sending module, also for sending log recording instruction to the 3rd network equipment, wherein, described log recording instruction is the daily record that instruction the 3rd network equipment record is corresponding with described 3rd network equipment.
9. the 3rd network equipment, is characterized in that, comprising:
Receiver module, for receiving the Log backup instruction that first network equipment sends, wherein said Log backup instruction is for notifying the daily record that the 3rd network equipment backup is corresponding with the 3rd network equipment, described second network equipment for monitoring the running status of described 3rd network equipment, and/or flows through the network traffics of the 3rd network equipment;
Memory module, for when determining that described Log backup instruction meets the requirements, according to described Log backup instruction, backup log;
Sending module, for sending to described first network equipment by described backup log.
10. the 3rd network equipment as claimed in claim 9, is characterized in that, described receiver module, also for receiving the log recording instruction that described first network equipment sends;
Described memory module, also for according to described log recording instruction log.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201511026295.0A CN105553743B (en) | 2015-12-30 | 2015-12-30 | Obtain method, system, first network equipment and the third network equipment of log |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201511026295.0A CN105553743B (en) | 2015-12-30 | 2015-12-30 | Obtain method, system, first network equipment and the third network equipment of log |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN105553743A true CN105553743A (en) | 2016-05-04 |
| CN105553743B CN105553743B (en) | 2019-07-02 |
Family
ID=55832683
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201511026295.0A Active CN105553743B (en) | 2015-12-30 | 2015-12-30 | Obtain method, system, first network equipment and the third network equipment of log |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN105553743B (en) |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107070706A (en) * | 2017-03-24 | 2017-08-18 | 中国联合网络通信集团有限公司 | Log processing method and device based on Service-Oriented Architecture Based |
| CN108259241A (en) * | 2018-01-11 | 2018-07-06 | 上海有云信息技术有限公司 | A kind of abnormal localization method and device of cloud platform monitoring system |
| CN109039676A (en) * | 2017-06-08 | 2018-12-18 | ***通信有限公司研究院 | A kind of network fault diagnosis method, device and computer readable storage medium |
| CN110190992A (en) * | 2019-05-21 | 2019-08-30 | 上海连尚网络科技有限公司 | A kind of monitoring method and routing device of failure |
| CN112422328A (en) * | 2020-11-03 | 2021-02-26 | 深圳市广和通无线股份有限公司 | Log obtaining method and device, computer equipment and storage medium |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101286888A (en) * | 2008-05-21 | 2008-10-15 | 天柏宽带网络科技(北京)有限公司 | Operating method of log system |
| US20090076640A1 (en) * | 2007-09-14 | 2009-03-19 | Tokyo Electron Limited | System, method and storage medium for controlling a processing system |
| CN102307115A (en) * | 2011-09-21 | 2012-01-04 | 大唐移动通信设备有限公司 | Method and device for recovering fault entity |
| CN103532943A (en) * | 2013-10-08 | 2014-01-22 | 北京神州绿盟信息安全科技股份有限公司 | Web application firewall device and asynchronous security protection log processing method |
| CN103795577A (en) * | 2014-03-03 | 2014-05-14 | 网神信息技术(北京)股份有限公司 | Log processing method and device of log server |
-
2015
- 2015-12-30 CN CN201511026295.0A patent/CN105553743B/en active Active
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20090076640A1 (en) * | 2007-09-14 | 2009-03-19 | Tokyo Electron Limited | System, method and storage medium for controlling a processing system |
| CN101286888A (en) * | 2008-05-21 | 2008-10-15 | 天柏宽带网络科技(北京)有限公司 | Operating method of log system |
| CN102307115A (en) * | 2011-09-21 | 2012-01-04 | 大唐移动通信设备有限公司 | Method and device for recovering fault entity |
| CN103532943A (en) * | 2013-10-08 | 2014-01-22 | 北京神州绿盟信息安全科技股份有限公司 | Web application firewall device and asynchronous security protection log processing method |
| CN103795577A (en) * | 2014-03-03 | 2014-05-14 | 网神信息技术(北京)股份有限公司 | Log processing method and device of log server |
Cited By (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107070706A (en) * | 2017-03-24 | 2017-08-18 | 中国联合网络通信集团有限公司 | Log processing method and device based on Service-Oriented Architecture Based |
| CN109039676A (en) * | 2017-06-08 | 2018-12-18 | ***通信有限公司研究院 | A kind of network fault diagnosis method, device and computer readable storage medium |
| CN108259241A (en) * | 2018-01-11 | 2018-07-06 | 上海有云信息技术有限公司 | A kind of abnormal localization method and device of cloud platform monitoring system |
| CN110190992A (en) * | 2019-05-21 | 2019-08-30 | 上海连尚网络科技有限公司 | A kind of monitoring method and routing device of failure |
| CN112422328A (en) * | 2020-11-03 | 2021-02-26 | 深圳市广和通无线股份有限公司 | Log obtaining method and device, computer equipment and storage medium |
| CN112422328B (en) * | 2020-11-03 | 2023-05-09 | 深圳市广和通无线股份有限公司 | Log acquisition method, device, computer equipment and storage medium |
Also Published As
| Publication number | Publication date |
|---|---|
| CN105553743B (en) | 2019-07-02 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11614990B2 (en) | Automatic correlation of dynamic system events within computing devices | |
| CN105553743A (en) | Log obtaining method, system, first network device and third network device | |
| CN103812699A (en) | Monitoring management system based on cloud computing | |
| CN104301413B (en) | A kind of Oracle distributions method for real-time monitoring of facing cloud database | |
| CN102355368B (en) | Fault processing method of network equipment and system | |
| CN108092836A (en) | The monitoring method and device of a kind of server | |
| CN105159964A (en) | Log monitoring method and system | |
| CN111092759B (en) | Log management method, device and medium in JBOD (just in Bunch) out-of-band management system | |
| CN103500475B (en) | A kind of adjustment method, system of office buildings gate control system | |
| RU2535630C2 (en) | Method and apparatus for collecting mobile communication data | |
| CN107947998B (en) | Real-time monitoring system based on application system | |
| CN105743732B (en) | Method and system for recording transmission path and distribution condition of local area network files | |
| CN110620690A (en) | Network attack event processing method and electronic equipment thereof | |
| CN104468201A (en) | Automatic deleting method and device for offline network equipment | |
| CN102083091A (en) | Network management alarm managing method and system, and alarm collecting server | |
| CN106452941A (en) | Network anomaly detection method and device | |
| CN111669371B (en) | Network attack restoration system and method suitable for power network | |
| CN104243192B (en) | Fault handling method and system | |
| CN103634166A (en) | Equipment survival detection method and equipment survival detection device | |
| CN110912755A (en) | System and method for network card fault monitoring and automatic recovery in cloud environment | |
| US11556120B2 (en) | Systems and methods for monitoring performance of a building management system via log streams | |
| CN102325171B (en) | Data storage method in monitoring system and system | |
| CN111309515B (en) | Disaster recovery control method, device and system | |
| CN104394033A (en) | Monitoring system, method and device of cross data center | |
| CN110825542A (en) | Method, device and system for detecting fault disk in distributed system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| CP01 | Change in the name or title of a patent holder | ||
| CP01 | Change in the name or title of a patent holder |
Address after: 100089 Beijing city Haidian District Road No. 4 North wa Yitai three storey building Patentee after: NSFOCUS Technologies Group Co.,Ltd. Patentee after: NSFOCUS TECHNOLOGIES Inc. Address before: 100089 Beijing city Haidian District Road No. 4 North wa Yitai three storey building Patentee before: NSFOCUS INFORMATION TECHNOLOGY Co.,Ltd. Patentee before: NSFOCUS TECHNOLOGIES Inc. |