Network manager SNMP trap suppression
First Claim
1. A method of suppressing, at a network management system, SNMP event trap messages from network nodes in a communication network, the method comprising the steps of:
- counting, at the network management system, event trap messages received from each network node during a time interval; and
responsive to the count exceeding a threshold, ignoring all further event trap messages sent by that network node to the network management system until a predetermined suppression period has expired.
5 Assignments
0 Petitions
Accused Products
Abstract
Methods and apparatus for controllably suppressing, at a network management system, SNMP event trap messages received from network nodes in a communications network are presented. The rate at which the traps are received from the network nodes is monitored and if the rate exceeds a threshold all subsequent traps received over a set time interval are not processed. The rate is calculated by counting received event traps over a time interval which is either preset or programmed. After the set time interval has passed all newly received traps are monitored. Information regarding traps received during the set time interval may be logged. Additionally, nodes from which excessive traps are received and indicating an event such as a Denial of Service (DoS) attack, are identified so that remedial action can be taken.
-
Citations
20 Claims
-
1. A method of suppressing, at a network management system, SNMP event trap messages from network nodes in a communication network, the method comprising the steps of:
-
counting, at the network management system, event trap messages received from each network node during a time interval; and
responsive to the count exceeding a threshold, ignoring all further event trap messages sent by that network node to the network management system until a predetermined suppression period has expired. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A system for suppressing, at a network management system, SNMP event trap messages received from network nodes in a communication network, the system comprising:
-
a counter, at the network management system, for counting event trap messages received from each network node during a time interval; and
means, responsive to the count exceeding a threshold, for ignoring all further event trap messages sent by that network node to the network management system until a predetermined suppression period has expired. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification