Method and apparatus for monitoring a network environment
First Claim
1. A method comprising:
- collecting recent data associated with operation of a network environment;
analyzing the network environment by comparing the collected recent data with dynamically configured cognitive signatures, the dynamically configured cognitive signatures being adjustable to account for selected network activity in order to represent normal operation modes of the network environment; and
determining whether a problem exists based on the analyzed network environment.
12 Assignments
0 Petitions
Accused Products
Abstract
A system is provided that monitors a network environment. The system collects recent data associated with operation of the network environment. The network environment is analyzed by comparing the collected data with historical data associated with the operation of the network environment. The system determines whether a problem or a potential problem exists based on the analysis of the network environment. The historical data associated with the operation of the network environment is represented in multiple cognitive signatures. The system regularly updates the historical data to include the recently collected data. The data collected may include network performance data, network configuration data, traffic flow data, network utilization data, or network error information. The system generates an alarm if it determines that a problem exists. The generation of an alarm may include generating an electronic mail message or pager message and communicating the message to a network administrator. The generation of an alarm may also include activating an application on a device within the network environment. The monitoring system is able to monitor one or more network environments, as well as individual network devices and components or sub-systems within an individual network device.
467 Citations
46 Claims
-
1. A method comprising:
-
collecting recent data associated with operation of a network environment;
analyzing the network environment by comparing the collected recent data with dynamically configured cognitive signatures, the dynamically configured cognitive signatures being adjustable to account for selected network activity in order to represent normal operation modes of the network environment; and
determining whether a problem exists based on the analyzed network environment. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17)
updating the dynamically configured cognitive signatures to include the collected recent data.
-
-
8. The method of claim 1, wherein the collected recent data includes network performance data.
-
9. The method of claim 1, wherein the collected recent data includes network configuration data.
-
10. The method of claim 1, wherein the collected recent data includes recent traffic flow through the network environment.
-
11. The method of claim 1, wherein the collected recent data includes recent utilization information of network resources operating within the network environment.
-
12. The method of claim 1, wherein the collected recent data includes network error information.
-
13. The method of claim 1, further comprising:
generating an alarm if a problem exists based on the analyzed network environment.
-
14. The method of claim 13, wherein the generating of the alarm includes generating an electronic mail message and sending the electronic mail message to a network administrator.
-
15. The method of claim 13, wherein the generating of the alarm includes generating a pager message and communicating the pager message to a pager.
-
16. The method of claim 13, wherein the generating of the alarm includes activating an application on a device within the network environment.
-
17. The method of claim 1, wherein the analyzing of the network environment includes correlating multiple related events into a single event.
-
18. A method comprising:
-
collecting recent data associated with operation of a network device;
analyzing the network device by comparing the collected recent data with dynamically configured cognitive signatures, the dynamically configured cognitive signatures being adjustable to account for selected network activity in order to represent normal operation modes of the network device; and
determining whether a problem exists based on the analyzed network device. - View Dependent Claims (19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31)
updating the dynamically configured cognitive signatures to include the collected recent data.
-
-
24. The method of claim 18, wherein the collected recent data includes recent utilization of the network device.
-
25. The method of claim 18, wherein the collected recent data includes the performance of a component within the network device.
-
26. The method of claim 18, wherein the collected recent data includes performance data of a sub-system within the network device.
-
27. The method of claim 18, further comprising:
generating an alarm if a problem exists based on the analyzed network device.
-
28. The method of claim 27, wherein the generating of the alarm includes generating an electronic mail message and sending the electronic mail message to a network administrator.
-
29. The method of claim 27, wherein the generating of the alarm includes generating a pager message and communicating the pager message to a pager.
-
30. The method of claim 27, wherein the generating of the alarm includes activating an application on the network device.
-
31. The method of claim 18, wherein the analyzing of the network device includes correlating multiple related events into a single event.
-
32. A network device comprising:
-
a data collection module to collect recent data associated with operation of a network environment;
a cognitive signature module coupled to the data collection module and to configure dynamically cognitive signatures associated with the network environment, the cognitive signatures being adjustable to account for selected network activity in order to represent normal operation modes of the network environment; and
an analysis module coupled to the data collection module and the cognitive signature module and to compare the data collected by the data collection module with the cognitive signatures associated with operation of the network environment; and
wherein the analysis module is to determine whether a problem exists based on the comparison of the data collected by the data collection module with the cognitive signatures.- View Dependent Claims (33, 34, 35, 36)
an alarm generator to generate an alarm if the analysis module determines that a problem exists.
-
-
37. A network device comprising:
-
means for collecting recent data associated with operation of a network environment;
means for analyzing the network environment by comparing the data collected by the means for collecting recent data with dynamically configured cognitive signatures, the dynamically configured cognitive signatures being adjustable to account for selected network activity in order to represent normal operation modes of the network environment; and
means for determining whether a problem exists based on the analysis performed by the means for analyzing the network environment. - View Dependent Claims (38, 39, 40, 41)
means for temporally associating the dynamically configured cognitive signatures with the network environment.
-
-
39. The network device of claim 37, further comprising:
means for updating the dynamically configured cognitive signatures to include the data collected by the means for collecting recent data.
-
40. The network device of claim 37, wherein the dynamically configured cognitive signatures include information related to performances of the network environment prior to the collection of recent data associated with the operation of the network environment.
-
41. The network device of claim 37, further comprising:
means for generating an alarm if a problem exists.
-
42. A computer software product including a medium readable by a processor, the medium having stored thereon a sequence of instructions which, if executed by the processor, cause the processor to perform an operation comprising:
-
collecting recent data associated with operation of a network environment;
analyzing the network environment by comparing the collected recent data with dynamically configured cognitive signatures, the dynamically configured cognitive signatures being adjustable to account for selected network activity in order to represent normal operation modes of the network environment; and
determining whether a problem exists based on the analysis of the network environment. - View Dependent Claims (43, 44, 45, 46)
updating the dynamically configured cognitive signatures to include the recent data collected.
-
-
46. The computer software product of claim 42, further including a sequence of instructions which, if executed by the processor, cause the processor to perform an operation comprising:
generating an alarm if a problem exists.
Specification