leave their products limited in scope and often burdens the hosting company with installing and managing additional software in their hosted environment. It also may create scaling problems for installing agents for every monitored aspect on every machine in a hosted environment.
Another solution to the infrastructure hosting problem is from a "lights out" point of view in that the solution attempts to "knock the lights out of the problem in a quick, all encompassing fashion. Companies employing such a solution typically own the equipment, build the applications, monitor and manage the infrastructure, support the hardware and software, and run the hosted environment. These companies attempt to cover every aspect of the hosting environment and infrastructure support and management problem. Such attempts may significantly add to their cost of doing business. For example, monitoring of the infrastructure for a do-it-yourself company requires the installation of software agents on the host systems. As such, a company's resources may be consumed for storage, maintenance, and version progressions of such software. Additionally, applications used by these companies tend to be very code intensive and the operating system of the host systems may not be very reliable. Such platforms may not be very scalable or robust and, thus, may not be as desirable.
The overriding problem with these prior solutions is that they focus on attacking infrastructure problems, rather than proactively preventing them. Such reactive solutions are limited in their effectiveness in that they may not prevent the same problems from recurring and they may not prevent the occurrence of new problems. SUMMARY OF THE INVENTION
The present invention pertains to a method of and apparatus for administration of a network site. In one embodiment, the method may include monitoring a parameter of a host system for a predetermined event. A notification may be generated upon the occurrence of the predetermined event to a first person in a hierarchy and escalated to a second person in the hierarchy when the first person fails to acknowledge the notification in a time period.
In one embodiment, the apparatus may include a portal to configure an event for a parameter of a host system and a digital processing system coupled to the portal. The digital processing system may receive data indicative of an occurrence of the event and generate a first notification. The apparatus may also include a notification gateway coupled to the digital processing system to transmit the first notification to a first
-2-
communication device. The digital processing system may generate a second notification to a second communication device if an acknowledgment is not received within a predetermined time.
Additional features and advantages of the present invention will be apparent from the accompanying drawings and from the detailed description that follows.
BRIEF DESCRIPTION OF THE DRAWINGS
The present invention is illustrated by way of example, and not by way of limitation, in the figures of the accompanying drawings and in which:
Figure 1 illustrates an internetwork architecture.
Figure 2A illustrates one embodiment of a network site monitoring system.
Figure 2B illustrates an exemplary table of monitored services and states for embodiments of host parameters.
Figure 2C is an exemplary table illustrating threshold levels and corresponding values that may be set for embodiments of host parameters.
Figure 3 illustrates one embodiment of a host satellite system in the form of digital processing system.
Figure 4 illustrates an alternative embodiment of a network site monitoring system.
Figure 5 is a block diagram illustrating an exemplary architecture of a monitoring operations center.
Figure 6 illustrates one embodiment of a network site notification system.
Figure 7 illustrates one embodiment of an administration method.
DETAILED DESCRIPTION
In the following description, numerous specific details are set forth such as examples of specific systems, languages, components, etc. in order to provide a thorough understanding of the present invention. It will be apparent, however, to one skilled in the art that these specific details need not be employed to practice the present invention. In other instances, well known materials or methods have not been described in detail in order to avoid unnecessarily obscuring the present invention.
The present invention includes various steps, which will be described below. The steps of the present invention may be performed by hardware components or may be
-3-
embodied in machine-executable instructions, which may be used to cause a general- purpose or special-purpose processor programmed with the instructions to perform the steps. Alternatively, the steps may be performed by a combination of hardware and software.
The present invention may be provided as a computer program product, or software, that may include a machine-readable medium having stored thereon instructions, which may be used to program a computer system (or other electronic devices) to perform a process according to the present invention. The machine-readable medium may include, but is not limited to, floppy diskettes, optical disks, CD-ROMs, and magneto-optical disks, ROMs, RAMs, EPROMs, EEPROMs, magnetic or optical cards, flash memory, or other type of media / machine-readable medium suitable for storing electronic instructions.
In one embodiment, a network site monitoring system may be used to provide a means to proactively monitor a business site's services and resources. Various parameters of a host may be configured for monitoring for the occurrence of a predetermined event such as a state change or exceeding a threshold. Upon such occurrence, a notification may be sent to one or more appropriate persons designated by the business site. The notification system may notify the appropriate person for a number of times over a configurable amount of time using various communication means. If that person fails to respond, the system may escalate the notification to another person based on a set of escalation rules. The escalation rules determine who should be notified next in the event that a preceding recipient of a notification fails to respond to a notification with an acknowledgement.
In another embodiment, information about host parameters, such as statistical reports and historical trends, may be generated and provided to the business site. In another embodiment, host asset information may be generated to provide a business site with an account of all hardware and software assets in their infrastructure. In yet another embodiment, a portal may be provided to enable a business site to configure the monitoring, escalation, and reporting process and provide access to the generated data.
Figure 2A illustrates one embodiment of a network site monitoring system. The network monitoring system 200 may include various hardware and software components to perform monitoring functions. The network monitoring system 200 includes a business site 210 and a monitoring operations center (MOC) 230. In one embodiment,
-4-
MOC 230 may be located remotely from business site 210. Alternatively, MOC 230 may be located locally to business site 210. Business site 210 and MOC 230 may be coupled together via extranetwork 220, such as an Internet Protocol (IP) network.
An IP network transmits data in the form of packets that include an address specifying the destination systems for which communication is intended. Business site 210 and MOC 230 may communicate with each other using various protocols, for examples, HTTP, Telnet, NNTP, and FTP. Security layers for managing the security of data transmission may also reside between the application protocols and the lower protocol (TCP/IP) layers, for examples: Secure Sockets Layers (SSL). Alternatively, secure application protocols may be used, for examples, Secure HTTP (HTTPS) and Secure Shell (SSH). These various protocols are known in the art; accordingly, a detailed discussion is not provided herein.
Business site 210 may include one or more computer systems, or hosts, (e.g., hosts 211-213) connected together via intranetwork 215. Three hosts 211-213 are shown only for illustrative purposes. Business site 210 may have more or less than three hosts. Hosts 211-213 may be configured to perform as servers. In one embodiment, intranetwork 215 is a local area network (LAN). The local area network may be either a wired or wireless network. Alternatively, hosts 211-213 may be coupled together using other types of networks, for example, a metropolitan areas network (MAN) or a wide area network (WAN) with various topologies and transmission mediums.
Business site 210 includes a host satellite system 250 coupled to intranetwork 215. The host satellite system 250 may reside locally at business site 210 to monitor hosts 211-213. Host satellite system 250 may be connected to intranetwork 215 inside of its firewall (not shown). Alternatively, host satellite system 250 may be connected outside of the firewall if the firewall is configured to allow host satellite system 250 access to hosts 211-213. Host satellite system 250 includes monitoring software that monitors performance characteristics and services of hosts 211-213 (e.g., state changes, connection status, etc.), as discussed below. Host satellite system 250 is a digital processing system that may perform various client-server functions.
A host (e.g., host 211) may be configured to provide various services for clients that are accessed through ports of the host connected to intranetwork 215. Types of network services include, for examples, electronic mail using a Simple Mail Transfer
Protocol (SMTP), web page display using HTTP, news article distribution using a
-5-
Network News Transfer Protocol (NNTP), fetching email from a remote mailbox using a Post Office Protocol-3 (POP3), and text file retrieval for viewer displaying using Gopher, etc. Each service may be configured on an industry standard port or on a custom port. If a service operates with a custom port, then host satellite system 250 may either be preprogrammed with the port information or perform probes to determine a port's configuration.
For example, if host 211 is configured to operate as an HTTP server, host satellite system 250 may attempt to establish a connection (e.g., ping) to industry standard TCP port 80 (or port 443 if HTTPS is used) to determine if it is connected to intranetwork 215. If no reply is received, then port 80 for that particular host 211 is either down or host 211 may be using a different port for the service.
Figure 3 illustrates one embodiment of a host satellite system in the form of digital processing system 300 representing an exemplary workstation, personal computer, server, etc., in which features of the present invention may be implemented.
Digital processing system 300 includes a bus or other communication means 301 for communicating information, and a processing means such as processor 302 coupled with bus 301 for processing information. Digital processing system 300 further includes system memory 304 that may include a random access memory (RAM), or other dynamic storage device, coupled to bus 301 for storing information and instructions to be executed by processor 302. System memory 304 also may be used for storing temporary variables or other intermediate information during execution of instructions by processor 302. System memory 304 may also include a read only memory (ROM) and/or other static storage device coupled to bus 301 for storing static information and instructions for processor 302.
A mass storage device 307 such as a magnetic disk or optical disc and its corresponding drive may also be coupled to digital processing system 300 for storing information and instructions. The data storage device 307 may be used to store instructions for performing the steps discussed herein. Processor 302 may be configured to execute the instructions for performing the steps discussed herein. In one embodiment, digital processing system 300 is configured to operate with a LINUX operating system stored on data storage device 307. In alternative embodiments, another operating system may be used, for examples, UNIX, Windows NT, and Solaris.
-6-
In one embodiment, digital processing system 300 may also be coupled via bus 301 to a display device 321, such as a cathode ray tube (CRT) or Liquid Crystal Display (LCD), for displaying information to system administrator. For example, graphical and/or textual depictions/indications of system performance characteristics, and other data types and information may be presented to the system administrator on the display device 321. Typically, an alphanumeric input device 322, including alphanumeric and other keys, may be coupled to bus 301 for communicating information and/or command selections to processor 302. Another type of user input device is cursor control 323, such as a mouse, a trackball, or cursor direction keys for communicating direction information and command selections to processor 302 and for controlling cursor movement on display 321.
A network interface device 325 is also coupled to bus 301. Depending upon the particular design environment implementation, the network interface device 325 may be an Ethernet card, token ring card, or other types of physical attachment for purposes of providing a communication link to support a local area network, for example, for which digital processing system 300 is monitoring. In any event, in this manner, digital processing system 300 may be coupled to a number of clients and/or servers via a conventional network infrastructure, such as a company's Intranet and/or the Internet, for example.
It will be appreciated that the digital processing system 300 represents only one example of a system, which may have many different configurations and architectures, and which may be employed with the present invention. For example, some systems often have multiple buses, such as a peripheral bus, a dedicated cache bus, etc.
In one embodiment, a communication device 326 may also be coupled to bus 301. The communication device 326 may be a modem, or other well-known interface device, for providing a communication link to a MOC independent of the communication link to which network interface 325 is connected. In this manner, communication device 326 provides a backup link to a MOC if the primary link fails as illustrated by Figure 4.
For example, referring to Figure 4, host satellite system 450 may include a modem to enable communication via the Public Switched Telephone Network (PSTN) 425 with MOC 430 independent of the communication link through IP network 420. In an alternative embodiment, other communication means (e.g., wireless network and
-7-