Dynamic syslog mining for network failure monitoring

Yamanishi, Kenji; Maruyama, Y.

doi:10.1145/1081870.1081927

Cited by 173 publications

(89 citation statements)

References 26 publications

(27 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Several studies about system monitoring have demonstrated the feasibility of such an approach [28], [29]. Although those works present important results about system monitoring in HPC, they do not try to make the connection with different failure regimes and dynamic resilience runtime in order to minimize wasted time.…”

Section: Related Workmentioning

confidence: 99%

Monitoring strategies for scalable dynamic checkpointing

Perarnau

Bautista-Gomez

2016

2016 Seventh International Green and Sustainable Computing Conference (IGSC)

View full text Add to dashboard Cite

Abstract-Resilience is an important challenge for extremescale supercomputers. Failures in current supercomputers are assumed to be uniformly distributed in time. However, recent studies show that failures in high-performance computing systems are partially correlated in time, generating periods of higher failure density. The detection of those periods is important in order to adjust the system to new conditions. In this paper we present a monitoring system that listens to hardware events across computing nodes and forwards important events to the fault tolerance runtime so it can react to those regime changes. Our evaluation at scale shows several aspects of this dynamic checkpointing scheme, critical to understanding its applicability on production systems, as well as to identifying possible avenues for future improvements. In particular, we evaluate the ability of our system to monitor as many types of events as possible, measure their importance, and forward them to the resilience runtime.

show abstract

Section: Related Workmentioning

confidence: 99%

Monitoring strategies for scalable dynamic checkpointing

Perarnau

Bautista-Gomez

2016

2016 Seventh International Green and Sustainable Computing Conference (IGSC)

View full text Add to dashboard Cite

show abstract

“…Different analysis tasks pay attention to different application aspects, such as system failure tracing [19,10], event correlation discovery [20,18,16], and event based trend analysis [5,6,7]. In practice, these methods are often conducted when the analysts already have some prior knowledge about the data.…”

Section: Related Workmentioning

confidence: 99%

“…property values description #types 20-100 step 20 The number of event types. #events 60k-140k step 20k The number of event occurrences.…”

Section: Efficiency Evaluationmentioning

confidence: 99%

META: Multi-resolution Framework for Event Summarization

Jiang

Perng

2014

Proceedings of the 2014 SIAM International Conference on Data Mining

View full text Add to dashboard Cite

Event summarization is an effective process that mines and organizes event patterns to represent the original events. It allows the analysts to quickly gain the general idea of the events. In recent years, several event summarization algorithms have been proposed, but they all focus on how to find out the optimal summarization results, and are designed for one-time analysis. As event summarization is a comprehensive analysis work, merely handling this problem with a single optimal algorithm is not enough.In the absence of an integrated summarization solution, we propose an extensible framework -META -to enable analysts to easily and selectively extract and summarize events from different views with different resolutions. In this framework, we store the original events in a carefully-designed data structure that enables an efficient storage and multiresolution analysis. On top of the data model, we define a summarization language that includes a set of atomic operators to manipulate the meta-data. Furthermore, we present 5 commonly used summarization tasks, and show that all these tasks can be easily expressed by the language. Experimental evaluation on both real and synthetic datasets demonstrates the efficiency and effectiveness of our framework.

show abstract

“…As a result such datasets are rarely available in operational networks and were not available when we first analyzed the CENIC network. Thus, in many cases, including our own previous work, network analysis is conducted using syslog data [4,10,14,15,21]. Worryingly, it remains unknown what sacrifices a syslogbased approach makes in terms of accuracy when compared to the ground truth revealed via routing protocol messages.…”

Section: Introductionmentioning

confidence: 99%

A comparison of syslog and IS-IS for network failure analysis

Turner

Levchenko

Savage

et al. 2013

Proceedings of the 2013 Conference on Internet Measurement Conference

View full text Add to dashboard Cite

Accurate reporting and analysis of network failures has historically required instrumentation (e.g., dedicated tracing of routing protocol state) that is rarely available in practice. In previous work, our group has proposed that a combination of common data sources could be substituted instead. In particular, by opportunistically stitching together data from router configuration logs and syslog messages, we demonstrated that a granular picture of network failures could be resolved and verified with human trouble tickets. In this paper, we more fully evaluate the fidelity of this approach, by comparing with high-quality "ground truth" data derived from an analysis of contemporaneous IS-IS routing protocol messages. We identify areas of agreement and disparity between these data sources, as well as potential ways to correct disparities when possible.

show abstract

Dynamic syslog mining for network failure monitoring

Cited by 173 publications

References 26 publications

Monitoring strategies for scalable dynamic checkpointing

Monitoring strategies for scalable dynamic checkpointing

META: Multi-resolution Framework for Event Summarization

A comparison of syslog and IS-IS for network failure analysis

Contact Info

Product

Resources

About