US 12,265,449 B2
Software-based network probes for monitoring network devices for fault management
Steve Toms, Middleburg, FL (US); David Sutton, Monroe, LA (US); Wayne L. Williams, Littleton, CO (US); Binu Baby, Highlands Ranch, CO (US); Nashat Saqqa, Westminster, CO (US); Amer Khan, Erie, CO (US); Pranit Ambardekar, Erie, CO (US); Ranjith Kumar Nooka, Thornton, CO (US); Mark Chase, Clive, IA (US); Keith Sebesta, Saint Paul, MN (US); Tim W. Kimpton, Fort Smith, AR (US); Shelley Goldner, Superior, CO (US); and Shelli L. Hurd, Arvada, CO (US)
Assigned to Level 3 Communications, LLC, Denver, CO (US); and CenturyLink Intellectual Property LLC, Denver, CO (US)
Filed by Level 3 Communications, LLC, Broomfield, CO (US)
Filed on Jul. 25, 2023, as Appl. No. 18/358,771.
Claims priority of provisional application 63/410,749, filed on Sep. 28, 2022.
Claims priority of provisional application 63/410,733, filed on Sep. 28, 2022.
Prior Publication US 2024/0103962 A1, Mar. 28, 2024
Int. Cl. G06F 11/07 (2006.01); H04L 41/0213 (2022.01); H04L 43/04 (2022.01)
CPC G06F 11/0793 (2013.01) [G06F 11/0709 (2013.01); H04L 41/0213 (2013.01); H04L 43/04 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A method, comprising:
receiving, using a computing system and from at least one first software-based network probe among a first plurality of software-based network probes, a first alert associated with a first device among a plurality of layer 4 devices that is each disposed within at least one first network among a plurality of networks, the layer 4 devices corresponding to open systems interconnection (“OSI”) model's transport layer, the first alert comprising first alert data;
parsing, using the computing system, the first alert data in the received first alert;
storing, using the computing system and in a first database, the parsed first alert data in a standardized format as parsed and formatted first alert data;
performing, using the computing system and an enrichment system, enrichment of the first alert data, by:
retrieving first enrichment data from one or more second databases, the first enrichment data comprising at least one of first device data associated with the first device or first network data associated with a network in which the first device is disposed; and
adding the first enrichment data to the parsed and formatted first alert data stored in the first database to form first consolidated alert data; and
sending, using the computing system, the first consolidated alert data to a fault management system for display to a user to facilitate addressing of the first alert by the user.