PART 01 Project Background

01 Customer Profile

The customer in this case is a diversified comprehensive financial enterprise in Hong Kong with a history of over 20 years. Its business scope covers securities, futures, asset management, wealth management, etc. Relying on its extensive business network and diversified financial service products, it has significant influence in the market.

02 Pain Point Analysis

With the continuous expansion of its business territory and the upgrading of its IT system architecture, the scale of the customer’s IT infrastructure has become increasingly large and complex, covering a large number of servers, network equipment, storage devices, and various application systems. The original operation and maintenance monitoring system can no longer meet the current needs, and the customer is facing many challenges in operation and maintenance monitoring:

• Dilemma of Fragmented Monitoring Tools: Traditional operation and maintenance monitoring tools are scattered, lacking a unified and integrated management operation interface and a comprehensive monitoring system framework. In daily work, operation and maintenance personnel need to switch repeatedly and tediously between different monitoring systems, which not only greatly reduces work efficiency but also easily leads to monitoring loopholes due to human negligence or poor connection between systems, laying hidden dangers for potential IT failures.
• Inadequate Alarm Mechanism: There are problems of inaccurate and untimely alarm information. A large number of invalid alarms are flooding in, while truly critical alarms are easily submerged. This makes it difficult for operation and maintenance personnel to detect and handle potential serious failures in a timely manner, greatly increasing the risk of business interruption.
• Difficult Fault Localization: For complex business architectures and IT environments, it is difficult to achieve rapid fault localization and root cause analysis. When an exception occurs in the business system, operation and maintenance personnel often need to spend a lot of time checking many possible fault points, which not only prolongs the business recovery time but also increases the enterprise’s operating costs and reputation risks.

PART 02 lerwee Solution

lerwee has carefully tailored a one-stop intelligent monitoring and network management platform for the customer. By comprehensively reconstructing the operation and maintenance management process system, it has significantly enhanced the monitoring efficiency of the information system and the network management level, greatly improved the work efficiency of operation and maintenance personnel, and brought comprehensive optimization and improvement to the customer’s IT operation and maintenance work.

1. Monitoring Capabilities

01 Unified Monitoring Platform Architecture Design

To effectively cope with the severe challenges of large-scale monitoring objects, lerwee has carefully built a basic operation and maintenance monitoring platform based on a distributed architecture. The core components of the platform include a monitoring server cluster, proxy servers, and a distributed database. The monitoring server cluster is responsible for data collection, processing, and analysis. Proxy servers are deployed in various data centers and network areas to realize local preprocessing and efficient transmission of data. The distributed database ensures high availability and fast read-write access of data.

02 Comprehensive Coverage of Monitoring Objects

• Infrastructure Monitoring: It conducts real-time monitoring of key performance indicators of servers, such as CPU, memory, disk I/O, and network bandwidth. At the same time, it monitors the health status of server hardware, such as temperature and fan speed, to provide early warning of hardware failure risks. For network equipment, it monitors the port traffic, connection status, routing table, and other information of switches and routers to ensure the stability and efficiency of network links. For storage devices, it focuses on monitoring the storage space usage, read-write performance, disk array status, etc., to ensure the security and reliability of data storage.

• Business System Monitoring: It goes deep into the core of financial business applications and closely monitors various key business indicators. Starting from each link of the transaction processing process, it accurately monitors core business indicators such as response time, number of concurrent users, and transaction success rate. Through carefully designed simulated user operations and reproduction of real transaction scenarios, it realizes real-time in-depth detection of the functional integrity and availability of the application system.

03 Intelligent Alarm Management

• Accurate Alarms: An intelligent alarm analysis engine is established. Based on historical data and advanced algorithms, it conducts real-time analysis of monitoring data, filters out invalid alarms, and only sends alarm information that truly has potential risks and business impacts. The alarm information contains key details such as the name of the faulty device, fault type, fault occurrence time, and possible impact scope, helping operation and maintenance personnel quickly judge the severity of the fault.

• Multi-Channel Alarm Push: According to the severity and type of alarms, different alarm notification channels and recipients are set. For serious faults in the core business system, in addition to popping up eye-catching alarm prompts on the monitoring platform interface, it also notifies the relevant operation and maintenance supervisors and business department managers in a timely manner through multiple channels such as SMS and email, ensuring that the alarm information can be received and handled in the first place.
• Alarm Escalation and Suppression: When an alarm is not handled within a certain period of time or the fault continues to deteriorate, the alarm system will automatically escalate the alarm and notify managers and technical experts at higher levels to intervene in the handling. At the same time, for some known maintenance operations or temporary network fluctuations, alarm suppression rules are set. When an alarm storm occurs, the fuse protection mechanism is automatically activated to avoid notification storms.

04 Visualized Operation and Maintenance Management

• Operation and Maintenance Cockpit: A centralized operation and maintenance cockpit is built, which displays the operation status of the entire IT infrastructure and business system through an intuitive 3D visualization interface. Through dynamic charts, dashboards, and other forms, it presents key performance indicators, the number and distribution of alarms, resource utilization, and other information in real time, allowing operation and maintenance personnel to have a clear understanding of the overall operation situation and quickly detect abnormalities and potential risk points.
• Business Topology: According to the architecture and logical relationship of the business system, a business topology diagram is automatically generated, which maps and associates the business processes with the underlying IT resources. When a fault occurs in the business, operation and maintenance personnel can quickly locate the IT resource where the fault source is located through the business topology, realizing rapid fault localization and troubleshooting from the business to the technical level.
• Customized Screen Projection View: Different operation and maintenance personnel are supported to customize and create visualized screen projection views according to their own work needs and focus points. The monitoring information of IT resources in specific areas, alarm information, or performance analysis reports can be projected onto large screens, facilitating the operation and maintenance team to conduct real-time monitoring and collaborative analysis in the centralized monitoring room, and improving the team collaboration efficiency and problem handling speed.

2. Network Management Capabilities

01 Automatic Discovery of Network Devices and Generation of Network Topology

Facing the customer’s complex and diverse network system, lerwee’s network management platform demonstrates strong compatibility and intelligence. It can automatically discover network devices, servers, and storage resources of multiple brands, and automatically generate network topology diagrams and physical link topologies. In this process, it also supports the detailed presentation of information such as monitoring links, network elements, and bandwidth rates. This feature effectively solves the many problems faced by the customer in hybrid networking, network isolation, and port link traffic management, and provides strong support for building a unified and efficient network management architecture.

02 Precision in IP and Traffic Management

The allocation and online status of hosts in each network segment are clearly presented in the form of a visual view. On this basis, not only can IP address allocation and recovery operations be easily carried out, but also operation and maintenance personnel can quickly check key data such as IP status, Mac address, access devices, and port information. Combined with the traffic analysis function, an in-depth judgment of the network traffic situation can be made. When network congestion occurs, the customer can quickly lock the IP that occupies more traffic by virtue of this module, so as to take corresponding measures in a timely manner for traffic regulation or problem troubleshooting, ensuring the stable and smooth operation of the network.

03 Dedicated Line Link Monitoring

To meet the needs of dedicated line link monitoring, the platform provides advanced technical means such as Rping detection and Proxy agent monitoring, which can grasp the dedicated line load and connection status in real time and accurately. Key indicators of dedicated line load, such as port bandwidth utilization and delay, as well as the connection status of the dedicated line, are well understood, laying a solid foundation for ensuring the reliability and efficiency of the dedicated line network.

04 In-depth Insight and Data Analysis through Professional Traffic Analysis

The traffic analysis function of the network management platform is highly professional and in-depth. It can accurately identify the IPs, applications, and protocols that occupy the most traffic, providing a key basis for the refined management of network traffic. At the same time, it supports the detection of historical IP flow conversations, with a detection granularity as fine as one minute, which enables operation and maintenance personnel to conduct in-depth analysis of the historical change trend of network traffic.

PART 03 Customer Benefits

Acceleration of Fault Detection and Handling

The unified monitoring platform and intelligent alarm management enable operation and maintenance personnel to obtain fault information quickly and accurately. The average fault detection time has been reduced from several hours to several minutes, and the fault handling time has also been significantly reduced, resulting in a significant improvement in the availability of the business system.

Efficiency Improvement with Visual Assistance

The application of visualized operation and maintenance management tools has greatly improved the collaboration efficiency of the operation and maintenance team and the speed of problem localization. Relying on visual interfaces such as network topology and business topology, operation and maintenance personnel can quickly focus on the location of problems, reducing the time and workload of troubleshooting in a complex IT environment, and the overall operation and maintenance efficiency has been improved several times.

Alarm Optimization and Cost Reduction

Through the optimization of alarm management, the handling cost of invalid alarms has been reduced, and operation and maintenance personnel can devote more time and energy to truly valuable operation and maintenance work. At the same time, the construction of the unified monitoring platform has integrated the original scattered monitoring tools, reducing software procurement costs and operation and maintenance management costs.

Network Sorting and Optimization

At the same time, it has also realized the sorting of complex network environments and the efficient management of network resources. In terms of fault handling, a qualitative leap has been achieved in quickly locating fault nodes; in terms of IP management and traffic regulation, precise operations have been realized to fully optimize the allocation of network resources and ensure the network smoothness of key businesses; it has strongly guaranteed the safe and efficient transmission of dedicated line network data, and stabilized the foundation of enterprise operation. Facing complex network environments, it easily realizes unified management and optimization, reduces the difficulty and cost of network management, and improves the operation and maintenance efficiency and management level of the IT team.