Publication Details
Using Rule-Based Decision Trees for Automatic Passive Diagnostics of the Network Problems
Ryšavý Ondřej, doc. Ing., Ph.D. (DIFS)
Network diagnostics, passive network monitoring, rule-based diagnostics, fault tree analysis, event-based diagnostics, decision trees.
Network troubleshooting often requires a detailed analysis that may involve network packet capturing and a manual analysis using tools such as Wireshark. This is time-consuming and requires deep knowledge of communication protocols. Therefore this domain is a suitable candidate for the deployment of an expert system. In this paper, we consider a rule-based system integrating the expert knowledge that performs an automatic root cause analysis of network problems identifiable from network communications. The system is open, thus it is possible to add new rules as needed, e.g., for specific and recurring cases of a target environment. The rules are evaluated in a tree-based fashion, which enables us to collect additional information during the problem search to better explain the possible causes. We successfully deployed the tool as part of a commercial tool for network monitoring.
@article{BUT163425,
author="Martin {Holkovič} and Ondřej {Ryšavý}",
title="Using Rule-Based Decision Trees for Automatic Passive Diagnostics of the Network Problems",
journal="International Journal on Advances in Networks and Services",
year="2020",
volume="2020",
number="1",
pages="1--10",
issn="1942-2644",
url="http://www.iariajournals.org/networks_and_services/netser_v13_n12_2020_paged.pdf"
}