Table Of Contents

Monitoring network status

Network and hardware status view

Business status view

Monitoring network status

---

This chapter describes some of the techniques you can use in monitoring the status of the network you have created.

•Network and hardware status view

•Business status view

The structure of the status views includes information that can help you verify that the intent of configured policy matches what is actually being provisioned, including:

•Pairs of resources with communication between them enabled

•Resources disconnected because of missing or misconfigured policy.

Network and hardware status view

The network status view shows the status of sites and managed network devices. Sites are marked with a red [x] if the network device is not connected and working, or if there is a known issue, like unmanaged VLANs not listed for the domain.

You can mouse over a network device to see its status, as shown in the following figure.

To display this view:

1. Click the Network Status tab in the lower-left of the status view.

2. Verify that you see a view comparable to the one in Figure 7-1

Typical hover text reports business policy and device status such as:

•OverDrive managed subnets assigned to that site

•DSC IP address, connection up or down, heartbeat

•Router or switch IP address, functioning status

Figure 7-1 Network status view

You can quickly spot malfunctioning devices and respond to outages and potential performance problems.

For a DSC, you can right-click and examine the following information:

•Logs—There are two real-time logs, each selectable under their own tab: /var/log/messages and /var/log/overdrive.log. These are updated as logged events occur.

•Active policy—A static display of IPSec connections and their details; a list of which sites and IP addresses are connected; the firewall policy in effect for each device; and the VLAN connections.

For a router or switch, you can right-click, choose Execute Device Command, and see the following:

•Configuration details

•Interfaces

•Routes

The network hardware status view also lets you generate a site compliance report. See the "Creating site compliance reports" section on page 8-2.

Business status view

The business status view, as shown inFigure 7-2, provides a top-down view of the deployed infrastructure and the policies that define and control its behavior.

Figure 7-2 Business status view

Using this view, you can quickly identify non-functioning policies, for example, Billing and Sales, which have no resources assigned to them. You can drill down into a policy and see the IP address and traffic flow between the device's services, plus protocol and topology (here, ANY and hub-spoke). You can continue to drill down deeper into any specific service to see the status of the actual devices that support it.

The view is designed to help you see at a glance what is going on. DSCs, for example, use a round status icon that changes from red to green to tell you whether traffic is flowing through them or no.

For an explanation of device and tunnel connection icons, Table 7-1.

Table 7-1 Icons for device and tunnel connections 

Left device	Left connection	Right connection	Right device	Description	Icon
down	down	down	down	Configured; no traffic flowing
down	n/a	down	up	Left device down, tunnel reported down by right device: lost box altogether?
down	n/a	n/a	down	Both DSCs down: lost both DSCs or devices?
down	n/a	up	up	Left device down, tunnel appears up: lost DSC?
pending	pending	down	up	Left DSC not deployed
pending	pending	pending	pending	Neither DSC deployed
up	down	n/a	down	Right DSC down, tunnel reported down by right DSC: lost box altogether?
up	down	pending	pending	Right device undeployed
up	down	up	up	Left tunnel not reporting traffic
up	up	down	up	Right side not reporting traffic
up	up	n/a	down	Right DSC down, tunnel appears up: lost DSC?
up	up	up	up	configured with traffic flowing
unmanaged	n/a	n/a	unmanaged	Unmanaged devices: no info available
*	*	*	*	All other combinations