A10 CGN Analytics

The A10 Analytics Dashboard for CGN has analytics for Subscriber, CGNAT service, Thunder cluster, and destination.

_images/cgn_analytics.png

Subscriber

The Subscriber tab displays the following charts:

  1. Subscribers
    The top number shows the average active subscribers over the selected period. The middle section displays the total number of new and removed subscribers during the selected period. The bottom sparklines show the added and removed subscribers for each step interval during the selected period.
  2. Mappings
    The top number shows the average port mapping at each time step the selected period. The middle row shows the total number of created and removed port mappings in the same period chosen. The bottom sparklines show the time series of the number of port mappings that were created and removed at each time step.
  3. Connections
    The top row shows the average rate and average value of active connections every minute. The middle row shows the total number of opened and closed connections during the selected period. The bottom row shows sparkline of the number of connections opened and closed during the selected period.
  4. Throughput Time Series
    The amount of traffic per second in each direction coming through the device. The data is presented either as a time series or as a histogram with appropriate number of buckets taken between the minimal and maximal value. The traffic is measured based on the samples taken every minute.
  5. Packet Time Series
    The rate of packets per second in each direction coming through the device. The data is presented both as a time series and as a histogram with appropriate number of buckets taken between the minimal and maximal value. The packet rate is measured based on the samples taken every minute.
  6. User Quota
    The average active and new and removed user quota used in each time step interval over the selected period.
  7. Connections
    The average number of active connections at the end of each step interval as well as the number of connections opened and closed during each step interval over the selected period.
  8. Top Subscribers By
    The top 10 subscribers based on various traffic parameter as labeled in the chart for both the upstream and downstream direction measured over the selected period. The data is based on sampled logs. Sampling percentage is shown next to the title.
  9. Connections per Second
    The rate of connections opened per second averaged over each time step interval.
  10. Packets Size Histogram
    The histogram of packet size distribution for both subscriber side upstream and downstream traffic over four buckets between minimal and maximal packet size measured throughout the selected period.
  11. Throughput
    The overall upstream and downstream throughput for the subscriber side as well as the protocols averaged over each time step interval over the selected time range.
  12. User Quota Alerts
    Various errors and policy errors reported over each time step interval.
_images/cgn_subscriber1.png
_images/cgn_subscriber2.png
_images/cgn_subscriber3.png
_images/cgn_subscriber3.png
_images/cgn_subscriber4.png
_images/cgn_subscriber5.png
_images/cgn_subscriber6.png
_images/cgn_subscriber7.png

CGNAT Service (For LSN Tech)

The CGNAT service tab displays the following charts:

CGN Service

  1. Mapping Histogram
    The histogram of port mappings over appropriate number of buckets between the minimal and maximal number of mappings measured over every sample interval over the selected period.
  2. Mapping By Protocol
    Distribution of port mappings by protocol (TCP, UDP and ICMP).
_images/cgn_service.png

Mappings

  1. Mappings
    The port mappings shown as a time series based on the selected period and averaged over each step sized to plot 30 or more points.
  2. Mapping Errors (Quota Exceeded)
    The quota exceeded mapping errors shown as the total number of occurrences per time step for TCP, UDP, and ICMP protocols over the selected period.
  3. Pool Errors
    The pool policy violation events shown as a total number of occurrences per time step for TCP, UDP, and ICMP protocols over the selected period.
  4. Top Ten Pools By
    The top 10 pools chosen based on average and peak throughput and connections rate. The rankings are based on sampled log data and are only statistically representative. The sampling percentage is displayed next to the title.
  5. Mappings By Protocol
    The port mappings for TCP, UDP, and ICMP protocols shown as a time series based on the selected period. The time series is calculated step size.
  6. Fullcone Connections Distribution Histogram
    The histogram of full-cone sessions for both TCP and UDP traffic using six buckets between minimal and maximal number of sessions created or freed measured every sample (every 60 secs) during the selected period.
  7. Port Allocation Distribution Histogram
    The histogram of port allocation events using six buckets between minimal and maximal number of sessions created or freed measured every sample during the selected period.
_images/cgn_mappings.png
_images/cgn_mapping1.png
_images/cgn_mapping2.png
_images/cgn_mapping3.png
_images/cgn_mapping4.png

Misbehaviours

  1. User Quota Alerts
    The user quota alerts including Creation Failure, Quota Exceeded, Sessions Exceeded, and Rate Exceeded shown as a total number of occurrences per time step during the selected period.
  2. Lid Policy Actions
    The time series of the number of LID Policy Actions including Drops versus Pass-through over the selected period.
  3. Blacklisting
    The time series of the number of Blacklisting Policy Actions including Drops versus Pass-through over the selected period.
  4. Drops
    The time series of occurrences of drops based on the specified reason: Self Hairpinning, Inbound Filtered, User Quits Unusable, New User NAT Resource Unavailable over the selected period.
_images/cgn_misbehaviour.png
_images/cgn_misbehaviour1.png
_images/cgn_misbehaviour2.png

CGNAT Service (For Fixed NAT Tech)

The CGNAT service tab displays the following charts:

  1. Mappings By Protocol
    Average of the number of Port mappings in use for every one minute sample during the selected time period for the TCP, UDP and ICMP protocols.
  2. Top Subscribers
    List of five top five subscribers based on each of their total throughput, packet rate, and connections rate. This data is based on sampled logs and as such is statistically representative only. The actual sampling rate is also displayed. Note that the logs are kept only for the last 6 hours, and time range that partially overlaps this will have only a subset of time considered.
  3. Port Mappings
    Port Mappings count of Allocation and Freeing of Maps time series each shown in two tabs as total number of occurrences per time step for TCP, UDP and ICMP protocols over the selected time period.
  4. Ports Unavailable
    Ports Unavailable event count time series shown as total number of occurrences per time step for TCP, UDP and ICMP protocols over the selected time period.
  5. Connections By Technologies
    Connection count time series shown as total number of occurrences per time step for each of the various FixedNAT technologies: NAT44, DSLite and NAT64 over the selected time period.
  6. Connections User Quota Exceeded
    Connection count time series shown as total number of occurrences per time step for each of the various FixedNAT technologies: NAT44, DSLite and NAT64 over the selected time period.
  7. TCP Full Cone Connections
    TCP Full cone sessions time series shown as total number of occurrences per time step for each of the various Fixed NAT technologies: NAT44, DSLite and NAT64 over the selected time period.
  8. UDP Full Cone Connections
    UDP Full cone sessions time series shown as total number of occurrences per time step for each of the various Fixed NAT technologies: NAT44, DSLite and NAT64 over the selected time period.
  9. Full Cone Connections Creation Failed
    Full Cone Session creation failure event count time series shown as total number of occurrences per time step over the selected time period.
  10. Endpoint Independent Mapping Matches
    Endpoint independent Mapping match event count time series shown as total number of occurrences per time step for each of the various Fixed NAT technologies: NAT44, DSLite and NAT64 over the selected time period.
  11. Endpoint Independent Filtering Matches
    Endpoint independent filtering match event count time series shown as total number of occurrences per time step for each of the various Fixed NAT technologies: NAT44, DSLite and NAT64 over the selected time period.
  12. Endpoint Independent Filtering Limit Exceeded
    Endpoint independent filtering limit exceeded event count time series shown as total number of occurrences per time step for each of the various Fixed NAT technologies: NAT44, DSLite and NAT64 over the selected time period.
  13. Endpoint Dependent Filtering Drops
    Endpoint dependent filtering drop event count time series shown as total number of occurrences per time step for each of the various Fixed NAT technologies: NAT44, DSLite and NAT64 over the selected time period.
  14. Destination Rule List
    Drops and Pass through event count time series for the Destination Rule List shown as total number of occurrences per time step over the selected time period.
  15. Hairpin Connections Created
    Hairpin Connection creation event count time series shown as total number of occurrences per time step for each of the various Fixed NAT technologies: NAT44, DSLite and NAT64 over the selected time period.
  16. Self Hairpinning Drop
    Self hairpinning drop event count time series shown as total number of occurrences per time step over the selected time period.
  17. Other Errors
    Other error count time series for LID Standby drops, IPv6 in IPv4 drops, Destination Rule list SNAT drops, as well as Config not found event shown as total number of occurrences per time step over the selected time period.

Thunder Cluster

The Thunder Cluster tab displays the following charts:

  1. Average Cluster CPU
    Shows maximal value of the average CPU utilization for processing of the control or data traffic for the entire cluster over the selected time period.
  2. Average Cluster Memory
    The maximal value of the average memory utilization for the entire cluster over the selected period.
  3. Cluster Throughput
    Shows average and peak values of throughput of all the combined traffic handled by the devices in the cluster during the selected time period.
_images/cgn_thunder.png

Device Cluster

  1. Devices of CFW-CGNAT
    The maximal value of average CPU utilization for processing of the control and data traffic for each of the devices within the cluster.
  2. Deployment Locations
    Displays the geographical location of the device if specified. When the location is not specified or is in unknown format, it is displayed as “unknown”.
  3. Traffic
    The throughput, current connections, connection rate, and packet rate of both sent and received traffic of all types for all the devices in the cluster and measured as an average at each time step over the selected period.
_images/cgn_thunder1.png
_images/cgn_thunder2.png

Partition Cluster

  1. Cluster Health

    The composite index of partition health for all the devices in the cluster based on data CPU and memory utilization over the selected period. The health is considered bad if the utilization exceeds 90% and good if the utilization is below 70% on average.

  2. Data CPU

    The CPU utilization for data traffic processing for all partitions in the cluster using maximum average at each time step during the selected period.

  3. Connections Per Second

    The average active connections in all partitions in the cluster measured as an average at each time step during the selected period.

_images/cgn_partition1.png

Destination

  1. Throughput Time Series
    The amount of traffic per second in each direction towards the destinations presented either as a time series or as a histogram with appropriate number of buckets taken between minimal and maximal value. The traffic is measured based on the samples taken every minute.
  2. Packet Time Series
    The rate of packets per second in each direction towards the destinations presented both as a time series and as a histogram with appropriate number of buckets taken between minimal and maximal value. The packet rate is measured based on the samples taken every minute.
  3. Fragmented Traffic
    The top number shows the total fragmented packets over the selected period. The middle row shows total upstream and downstream fragments for the selected period. The bottom sparklines show the time series of the upstream and downstream fragments at each time step.
  4. Throughput
    The upstream and downstream overall throughput for the destination side as well as by protocols averaged over each time step interval over the selected time range.
  5. Average Packet Size
    Destination side time series of the packet size averaged over each time step over the selected time range.
  6. Packet Size Histogram
    The histogram of packet size distribution for both upstream and downstream traffic on the destination side over four buckets between the minimal and maximal packet size measured over the selected period.
_images/cgn_destination.png
_images/cgn_Destination1.png
_images/cgn_destination2.png