A10 GiFirewall Analytics

The A10 Analytics Dashboard for GiFirewall has analytics for IP Traffic, Firewall, CGN and Cluster.

_images/gifw_analytics.png

Real Time Ticker

  1. Permitted or Denied
    Number of packets that matched the filtering criteria of any of the Firewall Rules in the active Rule Set and were permitted or denied to be forwarded over the last minute of full data collection.
  2. Reset or Drops
    Number of packets that matched the filtering criteria of any of the Rules in the active Rule Set and resulted in client connection being reset or dropped measured over last one minute.
  3. Connections or Rate
    Current Connections and Average Rate of Connections measured at the end of the last one minute of full data collection.
  4. Throughput
    Amount of traffic throughput in bits per second in each direction coming through the device based on the latest one minute sample.
  5. Packet Rate
    Amount of packets per second in each direction coming through the device for the traffic based on the latest one minute sample.
  6. Data CPU, Control CPU or Memory
    Shows maximal Data CPU, Control CPU and Memory utilization across all CPUs in the device for the last one minute.

Firewall Actions

Displays the time series of the count of various firewall rules match classified by Allow, Deny or Reset Actions as well as the Packets dropped count due to no matching rules for each step time during the selected time period.

IP Traffic

The IP Traffic tab displays the following charts:

  1. Connections
    This widget provides the breakdown of the average connections and about the connection rate for the selected duration.
  2. Throughput Time Series
    This widget provides a timeline with the break-up of the Throughput in the Upstream and the Downstream traffic for the selected duration. When the user clicks the histogram icon, the widget presents the distribution for the Throughput, in the Upstream and the Downstream traffic.
  3. Packet Time Series
    This widget provides details about the packets per second in the Upstream and the Downstream traffic for the selected duration. When the user clicks the histogram icon, the widget represents the distribution for the Packet rate in the Upstream and Downstream traffic.
  4. Subscriber IP Traffic
    This widget provides the breakdown of the IPv4 and the IPv6 network traffic, based on the Throughput and the connections in a specific timeline of the latest or the timeline of the previously used duration of six hours.
  5. Top 10 Subscribers
    This chart provides the top 10 source and the destination IPs for the IPv4 or the IPv6 traffic, based on the Throughput and the connections in the specific timeline of the latest or for the timeline of the previously used duration of six hours.
_images/gifw_iptraffic.png
_images/gifw_iptraffic1.png

Firewall

The firewall tab displays the following charts:

  1. Matched Rules
    This widget provides the break-up of the firewall actions (allowed and denied) in the selected timeline, based on the configured rules.
  2. Dropped Traffic
    This widget provides a break-up of the reset and the dropped traffic in the selected timeline.
  3. Rule Volume Distribution
    This widget provides the top five rules for allowed, denied, and reset traffic in the selected timeline.
  4. Top Rules by Volume
    This widget provides details about the variation of hits in the top 10 traffic based firewall rules.
  5. Stale Rules
    This widget provides details about the top rules, which are not affected in the different time intervals.
  6. Rule Hits Performance
    This widget provides details about the variation of hits for the top 10 triggered firewall rules. The chart also displays a sparkline that plots the time series of the number of hits every step interval for the same duration.
_images/gifw_firewall.png
_images/gifw_firewall1.png
_images/gifw_firewall2.png

CGN

The CGN tab displays the following charts:

  1. Top Pools
    This widget provides a break-up of the top 10 pools of the NAT technologies in use, for the selected timeline.
  2. Top Subscribers
    This widget provides details about the top 10 subscribers, based on the Throughput, the number of connections, or the number of packets for the timeline of the previously used duration of six hours.
  3. Mappings By Protocol
    This widget provides the distribution of port mappings by protocols (TCP, UDP, and ICMP) for the selected duration.
  4. Top 10 Pools Utilized
    This chart shows the utilization of the top 10 pools for the timeline of the previously used duration of six hours. When the user clicks on a pool, the widget presents the percentage of the consumption, by the top 10 IPs.
  5. Mappings
    This timeline provides a break-up of the NAT mappings based on the protocol (TCP, UDP, and ICMP). The NAT mappings are classified based on the successful mappings, exceeded quota, and the unavailable port.
  6. Traffic Distribution
    This timeline provides details about the traffic distribution for the number of connections and Throughput based on the protocol (TCP, UDP, ICMP, and others) in the selected duration.
_images/gifw_cgn.png
_images/gifw_cgn1.png
_images/gifw_cgn2.png
_images/gifw_cgn3.png

Thunder Cluster

The Thunder Cluster tab displays the following charts:

  1. Average Cluster CPU
    This widget provides the average CPU utilization details for the cluster in the selected timeline.
  2. Average Cluster Memory
    This widget provides the average memory consumption details for the cluster in the selected timeline.
  3. Cluster Throughput
    This widget provides details about the average and the maximum cluster Throughput for the selected duration.
  4. Devices of Cluster
    This widget provides a summary of information for all the devices connected to the cluster. The statistics highlighted include the average CPU and memory utilization, along with the details about Throughput, connections per second, and the device health trendline for the selected timeline.
  5. Deployment Locations
    Displays the geographical location of the device if specified. When the location is not specified or not a known format its displayed as “unknown”.
  6. Traffic
    This timeline provides details about the average Throughput, connection rate, packet rate, and the number of connections for all the devices in the cluster, during the selected time period. When the user clicks the bar chart icon, the widget changes the visualization to a bar chart for the same data.
_images/gifw_thundercl.png
_images/gifw_thundercl1.png
_images/gifw_thundercl2.png