eG Monitoring
 

Measures reported by SpecificSrcTest

Sometimes, administrators may mark certain sources as critical and may want to closely watch the traffic originating from those sources alone and the bandwidth they use. To achieve this, administrators can use the SpecificSrcTest test. For each source that is explicitly configured for monitoring, this test reports the traffic flowing out and into every source via each interface. Additionally, the test also reports the bandwidth used by the data handled by every source. In the process, the test promptly alerts administrators to any abnormal increase in traffic volume on critical sources and sudden/consistent rise in bandwidth usage by a source.

Outputs of the test : One set of results for every source configured for monitoring for each interface of the target device.

First level descriptor: Interface name

Second level descriptor:  Source IP address

The measures made by this test are as follows:

Measurement Description Measurement Unit Interpretation
bytes Indicates the total amount of data transmitted and received by this source during the last measurement period. KB Compare the value of this measure across sources to identify which source host is contributing to the high level of network traffic.

Use the detailed diagnosis of this measure to determine the top netflows (in terms of the volume of data transacted) that originated from this source, and the amount of data transacted in bytes and packets in every flow. With the help of this detailed diagnosis, you can quickly compare the top netflows, know which netflow generated the maximum traffic, and figure out which destination that traffic was headed to. Once the problem destination is isolated, you can then investigate why traffic to that destination was high - is it because of the type of application executing on that destination? (eg., an online game or a movie that would typically consume a lot of bandwidth), or is it because of a poor network line connecting the source and the destination?
packets Indicates the total number of packets transmitted and received by this source during the last measurement period. Packets Compare the value of this measure across sources to identify which source host is contributing to the high level of network traffic.
bytesPerSec Indicates the rate at which this source transmitted/received data. Kbps  
packetsPerSec Indicates the rate at which this source transmitted/received packets. Packets/sec  
trafficRate Indicates what percentage of the total traffic on this interface was from this source. Percent A value close to 100% for this measure indicates that traffic from this source is imposing the maximum load on the network. If users complain of a latent network, you can compare the value of this measure across sources to accurately identify the source that is responsible for any congestion on the network.
BWUtilized Indicates the bandwidth utilized by this source. Percent A value close to 100% indicates that this source is indicative of excessive bandwidth utilization by this source when transmitting data.

If users complain of a latent network, you can compare the value of this measure across sources to accurately identify the source that is responsible for any congestion on the network.
in_traffic Indicates what percentage of total incoming traffic on this interface pertains to this source. Percent  
out_traffic Indicates what percentage of total outgoing traffic on this interface pertains to this source. Percent  
in_bw Indicates the percentage of bandwidth utilized by traffic coming into this interface when receiving data from this source and receiving data for this source from destinations. Percent A value close to 100% is a cause for concern as it implies a potential congestion in incoming traffic on this interface.
out_bw Indicates the percentage of bandwidth utilized by traffic going out of this interface when transmitting data to this source and when transmitting data for this source to destinations. Percent A value close to 100% is a cause for concern as it implies a potential congestion in outgoing traffic on this interface.
in_octets Indicates the amount of data received by this source. KB Compare the value of this measure across sources to know which source is receiving maximum data over this interface.
out_octets Indicates the amount of data sent by this source. KB Compare the value of this measure across sources to know which source is transmitting maximum data over this interface.
in_packets Indicates the number of packets sent by this source. Number  
out_packets Indicates the number of packets received by this source. Number  
in_octetsRate Indicates the rate at which data is received by this source. Kbps If the value of this measure consistently drops for this source, it could indicate an incoming traffic congestion.
out_octetsRate Indicates the rate at which data is sent by this source. Kbps If the value of this measure consistently drops for this source, it could indicate an outgoing traffic congestion.
in_packetsRate Indicates the rate at which packets are received by this source. Packets/Sec If the value of this measure consistently drops for this source, it could indicate an incoming traffic congestion.
out_packetsRate Indicates the rate at which packets are transmitted by this source. Packets/Sec If the value of this measure consistently drops for this source, it could indicate an outgoing traffic congestion.