Link Search Menu Expand Document

IP SLA Tab

Configuration > Templates & Policies > TCAs > IP SLA

Monitoring > Performance > IP SLA Summary

Using a polling process, IP SLA (Internet Protocol Service Level Agreement) tracking provides the ability to generate specific actions in the network that are completely dependent on the state of an IP interface or tunnel. The goal is to prevent black-holed traffic. For example, associated IP subnets could be removed from the subnet table, and also from subnet sharing, if the LAN-side interfaces on an appliance go down.

This tab displays all of the IP SLA rules configured on the selected appliances. To add or modify rules, click the edit icon to the left of any row in the table. To view IP SLA trends over time for an interface or tunnel, click the Realtime and Historical Charts icon. You can view trends for both latency and loss.

IP SLA Monitor Use Cases

The following examples describe five basic use cases for IP SLA monitoring.

Example #1 – Ping via Interface

img

  • Two passthrough tunnels configured for Internet breakout and High Availability.

  • If the Primary passthrough tunnel goes down, traffic goes to Backup tunnel.

  • The IP SLA Rule would look like this, with the same tunnel specified for the Down and Up Actions.

    img

Example #2 – HTTP/HTTPS via Interface

img

  • Two passthrough tunnels configured for Internet breakout and High Availability.

  • If the Primary passthrough tunnel goes down, traffic goes to Backup tunnel.

  • The IP SLA Rule would look like this, with the same tunnel specified for the Down and Up Actions.

    img

  • In the URL(s) field, the protocol identifier is required only when specifying HTTPS, as in https://www.google.com.

Example #3 – Monitor Interface

img

  • On EdgeConnect - A, we want subnet advertising to be conditional on LAN0 being up.

  • Its IP SLA Rule would look like this, with the Default Subnet Action being to resume advertising subnets.

    img

    Example #4 – Monitor Interface (WAN0) to Ensure High Availability

img

  • If WAN0 goes down on the VRRP Master, we want to decrease its Priority so that traffic goes to the VRRP Backup.

  • Its IP SLA Rule would look like this, with the Default Subnet Action being to revert to the original Priority.

    img

    NOTE: In this instance, the WAN0 interface was given the label MPLS to match the service to which it connected.

Example #5 – Monitor VRRP

img

  • To monitor the VRRP router state, use VRRP Monitor and specify the interface on which the VRRP instance is configured.

    In this example, it is LAN0.

  • Here we are looking at an instance where the VRRP role changes, but priority does not, for whatever reason.

  • Its IP SLA Rule would look like this, with the Default Subnet Action being to revert to the original Priority.

    img

    NOTE: In this instance, the WAN0 interface was given the label MPLS to match the service to which it connected.

  • Another option would be to specify Down Action = Modify Subnet Metric. The Web UI automatically produces another field in which you can add a positive value to the current subnet metric. Up Action = Default Subnet Action would return the subnet metric to its original value.

    img

IP SLA Edit Row

Use this dialog box to set rules to your IP SLA. Define the Monitor and Actions by completing the following steps.

Monitor

There are four options to choose from for a Monitor:

Option Description
Interface Monitors the operational status of a specific local interface.
Ping Monitors the reachability of a specific IPv4 address.
HTTP/HTTPS Monitors the reachability of an HTTP/HTTPS endpoint.

NOTE: Both HTTP and HTTPS require a response of 200. Redirects are not supported.

NOTE: Using HTTPS as a monitor for IP SLA with multiple targets can cause potential problems. HTTPS does not provide any additional benefit about the path check.
VRRP Monitor Monitors the VRRP router state (TRUE if Master; FALSE if Backup) for a VRRP instance(s) on an interface.

Based on the Monitor chosen, the Web UI displays the appropriate fields and options.

Actions

There are eight available Down Actions:

Down Action Description
Remove Auto Subnet Remove from the subnet table an auto subnet for a port (including all VLAN and subinterface subnets).
Increase VRRP Priority Increase the configured VRRP router priority by a delta amount.
Decrease VRRP Priority Decrease the configured VRRP router priority by a delta amount.
Enable Tunnel Enable a passthrough (internet breakout) tunnel Up for IP Tracking (SLA) purposes.
Disable Tunnel Disable a passthrough (internet breakout) tunnel Up for IP Tracking (SLA) purposes. The tunnel no longer can be used for load balancing purposes (when load balancing traffic between multiple passthrough tunnels), although it still can be used as a last resort for traffic forwarding.
Disable Subnet Sharing Disable subnet sharing of subnets to other EdgeConnect peers on the appliance.
Modify Subnet Metric Add a metric delta to the metric of all subnets shared with EdgeConnect peers.
Advertise Subnets Advertise subnets to EdgeConnect peers.

There are two default Up Actions:

Up Action Description
Default Subnet Action This reverts whatever was the Down Action back to the normal state. Examples:

If Down Action = Disable Subnet Sharing, the Up Action re-enables Subnet Sharing.

If Down Action = Remove Auto Subnets, the Up Action re-adds the auto subnet.

If Down Action = Modify Subnet Metric, the Up Action restores subnet metrics to their original values.
VRRP Default Reverts the VRRP priority back to the configured value.

NOTE: If a default Up Action is used, it must match the Down Action.