Quick links:
Product Overview
Installation
Settings and Administration
ADSL
SIP Support
Telephone ports
Network
Firewall
Wireless
VPN
Misc
Licenses
Troubleshooting
Differences
This shows you the differences between two versions of the page.
|
web_gui:network_status_page [2010/11/04 14:24] tibor created |
web_gui:network_status_page [2010/11/19 11:09] (current) tibor |
||
|---|---|---|---|
| Line 1: | Line 1: | ||
| ====== Network status ====== | ====== Network status ====== | ||
| - | The Network status page informs about all hosts connected to your SafeGate. You can see their online status, resource usage, IP address, name, etc. The more PCs you have connected to your SafeGate, the more useful the Network status page becomes. | + | The Network status page informs about all hosts connected to your Internet Gate. You can see their online status, resource usage, IP address, name, etc. The more PCs you have connected to your Internet Gate, the more useful the Network status page becomes. |
| The Network status page is mostly automatic. New equipment added to your network will pop up automatically in the connected hosts list. | The Network status page is mostly automatic. New equipment added to your network will pop up automatically in the connected hosts list. | ||
| ===== Refresh ===== | ===== Refresh ===== | ||
| - | To see the up-to-date version of the page you must click on the Refresh… button at the bottom of the page . Click on the Refresh… button only once, and wait until the page reloads – reloading can take some seconds to complete. | + | 4 seconds after you open the Network status page it refreshes once. Bandwidth usage is measured during those 4 seconds, and thereafter shown static. To update the values you need to refresh the page. |
| - | The Refresh… button at the bottom of the page scans through all hosts, updating their current online status . The refresh-button of your browser does no such scan – it merely updates the page, but you will not see the true online status of all hosts. | + | To always see the latest information, and to see the trafic bars in real time, click "Refresh automatically" to start automatic updating of the page. |
| - | ===== Connected hosts ===== | + | ===== Network Status ===== |
| - | Lists all equipment on your network. The list is based upon current data in the ARP, route, DHCP, DNS and flow tables of your SafeGate. If new equipment is connected to your network it will automatically pop up on this list as soon as it tries to connect to the Internet. | + | Lists all hosts (equipment) on your networks. The list is based upon current data in the ARP, route, DHCP, DNS and flow tables of your SafeGate. If new equipment is connected to your network it will automatically pop up on this list as soon as it communicates with the Internet Gate (tries to connect to the Internet). |
| - | ==== Host icon ==== | + | ==== Interfaces ==== |
| - | The icon of the host indicates its online status: | + | Displays status of this unit's active interfaces. |
| + | * WAN interfaces are listed above the back side image of the unit. | ||
| + | * LAN interfaces are listed below the back side image of the unit. | ||
| + | * Interfaces not listed have no active clients connected. | ||
| - | Clicking on the Refresh… button makes the SafeGate send an ARP request to each connected host. | + | The traffic bar for an interface shows ALL Ethernet traffic going through that interface (both send and receive), including broadcasts, multicasts, control packets, etc. |
| - | PC A is answering to the ARP request, thus it is online (turned on). All online equipment answers to ARP requests, but ARP requests cannot get through gateways. | + | Bridged interfaces are not shown. Hosts connected to a bridged interface show up under the bridged to interface. |
| - | As soon as PC B tries to access the Internet it will automatically pop up on the Connected hosts list. | + | QoS classes of additional WAN interfaces are shown after their IP addresses. |
| - | PC C is offline (turned off) – it does not respond to ARP requests. As response to ARP requests is mandatory, no response can only mean the PC is turned off, crashed or in some other way disabled – it is offline. | + | ==== Traffic bars ==== |
| + | The bars in front of hosts and interfaces indicate traffic. Position mouse pointer on bar to view numerical values of bits/second and flows. | ||
| - | Gateways connect networks together: gateway D is connected to two subnets, and allows traffic to flow between them. Gateway D is online – it is itself answering to ARP requests. | + | **Length** of the bar indicates the amount of data trafic to/from the host. The data trafic is measured in BITS per second IP trafic (divide with 8 to get BYTES per second), and it is an average value of the traffic since the last refresh of the page. |
| - | However, as gateways do not allow ARP requests through (gateway D blocks the ARP requests), there is no easy way to decide if PCs E , F and G are online or not. That is why they are displayed as “remote hosts", without any online status specified. | + | **Thickness** of the bar indicates number of [[firewall:flows]] open to this host. Data streams through the firewall consume flows. PC-s with many flows, requiring much firewall resources, have very thick traffic bars. |
| - | By clicking on the host icon of PC E in the Connected hosts list a PING request is sent to it. PING requests are allowed through by gateways, but it is not mandatory for hosts to answer to them. Thus gateway D allows the PING request through, and if PC E answers to it then we know that PC E is online. | + | TIP: Klick "Refresh automatically..." to see the data trafic in real time. |
| - | But answering to PING is not mandatory: a host not answering to PING could be offline – or be online, but simply ignoring the PING request. Thus there seems no difference between PCs F and G : neither answers to PING – but while PC F is indeed turned off, G is actually online, but ignores the PING requests! | + | The scale of the bars is roughly logarithmic. The bigger the bar the higher the value – but a bar slightly larger than another can in fact have double the value. |
| - | If a gateway itself is not responding to ARP requests then the gateway is offline – neither it, nor any PCs behind it can be reached. Thus as gateway H is offline, PCs J and K cannot be reached, even though they might be turned on. | + | To see the true numerical values place the mouse pointer over the bars. To see resource usage in detail click on the host icon to open the [[Host info]] page. |
| - | ==== SIP icon ==== | + | ==== Host icons ==== |
| - | Hosts that SIP users are registered to have an additional SIP user icon next to them. The SIP user icon indicates that at least one SIP user is registered to that host. To see a list of which users are registered to that host, click on the host icon. | + | The icon of the host indicates its online status: |
| - | SIP media streams going to or from the host (at the moment the Network status page was opened) are indicated by a small telephone receiver appearing next to the SIP icon. Note that all kind of SIP media streams are indicated this way, not only voice streams. | + | {{:web_gui:netstus.jpg|Network Status page }} {{ :web_gui:setup_netstat.gif|Network map}} |
| - | ==== Resource bars ==== | + | PC A has communicated lately, thus it is online (turned on). PC A is the PC you are sitting at, indicated by being slightly larger than the others. |
| - | There are two firewall resource bars next to each host: a blue one indicating the amount of flow s used by that host, and a green one indicating the amount of bytes transferred to that host. | + | |
| - | The bars are scaled in a special way to easily visualise resource usage: as long as the bar is less than half the available space in size the host is consuming less resources than average. | + | PC B too is known to be online (has been seen communicating). (All PC-s that communicate to or through the Internet Gate are listed in its ARP table. PC B is listed in the ARP table thus PC B has been communicating recently. Power off or excessive long time of no activity erases entries from the ARP table.) |
| - | The scale of the bars is roughly logarithmic. The bigger the bar the higher the value – but a bar slightly larger than another can in fact have double the value. | + | PC C on the other hand has not been communicating. There has been a PC at that IP address before, but we havn't seen from it lately. (PC C is not in the ARP table.) As response to ARP requests is mandatory, no response can only mean the PC is turned off, crashed or in some other way disabled – it is offline. |
| - | To see the true numerical values place the mouse pointer over the bars. To see resource usage in detail click on the host icon to open the Host info page. | + | Gateways connect networks together: gateway D is connected to two subnets, and allows traffic to flow between them. Gateway D is online – it is itself answering to ARP requests. |
| - | Blue bar: nr of flows | + | However, as gateways do not allow ARP requests through (gateway D blocks the ARP requests), there is no easy way to decide if PCs E , F and G are online or not. That is why they are displayed as “remote hosts", without any online status specified. |
| - | By default the SafeGate has 2000 flow s available for usage. Each data stream through the firewall consumes one of those flows. If you have for example 10 PCs connected to your SafeGate then each of them should open no more than 200 flows to ensure there are enough flows for all of your PCs. If a PC has as many flows open as its share then its blue bar is exactly half of the available space in size. | + | By clicking on the host icon of PC E in the Connected hosts list a PING request is sent to it. PING requests are allowed through by gateways, but it is not mandatory for hosts to answer to them. Thus gateway D allows the PING request through, and if PC E answers to it then we know that PC E is online. |
| - | Green bar: nr of bytes transferred | + | But answering to PING is not mandatory: a host not answering to PING could be offline – or be online, but simply ignoring the PING request. Thus there seems no difference between PCs F and G : neither answers to PING – but while PC F is indeed turned off, G is actually online, but ignores the PING requests! |
| - | During normal operations a flow is opened through the firewall, some data is transferred through it, and then it is closed again. Instead of displaying an ever-changing bytes-per-second value, the more stable bytes-transferred value is shown. The larger the green bar the more bytes have been transferred to/from the host through its currently open flows. | + | If a gateway itself is not responding to ARP requests then the gateway is offline – neither it, nor any PCs behind it can be reached. Thus as gateway H is offline, PCs J and K cannot be reached, even though they might be turned on. |
| - | If you for example have 10 PCs connected to your SafeGate and a total of 8000KB of data has been transferred, then each PC should have transferred an average of 800KB. If a PC has transferred more than that its green bar will be larger than half of the available space in size. | + | GW 50.11.69.1 in the example picture above is the default gateway of your Internet provider. If it is offline you cannot reach the Internet. (In some PPPoA or PPPoE configurations the default gateway might be indicated offline even though it is online.) |
| - | === Example === | + | Host 50.11.69.200 on the WAN is some equipment your Internet Gate has been communicating with that is on the same WAN subnet as you. It might be a DNS server, or your neighbours PC. |
| - | Conclusions: | + | ==== SIP icon ==== |
| + | Hosts that SIP users are registered to have an additional SIP user icon next to them. The SIP user icon indicates that at least one SIP user is registered to that host. To see a list of which users are registered to that host, hover your mouse over the icon. | ||
| - | + | SIP media streams going to or from the host (at the moment the Network status page was refreshed) are indicated by a small telephone receiver appearing next to the SIP icon. Note that all kind of SIP media streams are indicated this way, not only voice streams. | |
| - | gamma is using most flows – much more than its “share" | + | |
| - | + | ||
| - | delta has transferred most bytes | + | |
| - | + | ||
| - | beta has very little resource usage – perhaps just a ping or something minor like that. | + | |
| - | NOTE! | + | |
| - | |||
| - | Just because a host uses more resources than its “share" it is no reason for alarm – hosts are allowed to use more resources than average for shorter or longer periods. It is only if you experience severe bandwidth problems you need to examine which hosts are using most firewall resources on your network. | ||
| ==== IP address ==== | ==== IP address ==== | ||
| + | The IP address of the host is shown next to the host icon. If the address is in //italics// it has been given by the DHCP server of your Internet Gate. | ||
| + | ==== Hostname ==== | ||
| + | For hosts that either the DHCP or DNS servers, or the DNS cache knows a name the host name is also displayed. Only one, primary, host name is displayed even for hosts with multiple names. | ||
| - | The IP address of the host. If the address is in italics it has been given by the DHCP server of your SafeGate. | + | ==== Detailed information ==== |
| - | + | For detailed information about a host click on its icon and a [[host info]] page will appear. | |
| - | Hostname | + | |
| - | + | ||
| - | The primary DNS name of the host (the first name in the DNS database with that IP address). If you have entered several names for the same IP address in the DNS database only the first name will be displayed. | + | |
| - | + | ||
| - | New equipment | + | |
| - | + | ||
| - | If new equipment is connected to your network it will automatically pop up on the list as soon as it tries to connect to the Internet. | + | |
| - | If the equipment is using DHCP to collect an IP address, its name will also automatically appear on the page. | + | ===== New equipment ===== |
| + | If new equipment is connected to your network it will automatically pop up on the list as soon as it requests an IP address or tries to connect to the Internet. | ||
| - | Equipment using static IP addresses appears without any name. To manually enter a name for it, click on that host's icon, and into the Hostname field of the appearing Host info page enter the desired name and click Save. | + | Equipment using static IP addresses usually appears without any name. To manually enter a name for it, click the "Local DNS Server" link and enter a DNS entry for the host. |
| - | Equipment not connecting to the Internet might not appear automatically in the list. To manually add such equipment enter its IP address and hostname into the fields at the bottom of the Network status page and click Add . | + | Equipment not connecting to the Internet might not appear automatically in the list. To manually add such equipment click the "Local DNS Server" link and enter a DNS entry for the host. |
| - | Advanced | + | ===== Advanced ===== |
| + | {{ :web_gui:advanced_network_status.png?223|Advanced Network status in rel 5.30}} | ||
| By clicking on the Advanced link at the bottom of the Network status page you will see the routing, ARP and DHCP tables in their raw format. | By clicking on the Advanced link at the bottom of the Network status page you will see the routing, ARP and DHCP tables in their raw format. | ||
