Fortinet black logo

Handbook

6.6.1
7.0.0
6.6.3
6.6.3
6.6.1
6.6.0
6.5.1
6.5.0
6.4.1
6.4.0
6.3.3
6.3.2
6.3.1
6.2.3
6.2.2
6.2.1
6.2.0
6.1.1

Using the Aggregate Drops graph

Using the Aggregate Drops graph

You use the Aggregate drops graph to monitor trends in drops over time. The Aggregate drops graph plots the following data for all Layer 3/4/7 per SPP:

  • Flood Drops - Aggregate of drops due to packet rate thresholds.
  • ACL Drops - Aggregate of drops due to ACL rules.
  • Anomaly Drops - Aggregate of drops due to anomaly detection methods.
  • Out of Memory Drops - Aggregate of drops due to built-in rules that detect memory attacks on the FortiDDoS system table overflows.
  • Note: Memory Drops are normally caused by incorrect configuration or undersized FortiDDoS for the environment. Memory Drops may be seen under attack in Detection/Learning Mode when, for example, SYN Floods are not challenged or blocked by Thresholds and validations.

    • You can customize the following viewing parameters: SPP, Reporting Period (1-hr to 1-yr), Linear/Logarithmic Y-Axis

    Placing the cursor on the Monitor graph will display a tool-tip with additional information.

    Before you begin:

    • You must have Read permission for the Monitor menu.
    • Refer to Reading Monitor graphs to understand the graphs in detail.
    To display the graph:
    1. Go to Monitor > Drops Monitor > SPP. The default graph will show Aggregate Drops. Modify SPP, Y-Axis View, and Reporting Period as required.
    2. Select other tabs (Flood Drops, ACL Drops, Anomaly Drops or Out of Memory Drops) and Modify [SPP] [Layer] [Y-Axis View] [Reporting Period] as required.
    Previous
    Next

    Using the Aggregate Drops graph

    You use the Aggregate drops graph to monitor trends in drops over time. The Aggregate drops graph plots the following data for all Layer 3/4/7 per SPP:

    • Flood Drops - Aggregate of drops due to packet rate thresholds.
    • ACL Drops - Aggregate of drops due to ACL rules.
    • Anomaly Drops - Aggregate of drops due to anomaly detection methods.
    • Out of Memory Drops - Aggregate of drops due to built-in rules that detect memory attacks on the FortiDDoS system table overflows.
  • Note: Memory Drops are normally caused by incorrect configuration or undersized FortiDDoS for the environment. Memory Drops may be seen under attack in Detection/Learning Mode when, for example, SYN Floods are not challenged or blocked by Thresholds and validations.

    • You can customize the following viewing parameters: SPP, Reporting Period (1-hr to 1-yr), Linear/Logarithmic Y-Axis

    Placing the cursor on the Monitor graph will display a tool-tip with additional information.

    Before you begin:

    • You must have Read permission for the Monitor menu.
    • Refer to Reading Monitor graphs to understand the graphs in detail.
    To display the graph:
    1. Go to Monitor > Drops Monitor > SPP. The default graph will show Aggregate Drops. Modify SPP, Y-Axis View, and Reporting Period as required.
    2. Select other tabs (Flood Drops, ACL Drops, Anomaly Drops or Out of Memory Drops) and Modify [SPP] [Layer] [Y-Axis View] [Reporting Period] as required.
    Previous
    Next