Fortinet black logo

Admin Guide

4.1.2
4.2.2
4.2.1
4.2.0
4.1.3
4.1.2
4.1.1
4.0.2
4.0.0

Check SD-WAN health

Check SD-WAN health

A vwan_health_check is for VWAN member status checking or health checking. Identify a server on the Internet and determine how the VWAN verifies that FortiExtender can communicate with it.

Parameter

Description

set protocol {ping | http | dns}

The protocol to be used for status check.

set port

The port number used to communicate with the server. The valid range is 1–65535. The default is 80.

set http-get

The URL used to communicate with the server. The default is /.

set interval

Specify the monitoring interval in seconds. The valid range is 1–3600. The default is 5.

set probe_cnt

Specify the number of probes sent within the set interval. The valid range is 1–10. The default is 1.

set probe_tm

Specify the timeout for a probe in seconds. The valid range is 1–10. The default is 2.

set probe_target

Specify the target to which probes are sent.

set src_iface

Specify the number of failures before the probe_target is considered lost. The valid range is 1–10. The default is 5.

recovery_cnt

Specify the number of successful responses received before the probe_target is considered recovered. The valid range is 1–10. The default is 5.
Example SD-WAN health check confiuration:

The following commands are used to define a vwan_health_check and use it to perform health check for the VWAN member, member1.

config system
    config vwan_health_check
        edit vwchk1
            set protocol http
            set port 80
            set http-get /
            set interval 5
            set probe_cnt 1
            set probe_tm 2
            set probe_target www.google.com
            set src_iface nas1
            set fail_cnt 5
            set recovery_cnt 5
        next
    end
    config vwan_member
        edit member1
            set target target.member1
            set priority 1
            set weight 1
            set in-bandwidth-threshold 0
            set out-bandwidth-threshold 0
            set total-bandwidth-threshold 0
            set health-check vwchk1
        next
    end
end

You can use the “get hmon hchk vwan.<vwan_member_name>” command to show the latest statistics the system has captured.

For every round of measurement, HMON first sends several packets. It then sorts the different round -trip times, and selects the median.

The output shows the following values:

  • avg, max, min, now—average, maximum, minimum, current median
  • sd—standard deviation of the median
  • am/s—ratio of the average median vs. the standard deviation
Example health check output
FX04DA5918000098 # get hmon hchk vwan.member1
median rtt:       avg      max      min      now       sd     am/s
       eth1:  182.82ms 182.92ms 182.80ms 182.82ms   0.03ms   5414.7
packet loss:       avg      max      min      now
       eth1:        0%       0%       0%       0%

Previous
Next

Check SD-WAN health

A vwan_health_check is for VWAN member status checking or health checking. Identify a server on the Internet and determine how the VWAN verifies that FortiExtender can communicate with it.

Parameter

Description

set protocol {ping | http | dns}

The protocol to be used for status check.

set port

The port number used to communicate with the server. The valid range is 1–65535. The default is 80.

set http-get

The URL used to communicate with the server. The default is /.

set interval

Specify the monitoring interval in seconds. The valid range is 1–3600. The default is 5.

set probe_cnt

Specify the number of probes sent within the set interval. The valid range is 1–10. The default is 1.

set probe_tm

Specify the timeout for a probe in seconds. The valid range is 1–10. The default is 2.

set probe_target

Specify the target to which probes are sent.

set src_iface

Specify the number of failures before the probe_target is considered lost. The valid range is 1–10. The default is 5.

recovery_cnt

Specify the number of successful responses received before the probe_target is considered recovered. The valid range is 1–10. The default is 5.
Example SD-WAN health check confiuration:

The following commands are used to define a vwan_health_check and use it to perform health check for the VWAN member, member1.

config system
    config vwan_health_check
        edit vwchk1
            set protocol http
            set port 80
            set http-get /
            set interval 5
            set probe_cnt 1
            set probe_tm 2
            set probe_target www.google.com
            set src_iface nas1
            set fail_cnt 5
            set recovery_cnt 5
        next
    end
    config vwan_member
        edit member1
            set target target.member1
            set priority 1
            set weight 1
            set in-bandwidth-threshold 0
            set out-bandwidth-threshold 0
            set total-bandwidth-threshold 0
            set health-check vwchk1
        next
    end
end

You can use the “get hmon hchk vwan.<vwan_member_name>” command to show the latest statistics the system has captured.

For every round of measurement, HMON first sends several packets. It then sorts the different round -trip times, and selects the median.

The output shows the following values:

  • avg, max, min, now—average, maximum, minimum, current median
  • sd—standard deviation of the median
  • am/s—ratio of the average median vs. the standard deviation
Example health check output
FX04DA5918000098 # get hmon hchk vwan.member1
median rtt:       avg      max      min      now       sd     am/s
       eth1:  182.82ms 182.92ms 182.80ms 182.82ms   0.03ms   5414.7
packet loss:       avg      max      min      now
       eth1:        0%       0%       0%       0%

Previous
Next