Business Community > Requests & Suggestions > policy routing login
< Requests & Suggestions
 
0
Votes

policy routing login

 
0
Votes

policy routing login

policy routing login
policy routing login
a week ago
Model: ER8411   OC400  
Hardware Version: V1
Firmware Version:

I would like to propose the implementation of a tool that enables detailed logging and analysis of data flow in the context of Policy Routing mechanisms.

I am looking for a solution that—similar to port forwarding status monitoring—would not only aggregate data, but also allow for more advanced processing. In particular, it would be important to analyze traffic with visibility into both the source host and the destination address.Such a tool would significantly improve diagnostics, monitoring, and optimization of network traffic flow.

 

 

 

#1
Options
2 Reply
Re:policy routing login
Thursday

Hi  @Pablo_PL 

Thanks for posting here.

It is unreasonable to analyze all traffic in this way, as it would consume a large amount of resources and even affect basic network functions. It is recommended to describe the scenario in detail and specify which type of data you want to analyze and monitor.

 

Primary Scenario: Which category of network issues are you most urgently in need of diagnosing? (e.g., traffic taking the wrong path due to ineffective policy routing, high access latency for specific services, or load imbalance)

Target Traffic: Which part of the traffic do you wish to monitor first? (e.g., egress traffic from the data center to the internet, peering connection traffic between cross-region VPCs, or all ingress traffic for a group of web servers)

Key Information: For this traffic, aside from the source/destination addresses, what are the three most critical analysis metrics? (e.g., actual egress link, round-trip latency, or whether specific ACLs or policies were triggered)

Resource Constraints: How much resources are you able to allocate for log storage and performance overhead of this tool? (e.g., allowing no more than 1% additional CPU overhead, logs retained for 7 days)

Wish you a happy life and smooth network usage!  >Omada US Enterprise Beta Program Launch< >Get the Latest Omada SDN Controller Releases Here< >Experience the Latest Omada EAP Firmware<
#2
Options
Re:policy routing login
Thursday

  @Vincent-TP 

When it comes to extending functionality, it would be worth considering the ability to forward such information to syslog or a central logging system—similar to how it is already handled for gateways. A good direction would be to expand this by including: information on when a given policy was last used, a usage counter (e.g., number of sessions), and a simple indication of whether any traffic passes through the policy at all.

This would make it much easier to quickly identify unused or misconfigured rules, as well as to better understand the actual behavior of the network.

As a development direction (e.g., for Omada), it would be worth considering the creation of a component that collects logs from OC devices and acts as a lightweight network analyzer, effectively serving as a secondary OC in terms of data collection. Such a system could use the controller as a central point for gathering and analyzing data, present policy usage statistics, and support routing optimization.

At a minimum level, even simple session counting per policy along with information about the last time it was used would provide significant diagnostic value with relatively low resource overhead.

#3
Options

Information

Helpful: 0

Views: 108

Replies: 2

Voters 0

No one has voted for it yet.

About Us
Press
Copyright © TP-Link Systems Inc. All rights reserved.