health check service testing vs host logging

bseppanenbseppanen Member
edited September 2021 in aFleX

We are in the process of load balancing radius with ACOS 4.1.4-GR1-P2 with Direct Server return. The load balancing works well, and now I have some awkward consequences I need to deal with. The failover works when a health check is enabled and marks the service as offline if the service is not functional. so we need a service check sent to port 1812/1813 for radius. each health test of a packet sent to udp port 1812/1813 results in Windows NPS logging "Malformed Radius Packet Received". Service testing should pick up a failure as soon as possible so even if the testing was delayed to once every 30 seconds for 2 services, we're talking 7200 logged messages over an hour. 7200 inconsequential logged messages. What best practices, or coping strategies have others utilized in the past to offset issues such as this?

One coping mechanism I want to implement is just make one health check dependent upon the other. Does anyone have pointers or references on how health check dependencies can be configured?


TIA

Tagged:

Comments

  • bseppanenbseppanen Member

    https://a10support.force.com/customers/kA160000000CeRI?srPos=1&srKp=ka1&lang=en_US


    unfortunately the consequence of the available options still results in port 1813 being tested twice if I make that the port we test and use override-port 1813 for port 1812. Was hoping that it would be possible to re-use the results of test 1813 to update 1812, without it testing 1813 for a second time.

  • ebellamy@a10networks.comebellamy@a10networks.com Member

    Hi,


    It Eddie Bellamy from A10 UK SE team.

    please email me @ eddie@a10networks.com will be glad to help you will a solution.

    I will post the answer on here when done.

    best regards,

    Eddie

  • ebellamy@a10networks.comebellamy@a10networks.com Member

    Hi. incase you are busy, you can combine health monitors and timers for each using a Compound Monitor. see command syntax below. (this was taken from the ACOS 5.20 SLB.pdf user guide.

    Configuring Compound Health Monitors – Timeout (CLI Example)

    For a compound health check configured as follows:

    ACOS(config)# health monitor monitor1

    ACOS(config-health:monitor)# interval 3 timeout 3

    ACOS(config-health:monitor)# retry 2

    ACOS(config-health:monitor)# method tcp port 80

    ACOS(config-health:monitor)# exit

    ACOS(config)# health monitor monitor2

    ACOS(config-health:monitor)# interval 5 timeout 5

    ACOS(config-health:monitor)# retry 1

    ACOS(config-health:monitor)# method tcp port 8080

    ACOS(config-health:monitor)# exit

    ACOS(config)# health monitor compound-monitor

    ACOS(config-health:monitor)# interval 6 timeout 6

    ACOS(config-health:monitor)# retry 3

    ACOS(config-health-monitor)# method compound sub monitor1 sub monitor2 and

    GUI details below.


    image.png


Sign In or Register to comment.

© Copyright 2024 - A10 Networks Community - All Rights Reserved. | Legal