Category Archives: FortiWAN

Connection Limit

Leave a reply

Connection Limit

It enables administrators to inspect the number of established connections in real-time and to justify the maximum number of connections allowed on [Service] -> [Connection Limit] page, to avoid network congestion.

Automatic Refresh : Select auto-refresh interval, or disable the function.
No. : Numbering of IP addresses based on the number of connections established.
IP : Shows the source IP of the connection.
Connections : Shows the number of connections that are established by the source IP address and still active in system. An connection in system might be a connection with traffic flow existing or a idle connection. This number varies from connections closing to newly opened connections.
Clear : System maintains necessary tables and information for connections. Clicking the button to abort the connections established by the source IP address, and release the occupied memory then. When system is under attacks with high volumes of malicious connections, FortiWAN’s Connection Limit (See “Connection Limit”) stops subsequent connections established by the malicious IP addresses, but it takes time to recover system from the bandwidth and memory occupied by those malicious connections that are already in system. The Clear button terminates them immediately.

FortiWAN RIP & OSPF Status

Leave a reply

RIP & OSPF Status

It shows RIP status based on RIP and OSPF settings in [System] -> [Network Settings] -> [LAN Private Subnet].

Data on this page are used to inspect private subnet’s Network IP, Netmask, and gateway list.

Type : Select from the list to view RIP or OSPF routing.
Automatic Refresh : Select auto-refresh interval, or disable the function.
Network IP : Shows the Network IP of the private subnet.
Netmask : Shows the Netmask of the private subnet.
Gateway : Shows the Gateway of the private subnet.

 

FortiWAN DHCP Lease Information

Leave a reply

DHCP Lease Information

It shows data DHCP lease assigns, i.e. lease IP and MAC address, client-hostname, and expiration time. Once option of DHCP server is selected, a list regarding all existing DHCP servers in the network will display. Option Automatic Refresh sets the time interval to regularly update DHCP servers.

DHCP Server : Displays the DHCP server and IP range to be assigned.
Automatic Refresh : The time interval after which the table of DHCP leases information is updated.
Lease IP : WAN connected by either PPPoE or DHCP.
IP Address : Shows the IPv4 address assigned to the client’s machine.
MAC Address : Shows the MAC address of the client’s machine.
Client-Hostname : Shows the name of the client machine.
Expiration Time : Shows the time period when the IP address is valid.
DHCPv6 Server : Displays DHCPv6 server and range of IPv6 addresses which can be assigned.
Lease IP : Shows the IPv6 address assigned to client’s machine.
Client ID : Shows the ID assigned to the lease IPv6 address.
Expire Time : Shows the time period during which the IPv6 address is valid.

FortiWAN Dynamic IP WAN Link

Leave a reply

Dynamic IP WAN Link

It shows dynamic IP WAN link details like its IP address obtained via PPPoE or DHCP. It also enables to create new IP addresses by re-establishing connections to the WAN.

Re-Connect All : Reconnect all WAN links via PPPoE or DHCP.
Automatic Refresh : Time interval to refresh table results.
WAN : WAN connected by either PPPoE or DHCP.
IP Address : IP allocated to current WAN link.
Gateway : Gateway’s IP address for current WAN link.
Netmask : Sub network mask.
DNS : Dynamic DNS Server IP.
Connected Time : Duration of WAN connectivity.
Reconnect : Reconnect a WAN link via PPPoE or DHCP.

 

WAN Link Health Detection

Leave a reply

WAN Link Health Detection

It shows WAN link health detection results regarding the reliability of a specific WAN connection. The data are derived based on ping results from destination IP list configurations in System > WAN Link Health Detection (See “WAN Link Health Detection”). It enables to observe the number of sent requests, number of received responses, and the success ratio for a given destination. These statistics assist administrators in further analyzing network status and user behavior.

WAN Link : The WAN link to be monitored.
Automatic Refresh : Time interval for refreshing tables.
Destination IP : The destination IP address to which ping requests will be sent.
Number of Requests : The number of requests sent to the Destination IP so far. A request indicates a ping packet if Detection Protocol is ICMP, or a TCP connection request if Detection Protocol is TCP.
Number of Replies : The number of responses received so far from the Destination IP. A reply indicates a ICMP echo reply or a time_exceed if Detection Protocol is ICMP, or a system acknowledge indicating TCP connection is established if Detection Protocol is TCP.

Both indicate the success of a single WAN link detection.
Success Ratio (%) : The percentage of responses divided by requests. The higher the percentage, the greater the reliability.

Statistics

Leave a reply

Statistics

This topic deals with FortiWAN network surveillance system. Comprehensive statistics are collected to monitor networking status, bandwidth usage of traffic class, and dynamic IP WAN link. These data offer deep insight into the network, and help detect unexpected network failures, boosting network reliability and efficiency.

Traffic

It sorts and displays real-time traffic of traffic class over WAN link. Select traffic direction (inbound/outbound) in Traffic Type to view statistics.

The table below shows 3 sorts of statistics:

  • Maximum/Minimum bandwidth allocation and priority
  • Traffic for the last 3 seconds
  • Traffic for the last minute

The statistics are analyzed based on individual WAN connection and traffic direction. To view statistics, select from Traffic Type (Inbound/Outbound), traffic direction and WAN Link number.

Traffic Type : Traffic flow direction: inbound and outbound.
WAN Link : The number of WAN links for inspection.
Automatic Refresh : Time interval to refresh statistical table.
Traffic Class : The name of the traffic class defined on Inbound/Outbound Bandwidth Management page. Among these, unclassified classes are labeled as “Default Class”.
Min. ~ Max.(Priority) : The maximum/minimum traffic volume allowed for a specific traffic class of different priority levels.
3-Second Statistics : Displays packet numbers or traffic flow volume in Kilobyte/sec for the last 3 seconds.
1-Minute Statistics : Displays packet numbers or traffic flow volume in Kilobyte/sec for the past 60 seconds.
Top 10 : Displays the data flow for the last five seconds with corresponding IP address. Statistics can be ranked by By Source and By Destination.

Bandwidth

Unlike traffic statistics in previous section that focuses on real-time monitor of network status, statistics in BM

(Bandwidth Management) is intended for long-term analysis. For particular traffic class in a given traffic direction, Persistent Routing administrators can view bandwidth usage in bar graph during the past 60 minutes, 30 hours, 50 days, and 20 months.

Traffic Type : Traffic flow direction: inbound or outbound traffic.
Traffic Class : The name of the traffic class defined on the Inbound/Outbound Bandwidth Management page or the sum of all traffic classes.
WAN Link : The number of WAN links users to inspect.
Refresh : Click to refresh statistical charts.

Persistent Routing

It shows details with respect to persistent routing status. With persistent routing, administrators can view connections and manually reset these connections as well.

Clear All: Clear all the connections via persistent routing.

Automatic Refresh: Time interval to refresh persistent routing data.

IPv4/IPv6 IP Pair

                     IP Pair Entry    : Shows connection entries that match IP Pair Rules.
                          Source IP    : Source IP of the current persistent routing connection.
                 Destination IP    : Destination IP of the current persistent routing connection.
                                  Count    : Number of connections that the current persistent routing rule applies to.
                             Timeout    : Length of time to lapse before the current connection times out.
                                    WAN    :

IPv4/IPv6 Web Service

 The WAN link through which the current persistent routing connection travels.
         Web Service Entry    : Shows connection entries that match Web Service Rules.
                          Source IP    : Source IP of the current persistent routing connection.
                                  Count    : Number of connections that the current persistent routing rule applies to.
                             Timeout    : Length of time to lapse before the current connection times out.
                                    WAN    : The WAN link through which the current persistent routing connection travels.

Note that IP Pair and Web Service show at most 50 entries respectively.

 

FortiWAN IP MAC Mapping

Leave a reply

IP MAC Mapping

Users can specify the IP-MAC table by classifying periods like peak hours and idle hours. Once the IP-MAC table is set up, a packet from a certain IP address can pass through FortiWAN only when its MAC address matches the table list and time period.

FortiWAN provides log mechanism to the IP MAC Mapping service, see “Log”.

E : Enable/Disable
When : Select the time period: busy hour, idle hour and all time. All time is defined in 24-hour

system. For details, refer to [System] -> [Busyhour Settings] (See “Busyhour Settings”).
IP Address : Enter the IP address of the network interface card.
MAC Address : Enter the MAC address of the network interface card.
L : Check it to activate the rule and record results in log file. Otherwise, the rule is inactive and data will not be stored.

 

 

FortiWAN SNMP

Leave a reply

SNMP

SNMP (Simple Network Management Protocol) is often used in managing TCP/IP networks by providing system information and sending event notifications to a SNMP manager. A SNMP manager is typically a host running the SNMP manager application. The SNMP manager communicates with the SNMP agent running on a FortiWAN unit; sends out SNMP requests and receives incoming event notification (SNMP trap) from the SNMP agent. The agent responds FortiWAN’s system information for SNMP requests and sends SNMP traps to the SNMP manager.

To monitor your FortiWAN system via SNMP, you must:

  • Compile the FortiWAN MIB file to your SNMP manager.
  • Make sure at least one network interface is well-configured to send out SNMP traps and receive SNMP requests. The SNMP manager can communicate with a FortiWAN unit via the IP addresses configured on the localhost of a WAN port, DMZ port or LAN port (See “Network Settings”).
  • Make sure SNMP is acceptable to FortiWAN’s firewall (See “Firewall”). l Configure SNMP settings and Event Notification to FortiWAN unit.

SNMP agent configuration

To configure SNMP settings, go to Service > SNMP. Check the box Enable SNMP to enable SNMP agent on FortiWAN and select the SNMP version. FortiWAN supports SNMP v1, v2 and v3 protocols.

SNMP v1/2

SNMP

System Contact Enter a string to represent a person in charge of this system.
System Location Enter a string to represent the location of this system.

SNMP v3

Community Enter the community which the SNMP belongs to.
System Name Enter a string to represent this system.
System Contact Enter a string to represent a person in charge of this system.
System Location Enter a string to represent the location of this system.
Username Enter user name used for authentication.
Password Enter the password used for authentication.
Privacy Key Enter the privacy key code. Eg: 12345678,ABCDEFGHUI.etc.
AuthProtocol Select the authentication protocol used for transferring the authenticated password, either MD5 or SHA.
PrivProtocol Select the authentication protocol used for transferring the authenticated privacy key.
Authentication Select the authentication method for user and privacy key, either authentication with or without privacy.

SNMP trap for even notification

FortiWAN (SNMP agent) sends traps to a SNMP manager for notification when significant events occur. Enable the function by configuring the settings of Log Notification to FortiWAN (See “Notification”).

FortiWAN MIB

The FortiWAN MIB defines the structure of the management data maintained on FortiWAN. It contains the fields, information and traps that are specific to a FortiWAN units. The FortiWAN MIB file is available on the Fortinet Customer Service & Support website, https://support.fortinet.com/.

IP MAC Mapping