The
WarningThe macro unmigrated-inline-wiki-markup from Confluence is no longer available.
pulls data from
WarningThe macro unmigrated-inline-wiki-markup from Confluence is no longer available.
components.
You can manage the connections between Analyzer and Collectors on the Administration > Data flow settings > Analyzer & Collectors management page of the
WarningThe macro unmigrated-inline-wiki-markup from Confluence is no longer available.
by using the following options:
- Monitor the flow of traffic data into the Analyzer on the Status tab:
The Status tab
- Configure the Maximum Wait Time on the Analyzer settings tab.
A configurable delay period called Maximum Wait Time defines out of sync. For example, if you set the Maximum Wait Time to 15 minutes, a Collector feed that is more than 15 minutes behind other Collectors is considered out of sync. Additionally, WarningThe macro unmigrated-inline-wiki-markup from Confluence is no longer available.
stops pulling data from all WarningThe macro unmigrated-inline-wiki-markup from Confluence is no longer available.
s for a maximum of 15 minutes before dropping the delinquent feed and starting to pull data again through other feeds.
The Maximum Wait Time is also used to determine how much historical data is pulled from WarningThe macro unmigrated-inline-wiki-markup from Confluence is no longer available.
s after a period of WarningThe macro unmigrated-inline-wiki-markup from Confluence is no longer available.
unavailability has ended. WarningThe macro unmigrated-inline-wiki-markup from Confluence is no longer available.
components can retain up to 2 hours of historical data.
- Manage the list of associated Collector feeds on the Collector feeds settings tab.
Collector feeds settings tab
ErrorWarning
If the connection between the
WarningThe macro unmigrated-inline-wiki-markup from Confluence is no longer available.
and one of its
WarningThe macro unmigrated-inline-wiki-markup from Confluence is no longer available.
s is temporarily broken, or if one of the Collector feeds seems to be out of sync with other Collector feeds, the
WarningThe macro unmigrated-inline-wiki-markup from Confluence is no longer available.
stops pulling data from all Collectors until the connection is restored, the synchronization issue is resolved, or a configurable delay period has expired.
WarningNote
The system automatically disconnects the Collector feeds that have been inactive for seven days. To remove an inactive component from the components list, use the Disconnect command on the Status page for a specified data-receiving component.
To add a Collector feed on the Analyzer
WarningThe macro unmigrated-inline-wiki-markup from Confluence is no longer available.
- On the
WarningThe macro unmigrated-inline-wiki-markup from Confluence is no longer available.
, open the Administration > Data flow settings > Analyzer & Collectors management page. - Switch to the Collectors feeds settings tab.
- On the Action menu, click Add.
- In the Name and Description text boxes, type a meaningful name and description to identify the
WarningThe macro unmigrated-inline-wiki-markup from Confluence is no longer available.
that you want to feed data from.
The name and description identify the component throughout the system. - In the IP/DNS name box, type the name or IP address (IPv4 only) of the
WarningThe macro unmigrated-inline-wiki-markup from Confluence is no longer available.
. - In the Port box, type the port number used to access the component.
- Fill in the Username on Collector and Password on Collector boxes with valid credentials to access the component.
- To accept the Collector's default certificate, select the Allow self-signed certificate check box.
- To permit this
WarningThe macro unmigrated-inline-wiki-markup from Confluence is no longer available.
to handle alerts generated by this WarningThe macro unmigrated-inline-wiki-markup from Confluence is no longer available.
, select the Accept Alerts from Collector check box. - To set the priority of this
WarningThe macro unmigrated-inline-wiki-markup from Confluence is no longer available.
, in the Priority section, click High or Low. The WarningThe macro unmigrated-inline-wiki-markup from Confluence is no longer available.
does not reject data (via sampling) from high-priority feeds. - Do one of the following:
- To feed all traffic that this component collects to the
WarningThe macro unmigrated-inline-wiki-markup from Confluence is no longer available.
, select Capture all traffic from the Collector. - To feed only a specific subset of traffic that this component collects to the
WarningThe macro unmigrated-inline-wiki-markup from Confluence is no longer available.
, add a filter expression to identify the traffic that you want to capture.
To compose an expression using the Expression Builder, click Build a filter expression.
- Click Save.
Result
The new
WarningThe macro unmigrated-inline-wiki-markup from Confluence is no longer available.
feed appears in the list of Collector feeds. An icon in the
Connection column shows the status of the connection to the
WarningThe macro unmigrated-inline-wiki-markup from Confluence is no longer available.
:
– Connected
– Not connected, trying to reconnect
– Unknown status (for feeds that are turned off)
To turn the feed on immediately, click ON in the row for the Real User Collector.
WarningNote
You can either add different
WarningThe macro unmigrated-inline-wiki-markup from Confluence is no longer available.
feeds or set up multiple feeds from a single Collector by using filters to differentiate the data that is pulled through each.
ErrorWarning
If you change the settings for an existing
WarningThe macro unmigrated-inline-wiki-markup from Confluence is no longer available.
feed, the system purges all data from the associated
WarningThe macro unmigrated-inline-wiki-markup from Confluence is no longer available.
.
