Products
Solutions
Partners
Support
Company
Try Now
Pulse Secure Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Health monitoring of Secure Access

devs_
Occasional Contributor
‎10-21-2014 03:29:AM
‎10-21-2014 03:29:AM

Health monitoring of Secure Access

Hello all

 

Has anyone had much luck with setting up health monitors from their load balancer of choice to the SA devices? I have followed this guide:

 

http://www.juniper.net/techpubs/en_US/sa8.0/topics/reference/general/secure-access-clustering-active...

 

But when I apply:

 

Send stringhttps://Secure Access Service Controller-Hostname/dana-na/healthcheck/healthcheck.cgi?status=all

Receive string: HTTP/1.1 200 OK

 

Or:

 

Send string: https://Secure Access Service Controller-Hostname/dana-na/healthcheck/healthcheck.cgi?status=all

Receive string: Security gateway is accessible

 

...the virtual server that is the MAG IP endpoint always goes offline. I'm using the F5 GTM product to do this monitoring by the way.

 

In an ideal world what would be great is to have a monitor that initially probes the SA, the SA returns back the current number of SSL connections. The load balancer then removes that node from the pool if the number of SSL connections is above a certain limit.

 

Any ideas?

Thank you

0 Kudos
2 REPLIES 2
Ho Ru
Occasional Contributor
‎05-25-2022 05:26:AM
‎05-25-2022 05:26:AM

Re: Health monitoring of Secure Access

Hello,

query .../dana-na/healthcheck/healthcheck.cgi?status=all only shows HTTP/1.1 200 OK or Security gateway is accessible.

If you wanna see more, you have to configure System > Configuration > Security > Health Check Options too.
Select the Enable additional information via healthcheck.cgi checkbox and Save Changes.

Add the relevant IPv4/v6 addresses for which additional information is required to be made available, and click Add.

https://docs.pulsesecure.net/WebHelp/PCS/9.0R1/Content/PCS/PCS_AdminGuide_9.0/Configuring_Health_Che...

 

Then your Answer looks like following:

Health check details:

CPU-UTILIZATION=aaa;
SWAP-UTILIZATION=bbb;
DISK-UTILIZATION=ccc;
SSL-CONNECTION-COUNT=eee;
PLATFORM-LIMIT=fffff;
MAXIMUM-LICENSED-USER-COUNT=ggggg;
USER-COUNT=hhhh;
MAX-LICENSED-USERS-REACHED=NO;
CLUSTER-NAME=xyz;
VPN-TUNNEL-COUNT=iiii;

zanyterp
Moderator
Moderator
‎05-25-2022 05:55:AM
‎05-25-2022 05:55:AM

Re: Health monitoring of Secure Access

in addition to what was mentioned by @Ho Ru, if you are seeing the system go down after a query, please open a case with our support team. what version of software are you using? Do you have a more recent version of the appliance than the MAG to test with? (IIRC that is a limitation of that software & appliance)
0 Kudos
© 2017 Pulse Secure, LLC. Use of this website assumes acceptance of our Legal Notices and Privacy Policy. Pulse Secure has updated its Privacy Policy effective June 28, 2017.