The use of port ranges to segment your captured traffic is considered an advanced feature and must be specified only during initial configuration of the CX Passive Capture Application. If you have any questions, contact Support.
To begin, you can auto-populate the port ranges that are directed to each instance of the PCA. All port ranges from 1024 and above are evenly split between the PCA instances. For example, if you have three PCA instances, each PCA receives traffic from an equal number of ports, which equates to the following ports:
(65,536 - 1024) / 3 = 21,504 ports/instance
http://www.iana.org/assignments/port-numbers
.- To populate the port ranges, click Populate Ports.
- Port ranges are populated across all available instances of the PCA. Save your changes.
- Restart the PCA.
After you populated the ports, you must monitor the traffic loading that is sent to each instance. For example, suppose your web server is delivering HTTP responses on port 8080. Then the PCA instance that is receiving this traffic can be running hot, while others are lightly used.
Current Hits Per Second statistics are reported on the Summary tab, with each PCA instance reported under a separate ID value.
- SSL Hits/sec rate is reported in the Reassd Hits SSL column.
- Non-SSL Hits/sec rate is reported in the Reassd Hits Non-SSL column.
Adjustments
- If you see imbalances, you must consider applying more filter rules.
- On multi-core CX Passive Capture Application servers, you can create multiple instances of the PCA and distribute the load across configurable port ranges.
- After auto-populating ports, you can configure a virtual IP address.