The Congestion Sources sensor monitors ICMP Source Quench messages by looking for devices that are overwhelmed by incoming traffic.
If the packet receiver experiences congestion, it sends a source quench message to the packet sender, which causes the sender to initiate a TCP slow start. This has a significant negative impact on performance. CA Anomaly Detector reports the host that is the source of the overwhelming traffic and indicates which congested router reported the issue.
Troubleshooting a Congestion Sources Alert
Look at the load on the device that issues the source quench message. Legitimate traffic may be overloading the device.
If the host is under attack, correlated anomalies are likely to appear in the Enterprise-Wide Correlated Anomalies view.
|
Copyright © 2015 CA Technologies.
All rights reserved.
|
|