Documentation forHybrid Cloud Observability Essentialsand Server & Application Monitor

Microsoft DirectAccess 2008 R2

This SAM application monitor template assesses the overall health of the Microsoft DirectAceess server installed on Windows 2008 R2.

Prerequisites

RPC and WMI access to the domain controller.

PowerShell 5.1 or later is installed on target servers and WinRM is enabled.

Credentials

Windows Administrator on the domain controller.

Component monitors

Components without predetermined threshold values provide guidance such as "use the lowest threshold possible" or "use the highest threshold possible" to help you find a threshold appropriate for your application.

Teredo Relay: In - Error Packets

The total number of error packets received by the Teredo relay.

By default, this monitor has the Count statistic as difference box checked. It will show the statistic since the last polling period.

Teredo Relay: In - Success Packets

The total number of error packets received by the Teredo relay.

By default, this monitor has the Count statistic as difference box checked. It will show the statistic since the last polling period.

Teredo Relay: In - Error and Success Packets

The rate of total packets received by the Teredo relay.

Teredo Relay: Out - Error Packets

The total number of packets failed to be sent by the Teredo relay.

By default, this monitor has the ount statistic as difference box checked. It will show the statistic since the last polling period.

Teredo Relay: Out - Error and Success Packets

The rate of total packets sent by the Teredo relay.

Network Interface (6TO4 Adapter): Packets Received Errors

The number of inbound packets that contained errors preventing them from being deliverable to a higher-layer protocol.

By default, this monitor has the Count statistic as difference box checked. It will show the statistic since the last polling period.

Network Interface (6TO4 Adapter): Packets Received/sec

The rate at which packets are received on the network interface.

Network Interface (6TO4 Adapter): Packets Sent Non-Unicast/sec

The rate at which packets are requested to be transmitted to non-unicast (subnet broadcast or subnet multicast) addresses by higher-level protocols. The rate includes the packets that were discarded or not sent.

Network Interface (6TO4 Adapter): Packets Sent Unicast/sec

The rate at which packets are requested to be transmitted to subnet-unicast addresses by higher-level protocols. The rate includes the packets that were discarded or not sent.

Network Interface (6TO4 Adapter): Packets Sent/sec

The rate at which packets are sent on the network interface.

Network Interface (6TO4 Adapter): Packets/sec

The rate at which packets are sent and received on the network interface.

IPHTTPS Global: Authentication Errors

The total number of authentication errors.

By default, this monitor has the Count statistic as difference box checked. It will show the statistic since the last polling period.

IPHTTPS Global: Receive Errors on the Server

The total number of Receive errors on the server.

By default, this monitor has the Count statistic as difference box checked. It will show the statistic since the last polling period.

IPHTTPS Global: Transmit Errors on the Server

The total number of Transmit errors on the server.

By default, this monitor has the Count statistic as difference box checked. It will show the statistic since the last polling period.

IPHTTPS Global: Bytes Received

The total number of bytes received on the IPHTTPS server.

By default, this monitor has the Count statistic as difference box checked. It will show the statistic since the last polling period.

IPHTTPS Global: Packets Received

The total number of packets received on the server.

By default, this monitor has the Count statistic as difference box checked. It will show the statistic since the last polling period.

IPHTTPS Global: Bytes Sent

The total number of bytes sent on the IPHTTPS server.

By default, this monitor has the Count statistic as difference box checked. It will show the statistic since the last polling period.

IPHTTPS Global: Packets Sent

The total number of packets sent from the server.

By default, this monitor has the Count statistic as difference box checked. It will show the statistic since the last polling period.

IPHTTPS Global: Sessions

The total number of sessions on the server.

By default, this monitor has the Count statistic as difference box checked. It will show the statistic since the last polling period.

Network Interface (isatap): Packets Received Errors

The number of inbound packets that contained errors preventing them from being deliverable to a higher-layer protocol.

By default, this monitor has the Count statistic as difference box checked. It will show the statistic since the last polling period.

Before using this monitor, provide the correct instance field, which should resemble the following example:

isatap.<DOMAIN> where <DOMAIN> FQDN is the name of your domain.

Example: isatap.example.com

Network Interface (isatap): Packets Received/sec

The rate at which packets are received on the network interface.

Before using this monitor, provide the correct instance field, which should resemble the following example:

isatap.<DOMAIN> where <DOMAIN> FQDN is the name of your domain.

Example: isatap.example.com

Network Interface (isatap): Packets Sent Non-Unicast/sec

The rate at which packets are requested to be transmitted to non-unicast (subnet broadcast or subnet multicast) addresses by higher-level protocols. The rate includes the packets that were discarded or not sent.

Before using this monitor, provide the correct instance field, which should resemble the following example:

isatap.<DOMAIN> where <DOMAIN> FQDN is the name of your domain.

Example: isatap.example.com

Network Interface (isatap): Packets Sent Unicast/sec

The rate at which packets are requested to be transmitted to subnet-unicast addresses by higher-level protocols. The rate includes the packets that were discarded or not sent.

Before using this monitor, provide the correct instance field, which should resemble the following example:

isatap.<DOMAIN> where <DOMAIN> FQDN is the name of your domain.

Example: isatap.example.com

Network Interface (isatap): Packets Sent/sec

The rate at which packets are sent on the network interface.

Before using this monitor, provide the correct instance field, which should resemble the following example:

isatap.<DOMAIN> where <DOMAIN> FQDN is the name of your domain.

Example:isatap.example.com

Network Interface (isatap): Packets/sec

The rate at which packets are sent and received on the network interface.

Before using this monitor, provide the correct instance field, which should resemble the following example:

isatap.<DOMAIN> where <DOMAIN> FQDN is the name of your domain.

Example: isatap.example.com

IPsec AuthIP IPv4: Active Extended Mode SAs

The number of currently active extended mode security associations.

IPsec AuthIP IPv4: Active Main Mode SAs

The number of currently active main mode security associations.

IPsec AuthIP IPv4: Active Quick Mode SAs

The number of currently active quick mode security associations.

IPsec AuthIP IPv4: Failed Extended Mode Negotiations/sec

The rate of failed extended mode negotiations.

IPsec AuthIP IPv4: Failed Main Mode Negotiations/sec

The rate of failed main mode negotiations.

IPsec AuthIP IPv4: Failed Quick Mode Negotiations/sec

The rate of failed quick mode negotiations.

IPsec AuthIP IPv4: Pending Extended Mode Negotiations

The number of pending extended mode negotiations.

IPsec AuthIP IPv4: Pending Main Mode Negotiations

The number of pending main mode negotiations.

IPsec AuthIP IPv4: Pending Quick Mode Negotiations

The number of pending quick mode negotiations.

IPsec AuthIP IPv6: Active Extended Mode SAs

The number of currently active extended mode security associations.

IPsec AuthIP IPv6: Active Main Mode SAs

The number of currently active main mode security associations.

IPsec AuthIP IPv6: Active Quick Mode SAs

The number of currently active quick mode security associations.

IPsec AuthIP IPv6: Failed Extended Mode Negotiations/sec

The rate of failed extended mode negotiations.

IPsec AuthIP IPv6: Failed Main Mode Negotiations/sec

The rate of failed main mode negotiations.

IPsec AuthIP IPv6: Failed Quick Mode Negotiations/sec

The rate of failed quick mode negotiations.

IPsec AuthIP IPv6: Pending Extended Mode Negotiations

The number of pending extended mode negotiations.

IPsec AuthIP IPv6: Pending Main Mode Negotiations

The number of pending main mode negotiations.

IPsec AuthIP IPv6: Pending Quick Mode Negotiations

The number of pending quick mode negotiations.

IPsec DoS Protection: Current State Entries

The number of state entries in the table. A state entry is a pair of IPv6 addresses that is authorized to pass through from a public to an internal interface.

IPsec DoS Protection: Per IP Rate Limit Queues

The current number of per internal IP address rate limit queues for unauthenticated IKEv1, IKEv2, AuthIP, or ESP IPv6 packets. An unauthenticated packet is an IPsec packet without an associated state entry. A state entry is a pair of IPv6 addresses that is authorized to pass through from a public to an internal interface. Unauthenticated packets are placed in a separate queue for each destination IP address that is available on the internal interface.

IPsec DoS Protection: State Entries/sec

The rate at which state entries are created by the IPsec Denial of Service Protection component. A state entry is a pair of IPv6 addresses that is authorized to pass through from a public to an internal interface.

IPsec Driver: Bytes Received in Tunnel Mode/sec

The rate of bytes received using tunnel mode.

Service: Remote Access Connection Manager

This service manages dial-up and virtual private network (VPN) connections from this computer to the Internet or other remote networks. If this service is disabled, any services that explicitly depend on it will fail to start.

TCP Port: Direct Access

This monitor tests the ability of a DirectAccess service to accept incoming sessions. The Forefront UAG DirectAccess server is listening on TCP port 443 for traffic from IP-HTTPS-based DirectAccess clients.