Analytics & Threshold Configuration

To open the configuration page, go to Administration > Analytics & Threshold Configuration in the Navigator pane.

This page lets you view and configure the settings that determine when and how Riverbed IQ recognizes network behavior as indicators. Indicators are the fundamental building blocks of incidents.

A policy controls how the Riverbed IQ data pipeline creates indicators, and, therefore, incidents. Upon installation, IQ has a number of built-in policies in place that are configured according to best practices for monitoring networks and which measurements merit being called to your attention in the form of an incident. What merits being called to your attention is a subjective, user/network-defined decision, so IQ provides the ability to override some policies with user-configurable settings. A single policy applies a rule to a measurement on a network entity.

The Analytics & Threshold Configuration page comprises three sections:

  1. Devices

  2. Interfaces

  3. Applications

Each section has a set of relevant metrics that you can enable/disable. In addition, you can configure thresholds.

Network Devices

  • Device Status [Status Change]

  • Device Uptime [Uptime Reset]

Network Interfaces

  • Interface Status [Status Change]

  • In Packet Drops Rate [Baselining]

  • In Packet Error Rate [Baselining]

  • In Utilization [Baselining]

  • In Utilization [Threshold]

  • Out Packet Drops Rate [Threshold]

  • Out Packet Error Rate [Threshold]

  • Out Utilization [Baselining]

  • Out Utilization [Threshold]

Application + Location (i.e., application “MS-Exchange” in location “Branch Office Denver”)

  • Activity Network Time [Dynamic Threshold]

  • % Failed Connections [Threshold]

  • MOS [Threshold]

  • Page Load Network Time [Dynamic Threshold]

  • % Total Retrans [Threshold]

  • Throughput (VoIP) [Baselining]

  • User Response Time [Baselining]

  • Unique Critical Health Events [Baselining]

  • Unique Major Health Events [Baselining]

Edit a Static Threshold Value

To edit a static threshold value, click Edit to open the Edit Static Threshold dialog box.

Specify the value at which to generate an indicator from this threshold and the number of measurements to use. You can create an indicator based on a single measurement of the metric, for some number of consecutive measurements, or for N out of M measurements. For example, specifying “2 out of 3” means that the rule must violate for 2 of the last 3 measurements for an indicator to be created. N and M default to 1. M has a maximum value of 10. N must be <= M. If M > 1, N must be > 1 also.