Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[CF1] device monitoring #19521

Merged
merged 3 commits into from
Feb 21, 2025
Merged

[CF1] device monitoring #19521

Show file tree
Hide file tree
Changes from 2 commits
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
f0d2b9f
[CF1] device monitoring
deadlypants1973 Jan 29, 2025
a28df58
Update src/content/docs/cloudflare-one/insights/dex/remote-captures.mdx
deadlypants1973 Jan 29, 2025
b6e1bc6
Update src/content/docs/cloudflare-one/insights/dex/monitoring.mdx
deadlypants1973 Feb 21, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
1 change: 1 addition & 0 deletions public/_redirects
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -1845,6 +1845,7 @@
/cloudflare-one/policies/browser-isolation/agentless/* /cloudflare-one/policies/browser-isolation/setup/:splat 301
/cloudflare-one/policies/filtering/http-policies/data-loss-prevention/* /cloudflare-one/policies/data-loss-prevention/ 301
/cloudflare-one/policies/data-loss-prevention/configuration-guides/* /cloudflare-one/policies/data-loss-prevention/dlp-policies/common-policies/ 301
/cloudflare-one/insights/dex/fleet-status/ /cloudflare-one/insights/dex/monitoring/ 301

# Learning paths
/learning-paths/modules/cybersafe/cybersafe-account-creation/* /learning-paths/cybersafe/account-creation/:splat 301
Expand Down
41 changes: 0 additions & 41 deletions src/content/docs/cloudflare-one/insights/dex/fleet-status.mdx
View file
Open in desktop

This file was deleted.

4 changes: 2 additions & 2 deletions src/content/docs/cloudflare-one/insights/dex/ip-visibility.mdx
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -48,11 +48,11 @@ DEX's IP visibility allows you to review an event log of a device's IP history f
4. View the device's IP history and status from the last seven days.
5. Select a time to view more information about the device at that time.

Refer to [Available metrics](/cloudflare-one/insights/dex/fleet-status/#available-metrics) to review **Status** and **Mode** descriptions.
Refer to [Available metrics](/cloudflare-one/insights/dex/monitoring/#available-metrics) to review **Status** and **Mode** descriptions.

## Troubleshoot with IP visbility

While IP visibility allows you to inspect a device's IP information, use [DEX's live analytics](/cloudflare-one/insights/dex/fleet-status/#available-metrics) to review which Cloudflare data center the device is connected to. When traffic leaves a WARP-connected end-user device, it will hit a [Cloudflare data center](/support/troubleshooting/general-troubleshooting/gathering-information-for-troubleshooting-sites/#identify-the-cloudflare-data-center-serving-your-request).
While IP visibility allows you to inspect a device's IP information, use [DEX's live analytics](/cloudflare-one/insights/dex/monitoring/#available-metrics) to review which Cloudflare data center the device is connected to. When traffic leaves a WARP-connected end-user device, it will hit a [Cloudflare data center](/support/troubleshooting/general-troubleshooting/gathering-information-for-troubleshooting-sites/#identify-the-cloudflare-data-center-serving-your-request).

To find which Cloudflare data center a device is connected to:

Expand Down
80 changes: 80 additions & 0 deletions src/content/docs/cloudflare-one/insights/dex/monitoring.mdx
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,80 @@
---
pcx_content_type: reference
title: Monitoring
sidebar:
order: 1
---

Monitor performance and network status for your organization's [fleet](/cloudflare-one/insights/dex/monitoring/#fleet-status) or individual [user devices](/cloudflare-one/insights/dex/monitoring/#device-monitoring).

Network and device performance data helps IT administrators troubleshoot performance issues, investigate network connectivity problems, and monitor device health.

## Fleet status

A fleet is a collection of user devices. All devices in a fleet have WARP installed and are connected to a [Cloudflare Zero Trust organization](/cloudflare-one/setup/#create-a-zero-trust-organization).

To view fleet status:

1. In [Zero Trust](https://one.dash.cloudflare.com/), go to **DEX** > **Monitoring**.
2. In **DEX Monitoring**, review the information under the **Fleet Status** tab.

### View metrics

The **Fleet Status** tab will show real-time and historical connectivity metrics for all devices in your organization.

To view analytics on a per-device level, go to [Device monitoring](/cloudflare-one/insights/dex/monitoring/#device-monitoring).

### Available metrics

- **Devices connected by colo**: Number of devices that are connected to a given [Cloudflare data center](https://www.cloudflarestatus.com/).

- **Connectivity status**: Percentage of devices in a given WARP client state.

| Status | Description |
| ------------ | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
| Connected | WARP has successfully established a connection to the Cloudflare global network. |
| Disconnected | WARP has been intentionally or unintentionally disconnected from the Cloudflare global network. |
| Paused | A user or administrator has taken an explicit action to temporarily turn off WARP, for example by entering an [Admin Override](/cloudflare-one/connections/connect-devices/warp/configure-warp/warp-settings/#admin-override) code. Paused clients will [auto-connect](/cloudflare-one/connections/connect-devices/warp/configure-warp/warp-settings/#auto-connect) after a timeout period. |
| Connecting | WARP is pending connection, but is actively trying to establish a connection to the Cloudflare global network. |

- **Mode**: [WARP mode](/cloudflare-one/connections/connect-devices/warp/configure-warp/warp-modes/) deployed on the device.

- **Colo**: Percentage of devices connected to a given Cloudflare data center.

- **Platform**: Operating system of the device.

- **Major Version**: WARP client version installed on the device.

- **Device Status Over Time**: WARP client connection status over the selected time period.

- **Connection Methods Over Time**: WARP mode used by the device over the selected time period.

## Device monitoring

Review network and device performance for a device enrolled in your fleet.

### View a device's performance

To view a device's network and device performance metrics:

1. In [Zero Trust](https://one.dash.cloudflare.com/), go to **My team** > **Devices**.
2. Select a device > **View details**.
3. Select the **DEX** tab > in **Device Monitoring**, scroll down to **Network performance** and **Device Performance**.
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Nit: Maybe split this into a 4th step since it's a little long.


### Network and device performance metrics

#### Network performance metrics

- **Unique networks over time**: How many unique SSIDs the device was connected to.

- **Network I/O**: How much data has been transferred (uploads and downloads) over the primary network interface.

#### Device performance metrics

- **Battery percentage and cycles**: Displays battery percentage and [battery cycles](https://support.apple.com/en-us/102888) over time. Used to debug potential performance issues possibly related to battery health or power-saving measures that are triggered at low-battery levels.

- **CPU usage**: CPU utilization over time. Used to debug slow system performance due to high CPU usage.

- **Memory utilization**: Memory utilization over time. Used to debug performance issues related to an overtaxed memory.

- **Disk I/O**: Displays number of disk read/write operations over time. Used to debug performance errors due to heavy disk operations.
39 changes: 20 additions & 19 deletions src/content/docs/cloudflare-one/insights/dex/remote-captures.mdx
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,7 +5,7 @@ sidebar:
order: 4
---

import { Details } from "~/components"
import { Details } from "~/components";

<Details header="Feature availability">

Expand All @@ -15,12 +15,12 @@ import { Details } from "~/components"

| System | Availability | Minimum WARP version |
| -------- | ------------ | -------------------- |
| Windows | ✅ | 2024.12.492.0 |
| macOS | ✅ | 2024.12.492.0 |
| Linux | ✅ | 2024.12.492.0 |
| iOS | ❌ | |
| Android | ❌ | |
| ChromeOS | ❌ | |
| Windows | ✅ | 2024.12.492.0 |
| macOS | ✅ | 2024.12.492.0 |
| Linux | ✅ | 2024.12.492.0 |
| iOS | ❌ | |
| Android | ❌ | |
| ChromeOS | ❌ | |

</Details>

Expand All @@ -33,22 +33,22 @@ To capture data from a remote device:
1. In [Zero Trust](https://one.dash.cloudflare.com/), go to **DEX** > **Remote captures**.
2. Select up to 10 devices that you want to run a capture on. Devices must be [registered](/cloudflare-one/connections/connect-devices/warp/deployment/) in your Zero Trust organization.
3. Configure the types of captures to run.
- **PCAP**: Performs packet captures for traffic outside of the WARP tunnel (default network interface) and traffic inside of the WARP tunnel ([WARP virtual interface](/cloudflare-one/connections/connect-devices/warp/configure-warp/route-traffic/warp-architecture/#ip-traffic)).
- **WARP Diagnostics Logs**: Generates a [WARP diagnostic log](/cloudflare-one/connections/connect-devices/warp/troubleshooting/warp-logs/#warp-diag-logs) of the past 96 hours. To include a routing test for all IPs and domains in your [Split Tunnel configuration](/cloudflare-one/connections/connect-devices/warp/configure-warp/route-traffic/split-tunnels/), select **Test all routes**.
:::note
**Test all routes** will extend the time for diagnostics to run and may temporarily impact device performance during the test.
:::
- **PCAP**: Performs packet captures for traffic outside of the WARP tunnel (default network interface) and traffic inside of the WARP tunnel ([WARP virtual interface](/cloudflare-one/connections/connect-devices/warp/configure-warp/route-traffic/warp-architecture/#ip-traffic)).
- **WARP Diagnostics Logs**: Generates a [WARP diagnostic log](/cloudflare-one/connections/connect-devices/warp/troubleshooting/warp-logs/#warp-diag-logs) of the past 96 hours. To include a routing test for all IPs and domains in your [Split Tunnel configuration](/cloudflare-one/connections/connect-devices/warp/configure-warp/route-traffic/split-tunnels/), select **Test all routes**.
:::note
**Test all routes** will extend the time for diagnostics to run and may temporarily impact device performance during the test.
:::
4. Select **Start a capture**.

DEX will now send capture requests to the configured devices. If the WARP client is disconnected, the capture will time out after 10 minutes.

## Check remote capture status

To view a list of captures, go to **DEX** > **Remote captures**. The **Status** column displays one of the following options:
- **Success**: The capture is complete and ready for download. Any partially successful captures will still upload to Cloudflare. For example, there could be a scenario where the PCAP succeeds on the primary network interface but fails on the WARP tunnel interface. You can [review PCAP results](/cloudflare-one/insights/dex/remote-captures/#download-remote-captures) to determine which PCAPs succeeded or failed.
- **Running**: The capture is in progress on the device.
- **Pending Upload**: The capture is complete but not yet ready for download.
- **Failed**: The capture has either timed out or encountered an error. To retry the capture, check the WARP client version and [connectivity status](/cloudflare-one/insights/dex/fleet-status/), then start a [new capture](/cloudflare-one/insights/dex/remote-captures/#start-a-remote-capture).
- **Success**: The capture is complete and ready for download. Any partially successful captures will still upload to Cloudflare. For example, there could be a scenario where the PCAP succeeds on the primary network interface but fails on the WARP tunnel interface. You can [review PCAP results](/cloudflare-one/insights/dex/remote-captures/#download-remote-captures) to determine which PCAPs succeeded or failed.
- **Running**: The capture is in progress on the device.
- **Pending Upload**: The capture is complete but not yet ready for download.
- **Failed**: The capture has either timed out or encountered an error. To retry the capture, check the WARP client version and [connectivity status](/cloudflare-one/insights/dex/monitoring/#fleet-status), then start a [new capture](/cloudflare-one/insights/dex/remote-captures/#start-a-remote-capture).

## Download remote captures

Expand All @@ -61,6 +61,7 @@ This will download a ZIP file to your local machine called `<capture-id>.zip`. D
### Device PCAP contents

The downloaded PCAP folder contains three files:

- `capture-default.pcap`: Packet captures for the primary network interface.
- `capture-tunnel.pcap`: Packet captures for traffic inside of the WARP tunnel.
- `results.json`: Reports successful and failed packet captures.
Expand All @@ -74,8 +75,8 @@ Refer to [WARP diagnostic logs](/cloudflare-one/connections/connect-devices/warp
## Limitations

- Packet captures are subject to the following limits:
- **Maximum time limit**: 600 seconds
- **Maximum file size**: 50 MB
- **Maximum packet size**: 1500 bytes
- **Maximum time limit**: 600 seconds
- **Maximum file size**: 50 MB
- **Maximum packet size**: 1500 bytes
- WARP diagnostic logs have no file size limit, but files larger than 100 MB cannot be uploaded to Cloudflare and must be shared directly with the admin.
- Windows devices do not support concurrent remote captures. If you start a remote capture while another is in progress, the second capture will fail immediately.
5 changes: 2 additions & 3 deletions src/content/docs/cloudflare-one/insights/dex/tests/index.mdx
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -3,11 +3,10 @@ pcx_content_type: navigation
title: Tests
sidebar:
order: 2

---

import { DirectoryListing } from "~/components"
import { DirectoryListing } from "~/components";

With Digital Experience Monitoring (DEX), you can test if your devices can connect to a private or public endpoint through the WARP client. This tool allows you to monitor availability for a given application and investigate performance issues reported by your end users. DEX tests will only run when the WARP client is turned on, whereas [fleet status](/cloudflare-one/insights/dex/fleet-status/) metrics are always available.
With Digital Experience Monitoring (DEX), you can test if your devices can connect to a private or public endpoint through the WARP client. This tool allows you to monitor availability for a given application and investigate performance issues reported by your end users. DEX tests will only run when the WARP client is turned on, whereas [fleet status](/cloudflare-one/insights/dex/monitoring/#fleet-status) metrics are always available.

<DirectoryListing />