Monitoring Layer 7 traffic with CEM.

book

Article ID: 40236

calendar_today

Updated On:

Products

APPLICATION DELIVERY ANALYSIS SUPERAGENT APP PERF MANAGEMENT CA Application Performance Management Agent (APM / Wily / Introscope) CUSTOMER EXPERIENCE MANAGER INTROSCOPE

Issue/Introduction

 Introduction:

  This supplements existing documentation on monitoring Layer 7 transactions using APM CE.

 

 Question:

 Even after successfully importing the SSL private key into TIM, we are still unable  to monitor Layer 7 traffic with APM CE (CEM).

 APM CE is still showing 100% decode failures and we are unable to record transactions. What is causing this ?

 

 Environment:

 

 APM CE (CEM)/TIM 10.x (The issue happened with 10.1.0.20.)

 

 Layer 7 version 7.x

 

 

 Answer:

 Check the SSL Session Timeout on Layer 7 and if set to the default of 24 hours, then reduce it to 20 minutes.

 The default SSL Session Timeout of 24 hours on layer 7 prevents TIM from successfully monitoring APM CE traffic and impacts transaction recording. This is true even with the correct private key installed. Reducing the default SSL session timeout down to 20 minutes from the default of 24 hours on Layer 7, allows to record the  transactions fine.

Environment

Release: SAMCNS99000-10.2-NetQoS-SuperAgent-Management Console
Component: