If you expect a backend server is going to be unavailable for a long period, such as when it is undergoing hardware repair, it is experiencing extended down time, or when you have removed it from the server farm, you can improve the performance of the FortiADC system by setting the status of the pool member to Disabled, rather than allowing the system to continue to attempt health checks. |
Predefined | Description |
LB_HLTHCK_HTTP | Sends a HEAD request to the server port 80. Expects the server to return an HTTP 200. |
LB_HLTHCK_HTTPS | Sends a HEAD request to the server port 443. Expects the server to return an HTTP 200. |
LB_HLTHCK_ICMP | Pings the server. |
LB_HLTHCK_TCP_ECHO | Sends a TCP echo to server port 7. Expects the server to respond with the corresponding TCP echo. |
type | Specify the health check type. After you have specified the type, the CLI commands are constrained to the ones that are applicable to the specified type, not all of the settings described in this table. |
interval | Seconds between each health check. Should be more than the timeout to prevent overlapping health checks. The default is 10. |
retry | Attempts to retry the health check to confirm availability. The default is 1. |
timeout | Seconds to wait for a reply before assuming that the health check has failed. The default is 5. |
up-retry | Attempts to retry the health check to confirm availability. The default is 1. |
addr-type | • IPv4 • IPv6 |
domain-name | The FQDN, such as www.example.com, to use in the SMTP or DNS A/AAAA record health check. |
host-addr | IP address that matches the FQDN, indicating a successful DNS health check. |
port | Listening port number of the backend server. Usually HTTP is 80, FTP is 21, DNS is 53, POP3 is 110, IMAP4 is 143, RADIUS is 1812, and SNMP is 161 or 162. |
file | Specify a file that exists on the backend server. Path is relative to the initial login path. If the file does not exist or is not accessible, the health check fails. |
passive | Enable this option if the backend server uses passive FTP. |
username | User name of an account on the backend server. |
password | The corresponding password. |
match-type | What determines a failed health check? • Match String • Match Status • Match All (match both string and status) |
method-type | HTTP method for the test traffic: • HTTP Get • HTTP Head |
send-string | A URL, such as /contact.php. |
receive-string | A string expected in return when the request is successful. |
status-code | HTTP status code that the server replies with when the request is successful. Except 200 (OK), most statuses indicate errors. |
nas-ip | IP address for RADIUS server. |
password-type | • User—If the backend server does not use CHAP, select this option. • CHAP—If the backend server uses CHAP and does not require a secret key, select this option. |
secret-key | The secret set on the backend server. |
agent-type | • UCD • Windows 2000 |
community | The SNMP community string set on the backend server. If this does not match, and the appliance is not configured as an SNMP manager for the backend server, all health checks fail. |
cpu | Maximum normal CPU usage. If overburdened, the health check fails. |
disk | Maximum normal disk usage. If the disk is too full, the health check fails. |
mem | Maximum normal RAM usage. If overburdened, the health check fails. |
version | SNMP v1 or v2c. |