Lync Policy Decision Test

Real-time communications are sensitive to the latency and packet loss that can occur on congested networks. Call admission control (CAC) determines, based on available network bandwidth, whether to allow real-time communications sessions such as voice or video calls to be established. The Call Admission Control (CAC) uses the Policy Decision Point (PDP) to distribute policies defining some of the CAC rules. CAC controls real-time traffic for voice and video only. It does not control data traffic.

Administrators define CAC policies, which are enforced by the Bandwidth Policy Service that is installed with every Front End pool. CAC settings are automatically propagated to all Skype for Business Server Front End Servers in your network.

This test helps you figure out how many client authentications failed and how many client connections were authenticated. Using this test, administrators can easily figure out the number of active audio and video call requests for which bandwidth is checked. This way, administrators can figure out the client connection that is consuming too much of bandwidth.

Target of the test : A Microsoft Skype for Business server

Agent deploying the test : An internal/remote agent

Outputs of the test : One set of results for the target Microsoft Skype for Business server that is to be monitored.

Configurable parameters for the test
Parameters Description

Test Period

How often should the test be executed.

Host

The host for which the test is to be configured.

Port

The port at which the specified host listens. The default port is 5060.

Measurements made by the test
Measurement Description Measurement Unit Interpretation

Rate of client authentications failures due to timeout

Indicates the rate at which client authentication failed due to timeout.

Failures/Sec

A low value is desired for this measure. If there are too many authentication failures, then check for certification issues. The value of this measure may be high due to an attack by the client on the machine through the creation of connections and consumption of resources from the Bandwidth Policy Service. If the rise in the value is due to an attack, then trace the machine and block the machine through firewall policies.

Rate of first packet timeouts

Indicates the rate at which the sessions timed out before the arrival of the first packet.

Timeouts/Sec

 

Rate of server authentication timeouts

Indicates the rate at which the server connections timed out before an authentication message was received.

Failures/Sec

A low value is desired for this measure.

Active authenticated client connections

Indicates the number of active client connections that are authenticated.

Number

 

BW check requests for video

Indicates the number of video call requests for which bandwidth is checked.

Number

 

Active video BW reservations

Indicates the number of active bandwidth reservations for video calls.

Number

 

BW check requests for audio

Indicates the number of audio call requests for which bandwidth is checked.

Number

 

Active audio BW reservations

Indicates the number of active bandwidth reservations for audio calls.

Number

 

Total core BW check requests

Indicates the overall number of core (both audio and video) call requests for which bandwidth is checked.

Number

 

Active core BW reservations

Indicates the total number of active reservations for audio and video calls.

Number

 

TCP segments received rate

Indicates the rate at which TCP segments were received by this service.

Received/Sec