Aviatrix CoPilot FAQs

FAQs about CoPilot instance size

Frequently asked questions about initial deployment size for CoPilot.

What is the minimum instance/VM size for CoPilot?

The configuration of the instance/virtual machine that you provision for your CoPilot deployment depends on the scale and the kind of networking infrastructure you have planned according to your business requirements. Work with your performance team to determine your sizing requirements.

  • For the instance/VM size, CoPilot requires a minimum of:

CoPilot supports automatic memory sizing for the ETL and datastore based on the physical memory of the instance at boot. Base images default to the automatic settings. This auto-scaling memory support became available with the release of Aviatrix CoPilot image version 1.5.1.

Prior to CoPilot image version 1.5.1, CoPilot required a minimum of 8 vCPUs and 32 GB Memory.

FAQs about CoPilot licenses and licensing

Frequently asked questions about CoPilot licenses and licensing.

What is a CoPilot Customer ID?

This is the customer ID or license obtained from your Aviatrix Sales representative. Note that the CoPilot customer ID is separate from the Aviatrix Controller customer ID. When you perform the initial setup of CoPilot, you will be prompted to enter your customer ID and CoPilot will allocate a license to you based on your customer ID. For more information about CoPilot licensing, see CoPilot Customer IDs and Licensing.

How can I extend or renew my CoPilot license?

If your CoPilot customer ID is set to expire, ask for a license extension from your Sales representative. In this case, you must reset your customer ID for the extension. For details, see CoPilot Customer IDs and Licensing.

If my CoPilot license expires, will I lose data?

No. If your CoPilot license expires, you will be unable to log in to CoPilot but your data will remain intact. Contact your Sales representative to request a license extension and obtain instructions for logging back in to your instance. For more information about CoPilot licensing, see CoPilot Customer IDs and Licensing.

Can my CoPilot customer ID be associated with more than one license?

Yes. The license key has the quantity or allocation count for the number of CoPilot instances that can use the license at a given time (the default count is 2). If the license key is greater than one, the key can be used by more than one instance. You can see when the license will expire and see the used and total allocation count of your license in CoPilot Settings > Licensing. For more information about CoPilot licensing, see CoPilot Customer IDs and Licensing.

FAQs about CoPilot login

Frequently asked questions about logging in to CoPilot.

What is the default login for CoPilot?

CoPilot authenticates against the Aviatrix Controller list of local users.

If Controller IP changes and if copilot is associated with an old controller IP, how to login into Copilot?

If you are logged in to copilot go to Copilot UI -> Settings and click on the ‘Reset controller IP’ button. It will prompt you to enter the new Controller IP address and service account credentials.

If you are logged out of Copilot, please open a support ticket at Aviatrix Support Portal for a solution.

FAQs about CoPilot notifications/alerts

Frequently asked questions about notifications and alerts in CoPilot.

What kind of alerts/notifications does CoPilot offer?

For general information about how Aviatrix Controller and CoPilot provide alerting, monitoring, and logging capabilities across all clouds in your multi-cloud network that are managed by Aviatrix Controller, see Monitoring Your Network.

CoPilot regularly polls Aviatrix Controller for alerts associated with events that occur in your network. The events could be detected changes in the resource utilization (telemetry) data for managed resources (gateway hosts). The events could also be conditions associated with enhanced security services like network behavior analytics (detected anomalies in your network traffic fingerprint) and ThreatIQ with ThreatGuard (detected threat IPs). For a list of all alert condition display names, see CoPilot Alert Condition Display Names.

FAQs about webhooks

Frequently asked questions about webhooks generated by CoPilot.

Can I use webhooks to send notifications to external systems like PagerDuty?

Yes. You can customize the webhooks Aviatrix CoPilot generates for sending to external systems (such as Slack and PagerDuty). See CoPilot Webhooks.

FAQs about ThreatGuard

Frequently asked questions about ThreatIQ with ThreatGuard.

Are ThreatGuard firewall rules applied to non-Aviatrix constructs?

No. ThreatGuard firewall rules are not added to non-Aviatrix constructs. ThreatGuard firewall rules are added to Aviatrix gateways. ThreatGuard firewall rules block traffic to and from the host (Aviatrix gateway) by adding stateful firewalls to the host that reported the threat-IP associated traffic. See Working with ThreatIQ.

How do ThreatGuard firewall policies interact with existing/new firewall policies applied to the same gateways?

The ThreatGuard drop policies are in addition to the existing firewall policies applied to the same gateways. See About ThreatGuard Firewall Rules.

FAQs about data disks/volumes

Frequently asked questions about attached disks (volumes) used for CoPilot data.

Can I use the disk (volume) management feature for expandable storage?

To use the disk (volume) feature for expandable storage, you must deploy an instance of Aviatrix CoPilot that is based on the Aviatrix CoPilot image version 1.5.1 (that released on 01/14/2022). Instances based on the 1.5.1 image show “Appliance Version 2” in the version information (older images display “Appliance Version 1”). To use the expandable storage feature, you must launch a new CoPilot instance from the marketplace based on CoPilot image version 1.5.1. For more information about expandable storage, see CoPilot Disk (Volume) Management.

What disk type should I use for CoPilot expandable storage?

You can choose the disk type (volume type) you want. Most disk/volume types are supported (such as AWS gp2).

What are sizing guidelines for the data disk (volume) to attach for CoPilot expandable storage?

Your Aviatrix support/cloud service team can help you determine an initial size that is suitable for your business needs. The size of storage for CoPilot data depends on several factors. For example, an infrastructure that has 100 gateways with 1 G of traffic per day will require a different size than an infrastructure with 10 gateways with 10 TB of traffic per day.

You can start with the initial size and monitor your system for a set time period to see how much CoPilot data is stored/indexed in your environment (Settings > Index Management) to help determine whether to allocate new storage to meet your needs. You can always add additional data disks (volumes) as needed. See Add a Disk (Volume) for CoPilot Storage after Deployment.

Can I encrypt volumes for CoPilot?

Yes, you can encrypt disks (volumes) that you allocate to your CoPilot deployment. You enable the encryption via your cloud service provider. Refer to your cloud service provider for information about enabling disk (volume) encryption.

FAQs about flow data

Frequently asked questions about flow data in CoPilot.

How long does it take for data to start showing in FlowIQ?

It may take about 5 minutes for flow data to appear in the CoPilot UI.

Are the traffic flow records coming from Aviatrix Controller or the gateways?

The flows are sent from the Aviatrix gateways directly to CoPilot’s instance.

Can I configure flows to be sent over private IPs?

CoPilot does not set up a private overlay between the gateways and itself. If a private communication path between the gateways and CoPilot is available, then you can use CoPilot’s private IP when you input the collector IP in the controller. For example, if you have an Aviatrix transit gateway, and you put CoPilot in one of the spokes, then you can use CoPilot’s private IP as the destination.

Is FlowIQ showing realtime traffic?

Flow records are generated by Aviatrix Gateways. The agent on the Gateways observes and keeps track of the flows and as soon as a particular flow ends, or if the flow expiry interval is reached, the flow record is sent to CoPilot.

FAQs about Topology

Frequently asked questions about topology in CoPilot.

Why do I get an error Failed to fetch Topology when I open the Topology page?

If you get the error Failed to fetch Topology data, CoPilot was unable to access the data it needs for topology. If the issue persists, Contact Aviatrix Support.

FAQs about how CoPilot works

Frequently asked questions about how CoPilot works.

What protocol does CoPilot use to talk to its controller?

CoPilot uses REST APIs and HTTPS to communicate with its controller.

How does CoPilot get its data?

CoPilot uses REST APIs and HTTPS to communicate with its controller.

1.Controller APIs

CoPilot makes API calls into the controller to retrieve information.

2.Flow records

Aviatrix Gateways generate and export information about network traffic. Flows come directly from Gateways to CoPilot.

How are updates handled? Can I configure the update process?

Updates are downloaded and applied automatically. The update process runs every 60 minutes. To stop updates, you can stop the update service under Settings > Services.

Does CoPilot hold any user or sensitive data?

CoPilot does not hold user-identifiable or payment processing information. CoPilot does not hold credentials on the appliance’s storage. However, it is always recommended to follow security best practices for a secure CoPilot deployment.

Can the data retention be adjusted?

Today you can set a threshold based on disk space available, so that you can remove the old records.

How can I get my additional questions answered?

Visit Aviatrix.com and use the live chat icon to talk to a live expert.