Aviatrix CoPilot FAQs
FAQs about CoPilot Migration to V3 Appliance
FAQs about CoPilot Launch
Why can’t I deploy CoPilot from Controller?
If you try to deploy CoPilot from Controller and you receive this error, your IAM role may need to be updated with new policies.
Error: Cannot read properties of undefined (reading 'value')
If your Account Audit check details show a status of "Pass*" with an asterisk, this means your IAM role needs to be updated. You can go to the Audit page and update the IAM policy in Controller > Access Accounts > Update Policy.
FAQs about Controller Upgrade Impacts
Frequently asked questions about CoPilot configuration after an upgrade of Aviatrix Controller.
Can I use my CoPilot after upgrading Controller and switching licenses?
After you upgrade Controller and switch licenses, you may need to do the following:
-
Refresh the license information in CoPilot > Settings > Configuration > License by clicking the Refresh icon of the CoPilot application (not the browser refresh button).
-
Log out and log in to CoPilot.
FAQs about Aviatrix Billing
Frequently asked questions about Aviatrix Billing page.
How often does Copilot update cost information for the Aviatrix Billing feature?
CoPilot updates the billing data shown in the CoPilot > Billing & Cost > Aviatrix Billing page every day. Typically, the update occurs 27 minutes after 0:00 UTC. If billing data is unavailable for some reason, CoPilot will reattempt the next update every 6 hours.
FAQs about SAML Login and CoPilot
Frequently asked questions about SAML login for CoPilot.
Why can’t users see the SAML Provider option in the CoPilot login screen?
If you launch CoPilot from the Controller user interface, you must manually add the CoPilot public IP address to the Controller’s security group. Otherwise, the SAML Provider option will not be visible to CoPilot users on the CoPilot login page.
See also Set Up SAML Login for CoPilot.
FAQs about CoPilot and Controller Reachability
Frequently asked questions about CoPilot not reaching or communicating with the Controller.
Why can’t my CoPilot reach my Controller?
Verify that Controller’s access for CoPilot has been configured. After CoPilot’s VM is launched and assigned a static public IP address, the Controller’s SG on 443 must be open to CoPilot’s public IP. If you launched CoPilot from the Controller user interface, the SG configuration is done as part of the auto-deploy process. If you launched CoPilot from the CSP marketplace, you will need to add the rule to the Controller SG.
FAQs about CoPilot instance size
Frequently asked questions about initial deployment size for CoPilot.
What is the minimum instance/VM size for CoPilot?
The configuration of the virtual machine(s) that you provision for your CoPilot deployment depends on the scale and the kind of networking infrastructure you have planned according to your business requirements. Work with your Aviatrix Sales representative to determine your sizing requirements. For very large infrastructures, it is recommended to deploy a clustered CoPilot.
For minimum instance/VM sizing for CoPilot, see CoPilot Requirements.
FAQs about CoPilot login
Frequently asked questions about logging in to CoPilot.
What is the default login for CoPilot?
CoPilot authenticates against the Aviatrix Controller list of local users.
If Controller IP changes and if copilot is associated with an old controller IP, how to login into Copilot?
If you are logged in to copilot go to Copilot UI → Settings and click on the 'Reset controller IP' button. It will prompt you to enter the new Controller IP address and service account credentials.
If you are logged out of Copilot, please open a support ticket at Aviatrix Support Portal for a solution.
FAQs about CoPilot notifications/alerts
Frequently asked questions about notifications and alerts in CoPilot.
Can I pause alerts in CoPilot?
Yes. To pause a user-defined alert, click the bell icon in the alerts list.
What kind of alerts/notifications does CoPilot offer?
For information about how Aviatrix CoPilot provides alerting and monitoring in your multicloud networks that are managed by Aviatrix Controller, see Monitoring and Troubleshooting
CoPilot regularly polls Aviatrix Controller for alerts associated with events that occur in your network. The events could be detected changes in the resource utilization (telemetry) data for managed resources (gateway hosts). The events could also be conditions associated with enhanced security services like network behavior analytics (detected anomalies in your network traffic fingerprint) and ThreatIQ (detected threat IPs).
What metrics can I base alerts on?
For information about metric conditions on which to base alerts, see Metric Types for Triggering Alerts.
FAQs about webhooks
Frequently asked questions about webhooks generated by CoPilot.
Can I use webhooks to send notifications to external systems like PagerDuty?
Yes. You can customize the webhooks Aviatrix CoPilot generates for sending to external systems (such as Slack and PagerDuty). See Setting Up Webhook Channels for Sending Alert Notifications.
Can I pass a custom authorization header in the webhook request?
Yes. You can pass a custom authorization header that may be used for integrating with downstream third-party alerting systems. When set, the contents are included in the header of the webhook request as:
Authorization: <value typed in Authorization Header field>
FAQs about ThreatIQ
Frequently asked questions about ThreatIQ.
Are ThreatIQ firewall rules applied to non-Aviatrix constructs?
No. ThreatIQ firewall rules are not added to non-Aviatrix constructs. ThreatIQ firewall rules are added to Aviatrix gateways. ThreatIQ firewall rules block traffic to and from the host (Aviatrix gateway) by adding stateful firewalls to the host that reported the threat-IP associated traffic. See Working with ThreatIQ.
How do ThreatIQ firewall policies interact with existing/new firewall policies applied to the same gateways?
The ThreatIQ drop policies are in addition to the existing firewall policies applied to the same gateways. See Blocking Known Threat IP Traffic using ThreatIQ.
FAQs about data disks/volumes
Frequently asked questions about attached disks (volumes) used for CoPilot data.
Can I use the disk (volume) management feature for expandable storage?
To use the disk (volume) feature for expandable storage, you must deploy an instance of Aviatrix CoPilot that is based on the Aviatrix CoPilot image version 1.5.1 (that released on 01/14/2022). Instances based on the 1.5.1 image show “Appliance Version 2” in the version information (older images display “Appliance Version 1”). To use the expandable storage feature, you must launch a new CoPilot instance from the marketplace based on CoPilot image version 1.5.1. For more information about expandable storage, see CoPilot Disk (Volume) Management.
What disk type should I use for CoPilot expandable storage?
You can choose the disk type (volume type) you want. Most disk/volume types are supported (such as AWS gp2).
What are sizing guidelines for the data disk (volume) to attach for CoPilot expandable storage?
Your Aviatrix support/cloud service team can help you determine an initial size that is suitable for your business needs. The size of storage for CoPilot data depends on several factors. For example, an infrastructure that has 100 gateways with 1 G of traffic per day will require a different size than an infrastructure with 10 gateways with 10 TB of traffic per day.
You can start with the initial size and monitor your system for a set time period to see how much CoPilot data is stored/indexed in your environment (Settings > Index Management) to help determine whether to allocate new storage to meet your needs. You can always add additional data disks (volumes) as needed. See Add a Disk (Volume) for CoPilot Storage after Deployment.
FAQs about flow data
Frequently asked questions about flow data in CoPilot.
How long does it take for data to start showing in FlowIQ?
It may take about 5 minutes for flow data to appear in the CoPilot UI.
Are the traffic flow records coming from Aviatrix Controller or the gateways?
The flows are sent from the Aviatrix gateways directly to CoPilot’s instance.
Can I configure flows to be sent over private IPs?
CoPilot does not set up a private overlay between the gateways and itself. If a private communication path between the gateways and CoPilot is available, then you can use CoPilot’s private IP when you input the collector IP in the controller. For example, if you have an Aviatrix transit gateway, and you put CoPilot in one of the spokes, then you can use CoPilot’s private IP as the destination.
FAQs about how CoPilot works
Frequently asked questions about how CoPilot works.
What protocol does CoPilot use to talk to its controller?
CoPilot uses REST APIs and HTTPS to communicate with its controller.
How does CoPilot get its data?
CoPilot uses REST APIs and HTTPS to communicate with its controller.
Controller APIs
CoPilot makes API calls into the controller to retrieve information.
Flow records
Aviatrix Gateways generate and export information about network traffic. Flows come directly from Gateways to CoPilot.
How are updates handled? Can I configure the update process?
Updates are downloaded and applied automatically. The update process runs hourly.
After a base image is launched from a marketplace, the CoPilot instance automatically updates to the latest software version upon startup. It is recommended to allow updates to your CoPilot image for receiving the latest software versions.
Does CoPilot hold any user or sensitive data?
CoPilot does not hold user-identifiable or payment processing information. CoPilot does not hold credentials on the appliance’s storage. However, it is always recommended to follow security best practices for a secure CoPilot deployment.
Can the data retention be adjusted?
Today you can set a threshold based on disk space available, so that you can remove the old records.