Skip to main content

Gatekeeper Feature Guide

Device Connection States

The Gatekeeper tracks and displays three distinct connection states for managed devices:

Disconnected

  • Definition: Device no longer has an assigned IP address and has not sent ARP (Address Resolution Protocol) requests
  • Meaning: The device may be powered off, physically disconnected from the network, or experiencing network connectivity issues
  • Implications:
    • Device is not reachable on the network
    • No traffic monitoring or policy enforcement is possible
    • May indicate hardware failure, power issues, or network infrastructure problems

Connected

  • Definition: Device has been assigned an IP address by the Gatekeeper's DHCP service and has sent ARP requests
  • Meaning: The device is network-accessible and has established basic network connectivity
  • Implications:
    • Device can be reached via network protocols
    • Basic network services are functional
    • Device is ready to send/receive network traffic
    • Policy enforcement is active but no recent traffic has been observed

Active

  • Definition: Device traffic has been observed and recorded by the Gatekeeper
  • Meaning: The device is actively communicating on the network
  • Implications:
    • Device is fully operational and generating network traffic
    • Traffic flows are being monitored and logged
    • Security policies are being actively enforced
    • Device is participating in normal network operations

Understanding Device States

State Transitions

Devices typically progress through states as follows:

  1. DisconnectedConnected: Device powers on and obtains IP address
  2. ConnectedActive: Device begins generating network traffic
  3. ActiveConnected: Device stops generating traffic but maintains network presence
  4. ConnectedDisconnected: Device loses network connectivity or powers off

Monitoring Considerations

  • Disconnected devices may require physical inspection or power cycle
  • Connected but not Active devices may indicate:
    • Device is idle but functional
    • Network configuration issues
    • Application or service problems
  • Active devices indicate normal operation and full functionality

Troubleshooting by State

  • Disconnected: Check power, network cables, and switch connectivity
  • Connected: Verify device applications and services are running
  • Active: Monitor for expected traffic patterns and policy compliance

Device Movement across Gatekeepers

When a device (either managed or unmanaged) moves from a network managed by one Gatekeeper to another Gatekeeper-managed network, this movement is automatically reflected in the user interface. Any security policies enforced on the device are preserved during this transition.