From: miken (miken@sisna.com)
Date: Tue Aug 26 2003 - 18:08:29 GMT-3
George,
Sounds like you are getting blasted by the blaster..... If have logging
enabled, are logging the access-list lines, and you are forwarding the logs
to Kiwi or a logging deamon, you can monitor it in real time. That is if you
can read that fast =). But this gives you a tool to parse, sort, and filter
the logging information to see if possibly you are filtering traffic that
may not need to be, if there is such a thing in this day and age. Anyway,
just a suggestion. If you are not already logging, turning on logging will
increase the cpu utilization of the firewall and may make it even worse so
be careful. My hardware side is suggesting bigger iron may be of some value
too. If you are using a SOHO 506 or the like, it may just be toooooo much
for the little guy. Do you have any baseline utilization information from
before adding the additional filtering?
HTH,
Mike
----- Original Message -----
From: "George Gittins" <g.gittins@edinburg.esc1.net>
To: <ccielab@groupstudy.com>
Sent: Tuesday, August 26, 2003 2:52 PM
Subject: Pix responding slow
> I put a couple of access-list on the pix to stop the blaster worm and I
> noticed that internet is being awful slow, plus my pix is responding
> very slow
>
> George Gittins
> Network Maintenance Supervisor
> ECISD
>
>
> _______________________________________________________________________
> You are subscribed to the GroupStudy.com CCIE R&S Discussion Group.
>
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
This archive was generated by hypermail 2.1.4 : Tue Sep 02 2003 - 18:54:07 GMT-3