Poor Performance ASA 5510

Unanswered Question
Oct 10th, 2007

Network throughput significantly degraded through ASA 5510. Lost about 50% of network throughput when connected through an ASA 5510. Any suggestions/ideas?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
alonzo.garza Wed, 10/10/2007 - 14:15

What does your config look like? Maybe your ACLs are adversely affecting performance? Are you're interfaces hard coded duplex/speed?

nmansi Wed, 10/10/2007 - 15:50

I only have 2 access lists, one to nat all traffic to the outside interface and the other is a crypto access list. Each is 4 lines.

JORGE RODRIGUEZ Wed, 10/10/2007 - 15:51

In addition to Alonzo's remarks in checking duplex etc.. I would suggest you gather basline overall traffic/connections information from the ASA firewall.. I have 515E's and I do use the following link for keeping eyes opened on performance issues when they appear, although the bellow link pertains for PIX 500 series most of the information in it can be used as an example in gathering info & troubleshooting performance on the ASA as well.



http://www.cisco.com/warp/public/110/pixperformance.html#pre


whisperwind Fri, 10/12/2007 - 05:48

Likely the ASA is seeing traffic it does not like for some reason, review that, check logging levels and make sure you are logging errors not debugging and also any IDS checks.


Posting the overall config maybe helpful as well.

Actions

This Discussion