Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
467
Views
3
Helpful
3
Replies

Is this normal CPU% on FWSM

cisconoobie
Level 2
Level 2

‎01-31-2008 08:45 AM - edited ‎03-11-2019 04:56 AM

I got a 6506-e with fwsm module.

I get around 80 connections per sec, mainly UDP.

The proc is constantly at 20-22%

Is this normal for these connections?

How do I troubleshoot this?

Labels:
0 Helpful
3 Replies 3

excession
Level 1
Level 1

‎01-31-2008 10:17 AM

I'm not sure if it is normal.

Please take 3 outputs of "show proc" each 60 seconds appart and post.

Also if possible please post "show run" without sensitive information? What type of traffic are you inspecting?

If you do a "show pc conn" what connections do you see? Is there one type of traffic in particular? Again if possible post the output here?

pallette
Level 1
Level 1

‎02-01-2008 12:26 PM

Is this FWSM running in single or multiple context mode?

0 Helpful

cisconoobie
Level 2
Level 2
In response to pallette

‎02-10-2008 11:20 AM

I fixed the problem.

There were about 80 DNS UDP requests passing through the FWSM per second.

inspect DNS maximum-length 512 - was enabled and this killed the CPU%

I disabled DNS inspetion and CPU dropped to 0%

I'm happy that the problem is fixed but it sucks that the FWSM cant handle this inspection properly.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card