We have 2 PIX 515E's, and all of a sudden the memory has begun to run out very fast. According to the Cisco website, the RAM on the PIX should not change much, if any at all.
We have tried all possible means to ensure there is no DoS being carried out. Are there any further steps we can take to look into this matter?
One of the firewalls memory takes about 24 hours to run out, and then we have to perform a reload to reduce its memory. The other one seems to be stable at present, but when it starts to misbehave, it also requires a reboot every 2-3 days.
Any ideas welcome
These are the default settings which you should have in your firewall, I can see even UDP timeout value not correct..set the following timeout value
ASA(config)# sh run timeout
timeout xlate 3:00:00
timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
timeout uauth 0:05:00 absolute
put the commands in this order
timeout uauth 0:05:0
timeout conn 1:0:0
timeout xlate 3:0:0