ASA5520 performance

Unanswered Question
Jul 16th, 2009

Hi everyone

We're noticing under stress testing that our ASA5520 is maxing its CPU out at about 3900 TCP connections per second. This is way lower than what Cisco quotes, and our rule set is quite small (a few dozen rules).

Is this normal? We are using an AIP-SSM-20 module - could that have an effect on the firewall CPU?

Thanks

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
branfarm1 Thu, 07/16/2009 - 14:25

What are you using to stress test your 5520?

Do you have any of the advanced threat-detection or scanning-threat detection enabled? Those can both place high CPU stress on your device in certain situations.

osiristrading Thu, 07/16/2009 - 22:19

No advanced threat detection enabled. We are using the Microsoft web application stress test tool - all it does it a simple HTTP get on an object on the web server.

Actions

This Discussion