cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1062
Views
0
Helpful
7
Replies

ASA CSC Module Creates slow FTP Downloads

Benjamin Waldon
Level 1
Level 1

Hello,

We are having a bit of an issue that I thought I'd run by the community.

We have an ASA 5510 and we are running the "Anti-X" module with it. It is the Antivirus/Antispyware Interscan Module from Trend Micro. At any rate, we fond that when we try to download things via FTP, the download takes an extremely long period of time and often fails before it times out. By disabling the FTP scanning, it resolves the issue.

Has anyone else dealt with this? Any tips? We upgraded the engine as well as the virus definitions.

Thanks,

Ben

1 Accepted Solution

Accepted Solutions

Did you guys enable "deferred scanning"?

http://www.cisco.com/en/US/docs/security/csc/csc60/administration/guide/csc4.html#wp1042483

If not, please try it to see if it makes any difference.

View solution in original post

7 Replies 7

Brandon Svec
Level 7
Level 7

I am having the same/similar trouble I think.  I am running latest firmwares too.  Here is the thread with my issue:

https://supportforums.cisco.com/thread/2002560

-- please remember to rate and mark answered helpful posts --

Thanks Brandon,

Yeah, it's a shame, but the subscription is almost up on this and I am going to have a hard time selling the renewel if I can't enable FTP Scanning.

May open a case with the TAC if I can't get it resolved. Will let you know what the resolution is.

- Ben

I didn't buy smartnet so no TAC option for me. Please do update this thread

if you find a solution.

Brandon

On Mon, Feb 15, 2010 at 11:40 AM, benwaldon <

-- please remember to rate and mark answered helpful posts --

Did you guys enable "deferred scanning"?

http://www.cisco.com/en/US/docs/security/csc/csc60/administration/guide/csc4.html#wp1042483

If not, please try it to see if it makes any difference.

Thanks Kevin,

That fixed the problem.

I was a bit concerned about the part in the Administration guide where it says that deferred scanning

"May introduce a security risk".

But, the TAC engineer was saying that it deffered scanning presents a minimal security risk. The idea is that it passes along a very small portion of the file. Just enought to keep the (internal) client engaged in the download process.

I tested this and it works. I was running several downloads against files exceeding 40MB and it they all ran smoothly.

Thanks,

Ben

Would you describe your problem as intermittent?

I had a download I was testing it against. The file was 13MB and it would work sometimes (after holding at transferring for 30 seconds), and sometimes it wouldn't. But, then I used a file at 60MB and it was consistently failing.

I think I have a different trouble. I just remembered that I even disabled

file scanning completely in the CSC and still have this problem whenever I

specify traffic to even pass though the CSC unchecked. I will sometimes get

weir errors from ftp server when using cli ftp. Sometimes it looks like it

is not working for 90 seconds or longer then all of a sudden it starts

downloading..

Brandon

On Mon, Feb 15, 2010 at 12:19 PM, benwaldon <

-- please remember to rate and mark answered helpful posts --
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: