Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
809
Views
0
Helpful
1
Replies

IPS Cpu usage is high

Karthikeyan Shanmugam
Level 1
Level 1

‎08-10-2010 11:22 PM - edited ‎03-10-2019 05:05 AM

Hi,

I have an AIP-SSM-10 running inside an ASA-5520. the sensor CPU usage is 57-90%. What cause the problem might have occured?. please help me.

Labels:
0 Helpful
1 Reply 1

Scott Fringer
Cisco Employee
Cisco Employee

‎08-17-2010 04:09 AM

High CPU is not an issue in-and-of itself.  There was a change made with the releae of the E3 analysis engine which makes more use of the CPU during idle periods.  This issue is outlined in the release notes from the time of the E3 release:

http://www.cisco.com/en/US/docs/security/ips/6.1/release/notes/20114_01.html

The change was made in response to bug CSCsu77935.  Here is the explanation from the release notes:

"The idle time algorithm of the sensor has been modified. Additional CPU  has been applied to polling the NICs to decrease the polling interval  and reduce latency. The CPU usage is thus reported as higher than in  previous releases, including external tools such as top and ps. You will  notice the additional CPU load on single-CPU platforms and on the  primary CPU of multicore systems.

Because the additional CPU load reported while polling is actually  available to process packets, and is reduced as inspection load goes up,  it does not negatively affect the overall throughput of the IPS.

The best indication of sensor load is shown under the Processing Load Percentage section in the show statistics virtual-sensor command output and on the IME Home Page."

Scott

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card