Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
341
Views
6
Helpful
3
Replies

Pix performance with 1000 lines (Access-list)

obacati21
Level 1
Level 1

‎06-13-2006 01:08 AM - edited ‎02-21-2020 12:57 AM

Hi everybody,

I 've a big issue. I'm working with 2 pix (515, 64 MB, UR and FO, ...) with 6 interfaces and 1000 lines in 4 ACL and lots of traffic (10 to 100 Mbps by interface during working hours and backup). Each time I launch PDM, active unit become standby before opening GUI. Very Strange !!

I'am trying to purge configuration but i'am afraid that 515 are too smalls for my desgin !! True or False ???

Thanks

Olivier

0 Helpful
3 Replies 3

sean
Level 3
Level 3

‎06-13-2006 06:01 AM

Accessing your GUI is what is forcing your active to go to standby. The launching of the GUI on your pix is probably taxing your cpu and mem until it is through opening. As such, this device loses its ability to poll or respond to polls for the failover. Hope this helps.

dbakula01
Level 1
Level 1
In response to sean

‎06-13-2006 06:39 AM

i believe it is maxing your cpu cycles, the 525 might be a needed upgrade with that much traffic, or even the big daddy 535

jan.nielsen
Level 7
Level 7
In response to dbakula01

‎06-14-2006 05:36 AM

or maybe even do the tough task of cleaning up your acls :-) i would look at the ASA series if you need to upgrade hardware.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card