How many signatures can be enable in a 42XX appliance
Hi, cisco configure like 1300 signatures enabled by default in the signature packages for the appliances 42xx, if I want to enable more than the default configured by cisco, how many more I can enable without affecting the performance of the appliance?
This is a difficult question ! Actually signatures are not behaviour based. They will trigger once they detect a "defined packet " after deep packet inspection processing.
You have to run them and see in your environment, how many signatures do you actually need. For example , if you are not running internet explorer or mac computers then signatures for such things could be closed. You can search through IDM or IME for firefox , adobe, flash , xp etc tags within the signature list and tune it as per your sensitivity requirement.
Generally CPU load will be lesser than Memory Load , and reason simply being quick processing as we all know fetching data from memory is faster .
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...