Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1281
Views
5
Helpful
9
Replies

Throughput of IDSM-2

Go to solution
a12288
Level 3
Level 3

‎01-18-2007 08:08 AM - edited ‎03-10-2019 03:25 AM

Cisco Doc says the IDSM-2's throughput is 600Mbps in promiscuous mode, so what throughput I would get if I just send traffic to one data port.

Labels:
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
attmidsteam
Level 1
Level 1

‎02-16-2007 11:07 AM

From the real-world note: We have numerous Cisco IDS devices, from 4215s up through 4250XLs and IDSM-2s. None of them meet their rated numbers, most start dropping packets at 1/3 of their claimed capacity. This is even after several TAC cases and extensive investigation by TAC engineers and internal developers. Maybe if you shut of 90% of signatures you could get there. Don't believe the hype.

View solution in original post

Go to solution
edwakim
Cisco Employee
Cisco Employee

‎02-16-2007 03:00 PM

Hi,

It will still be 600Mbps.

So you CAN still overload the sensor by sending traffic to one interface.

Thank you.

Edward

View solution in original post

0 Helpful
9 Replies 9

Go to solution
edwakim
Cisco Employee
Cisco Employee

‎01-18-2007 08:11 AM

600Mbps limit is for the sensor. Even though it has two data ports (10/100/1000 port each), combined traffic sent to the interface(s) should not exceed 600Mbps.

Thank you.

Edward

0 Helpful

Go to solution
a12288
Level 3
Level 3
In response to edwakim

‎01-18-2007 08:16 AM

thanks for your prompt replay, does it mean I could and would have 600Mbps throughput if I am going to use one data port only? thanks again.

0 Helpful

Go to solution
edwakim
Cisco Employee
Cisco Employee
In response to a12288

‎01-18-2007 08:39 AM

No problem.

Each interface can take up to 1000 Mbps, but sensor can only handle 600 Mbps.

The reason that we have two dataports is for the inline mode.

Thank you.

Edward

0 Helpful

Go to solution
Not applicable

‎02-15-2007 04:47 PM

0 Helpful

Go to solution
attmidsteam
Level 1
Level 1

‎02-16-2007 11:07 AM

From the real-world note: We have numerous Cisco IDS devices, from 4215s up through 4250XLs and IDSM-2s. None of them meet their rated numbers, most start dropping packets at 1/3 of their claimed capacity. This is even after several TAC cases and extensive investigation by TAC engineers and internal developers. Maybe if you shut of 90% of signatures you could get there. Don't believe the hype.

Go to solution
a12288
Level 3
Level 3
In response to attmidsteam

‎02-19-2007 05:26 AM

thanks, this is what I need to know (behind the hype) before we would issue a PO.

0 Helpful

Go to solution
edwakim
Cisco Employee
Cisco Employee

‎02-16-2007 03:00 PM

Hi,

It will still be 600Mbps.

So you CAN still overload the sensor by sending traffic to one interface.

Thank you.

Edward

0 Helpful

Go to solution
clausonna
Level 3
Level 3
In response to edwakim

‎02-19-2007 10:27 AM

Its 600Mbps if you're in Passive mode, and only 500Mbps if its Inline.

0 Helpful

Go to solution
edwakim
Cisco Employee
Cisco Employee
In response to clausonna

‎02-19-2007 10:59 AM

You are correct.

More information can be found here.

http://www.cisco.com/en/US/products/hw/modules/ps2706/products_data_sheet09186a00801e55dd.html

Thank you.

Edward

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card