Frequency of Sensor Authentication to PIX (Blocking Device)
I have several IDS sensors configured to use PIXs as blocking devices for setting up shuns. Since upgrading to version 4.0 I've noticed that these sensors are authenticating to the PIXs very frequently - more than once per minute.
(This may have been happening all along, I coincidentally increased logging detail on these firewalls about the same time as the upgrade to version 4.x on the sensors)
This doesn't appear to have any kind of impact on performance, but I am wondering if someone could point me to an overview of what's going on with this process. I'm assuming it's required to handle the shun / clear shun process, but I'd like to understand exactly what's going on here. Also wondering if there is any way to tune the reauthentication interval and if so, what are the performance implications of doing so?
BenefitsDocumentationPrerequisiteImage Download LinksLimitationsSupported PlatformsLicense RequirementsTopologyStep-By-Step ConfigurationConfigure Virtual ServiceActivate the virtual service and configure guest IPsConfiguring UTD (Service Plane)Configurin...
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...