[nsp] IP NAT Ager gobbling CPU
Gert Doering
gert at greenie.muc.de
Thu Oct 9 14:39:52 EDT 2003
Hi,
On Thu, Oct 09, 2003 at 10:59:21AM -0700, atticus at satanic.org wrote:
> On an NPE-400, I'm burning huge amounts of CPU (~40%) on IP NAT Ager. NAT
> is about the only thing the router does, but its currently aging ~225
> translations per second, w/ the total active hovering around 15k. All of
> the connections are TCP.
Sounds like "many virus port scans inside".
Check "show ip nat tra" for typical virus signs.
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany gert at greenie.muc.de
fax: +49-89-35655025 gert at net.informatik.tu-muenchen.de
More information about the cisco-nsp
mailing list