[nsp] Pix 6.3(3) and UDP issues

[Olav Langeland]

We upgraded to 6.3(3) on our Pixes last week, and immediately saw a huge
increase in reported connections. The problem seemed to be UDP port 53
(DNS) sessions that would not timeout. The connection count increased
slowly but steadily, and today the CPU went skyhigh and we were forced
to downgrade to 6.2 which had proven to be stable. We checked around a
bit, and heard other stories about which was more or less the same, with
users forced to downgrade.
We are a hosting company with fairly large scale DNS and shared Web so
UDP traffic is high.

Has anyone had the same issues/problems? Pix 6.3(1) is most likely our
next step, until we get a confirmed new version or a workaround.

olav langeland - active isp - olav.langeland at no.spam.activeisp.com