[c-nsp] 2611xm slowed to crawl, ip based filter...
Bruce Pinsky
bep at whack.org
Wed Sep 8 03:05:08 EDT 2004
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Jeff Johnson wrote:
| Hey all,
|
| Below is an excerpt from my config on a 2611xm. I set this up last
| friday night and foolishly walked away. Upon checking in the next day i
| found that the network had slowed to a crawl and i could not even
| connect vi a ssh. the connections would time out.
|
| Is this acl processor bound or is there some fundamental flaw in its
| design?
|
| i am new to cisco based firewalls, so please go easy on me.
|
| the following section was generated by configmaker.
|
| I appreciate the help,
|
Doesn't seem that unreasonable. A little more info might help narrow it
down. What does "show proc cpu" indicate? Do you have some other
features turned on such as NAT or IPSEC? Is CEF your switching path
(check with "sh ip int")?
- --
=========
bep
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (MingW32)
iD8DBQFBPq8kE1XcgMgrtyYRAhxGAKCrFTA+51eYci7DNRoxHYfwXTyskQCfWva9
5QsWzavQEIAyguTOWWw2UKY=
=f1r6
-----END PGP SIGNATURE-----
More information about the cisco-nsp
mailing list