[c-nsp] High CPU Usage on CISCO ASA 5510
Md. Jahangir Hossain
jrjahangir at yahoo.com
Sun Feb 26 05:50:12 EST 2012
Thanks for your reply peter .
My total traffic bellow 50Mbps on Box but total connection per second usage nearly 10000+ . I think this is the problem. What is the solution for this.
Here the information bellow:
#############
threat-detection basic-threat
#############
class-map inspection_default
match default-inspection-traffic
!
!
policy-map type inspect dns preset_dns_map
parameters
message-length maximum client auto
message-length maximum 512
policy-map global_policy
class inspection_default
inspect ftp
inspect h323 h225
inspect h323 ras
inspect ip-options
inspect netbios
inspect rsh
inspect rtsp
inspect skinny
inspect esmtp
inspect sqlnet
inspect sunrpc
inspect tftp
inspect sip
inspect xdmcp
inspect icmp error
inspect dns
thanks
jahangir
----- Original Message -----
From: Peter Rathlev <peter at rathlev.dk>
To: Md. Jahangir Hossain <jrjahangir at yahoo.com>
Cc: "cisco-nsp at puck.nether.net" <cisco-nsp at puck.nether.net>
Sent: Sunday, February 26, 2012 4:14 PM
Subject: Re: [c-nsp] High CPU Usage on CISCO ASA 5510
On Sun, 2012-02-26 at 01:31 -0800, Md. Jahangir Hossain wrote:
> i am getting high CPU usage on CISCO ASA 5510 nealy 90 to 95%
>
> Here ASA information:
...
> 081ab92f d59af8a0 98.8% 87.7% 90.8% Dispatch Unit
The "Dispatch Unit" does forwarding. You're probably overloading the
box. What traffic (type & rates) is running through the device? What
kind of threat-detection and/or inspection have you enabled?
--
Peter
More information about the cisco-nsp
mailing list