topic Re: Pix Processor up tp 90% in Network Security

Pix Processor up tp 90%

KlediBodinaku24 — Mon, 11 Mar 2019 09:11:24 GMT

This is the output when the proccesor was high. Some of the VPN client users were unable to log in. when those users that were logged in started getting out the proccessor activity started going down until it reached 7%.

Re: Pix Processor up tp 90%

drolemc — Tue, 26 Dec 2006 20:36:53 GMT

What version of software are you using in the pix ?

Re: Pix Processor up tp 90%

KlediBodinaku24 — Wed, 27 Dec 2006 07:29:15 GMT

The version is 7.0. PIX 515E

Re: Pix Processor up tp 90%

scheikhnajib — Wed, 27 Dec 2006 16:06:59 GMT

Mate,

How many VPN users were logged in? Does your PIX have a VPN accelerator card (is it Unrestricted PIX)?

If you don't have any VPN termination capacity problems then you might need to check your IP Audit logs (if you have configured it). If you don't have it configured I would suggest that you do that on all physical interfaces and set the action to "log" only rather than "block" and then you can monitor if there is any malicious activities from any source.

Hope this helps ...

Cheers.

Re: Pix Processor up tp 90%

mpalardy — Wed, 27 Dec 2006 16:20:47 GMT

Check for incoming icmp log from hosts configured on the pix. Could be

- a misconfigured server the pix cannot reach

- a patch not well applied on syslog-server or snmp-server.

- misconfgured pix eg wrong ip server-address,

- port udp/514 not opened on server, etc...

Check either the syslog-server and snmp-server.

As a permanent workaround, enable icmp echo and icmp echo reply for the faulty host.