Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3869
Views
12
Helpful
7
Replies

ASA performance tuning

vipinrajrc
Level 3
Level 3

‎02-23-2011 06:52 PM - edited ‎03-11-2019 12:55 PM

Hi Experts,

Is there any way for ASA's performance tuning??? please reply ASAP.......

Thanks

Vipin

Thanks and Regards, Vipin
Labels:
0 Helpful
7 Replies 7

Federico Coto Fajardo
VIP Alumni
VIP Alumni

‎02-23-2011 06:56 PM

Vipin,

Kind of a broad question....

I guess you can do some tuning for the TCP traffic passing through, for VPN performance, etc.

Maybe this link will help:

PIX/ASA: Monitor and Troubleshoot Performance Issues

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_tech_note09186a008009491c.shtml

Hope it helps.


Federico.

sean_evershed
Level 7
Level 7
In response to Federico Coto Fajardo

‎02-23-2011 10:32 PM

Here is another link that may prove useful. This focusses on HTTP issues:

https://supportforums.cisco.com/docs/DOC-8982

vipinrajrc
Level 3
Level 3
In response to sean_evershed

‎02-23-2011 11:01 PM

Hi Guys

thanks for your reply...

What i meant is.. is there any method ....so that performance of the ASA can be informed..

thanks,

Regards.

Thanks and Regards, Vipin
0 Helpful

sean_evershed
Level 7
Level 7
In response to vipinrajrc

‎02-24-2011 12:17 AM

Do you mean something like SNMP monitoring where you can measure things like memory, CPU, bandwidth etc on the ASA?

If so you will need SNMP monitoring software.

The config on the ASA would look something like this assuming the SNMP server is on your inside network:

snmp-server host inside A.B.C.D community xyzabc

Federico Coto Fajardo
VIP Alumni
VIP Alumni
In response to sean_evershed

‎02-24-2011 08:10 AM

As Sean said you can use SNMP to monitor performance.

Another nice way to 'see' what's happening is NetFlow.

In case you're interested:

https://supportforums.cisco.com/docs/DOC-6113

Federico.

vipinrajrc
Level 3
Level 3
In response to Federico Coto Fajardo

‎02-24-2011 05:48 PM

Hi Experts,

Sorry for the late reply......!!!!!!

we can monitoring performance using SNMP,Syslog & Netflow right????

Which is the best??? I configured SNMP and I have solarwinds to monitor it......... So leave SNMP.... Then Between Syslog & Netflow which is the best???

I didnt go through the document you guys gave me.. I am going to refer and i will implement it..... I will update it soon....

Thanks

Vipin Raj

Thanks and Regards, Vipin
0 Helpful

Federico Coto Fajardo
VIP Alumni
VIP Alumni
In response to vipinrajrc

‎02-24-2011 06:10 PM

Some comparison points:

  • SNMP can be used for real-time (i.e. every second)  and although NetFlow provides beginning and end times for each flow, it  isn’t nearly as real-time as SNMP.  In fact, due to the active timeout issue, NetFlow really can’t provide granularity finer than 1 minute  else, it sort of defeats the idea of NetFlow’s awesome aggregation.

  • NetFlow tells you who and with what is  consuming the bandwidth, it is also much more verbose than SNMP and  therefore NetFlow exports consume much more disk space for historical  information

  • SNMP can be used to collect CPU and memory utilization and that just isn’t available yet using NetFlow.

I gave you detailed information about NetFlow on the last post, you can also check SNMP for ASA here:

http://www.cisco.com/en/US/docs/security/asa/asa84/configuration/guide/monitor_snmp.html

Hope it helps.

Federico.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card