Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1127
Views
0
Helpful
4
Replies

ASA Sourcefire Module Bandwidth degradation

milin160791
Level 1
Level 1

‎03-02-2016 10:34 PM - edited ‎03-12-2019 05:55 AM

Dear Team,

I have just implemented ASA 5516-x with Firepower services with 9.5.2(5) IOS and Sourcefire module with 6.0 release.

Within taken downtime everything was working fine but when the users came on production time, we are facing high bandwidth degradation issue, internet stops working suddenly. Then, I rebooted firewall again and bypassed traffic from sourcefire module and now it is working fine.

Also when enabling sourcefire module, many https sites are loading very slow (Slowness of internet access, evenif SSL policies are not applied)

So, I would like know is there any specific bug with in 9.5.2(5) IOS or anything else ?

Regards,

Milin M. Mistry

3 people had this problem
Labels:
0 Helpful
4 Replies 4

thilton68
Level 1
Level 1

‎03-03-2016 12:32 PM

Hi Milin

I am experiencing the same issue with some SSL content.  Specifically one I have identified is https://tfl.gov.uk . ; We have found that does actually load but very very slowly using chrome but the page stays blank using IE.

The connection events indicate correctly with allow.

regards

TH

0 Helpful

milin160791
Level 1
Level 1
In response to thilton68

‎03-03-2016 11:30 PM

Dear Team,

Anyone has successfully implemented ASA-Next-Gen-FW with Firepower module without any issues..??

If yes, please give your inputs like for which Firewall IOS and with Which Sourcefire module version it is stable and how to overcome known issues and put our firewall in stable state.

Your help will be highly appreciated.

Regards,

Milin.

0 Helpful

ciscosupporttek
Level 1
Level 1
In response to milin160791

‎04-14-2016 08:52 AM

Hello,

I had a similar problem. After some time, begin to open the page very slowly.

The cause found on the border router, which is set after the ASA, it overflowed NAT translation. It creates a lot of compounds that Firesight shows how the Block, but they still are. The problem is decided limitation nat translation tcp-timeout to 2 hours.

But the Firepower module must not miss the connections that it blocks.

Regards,

Denis.

0 Helpful

hoffa2000
Level 3
Level 3
In response to milin160791

‎04-19-2016 10:58 PM

Hi

I've been running the ASA9.4, Firepower 5.4.x track for half a year now and I've been very happy. I've had some stability issues but those were related to a well defined bug CSCut39253 and easily mitigated. So far I'd say the Firepower platform is some of the best security "services" I've seen so far.

Now the Firepower 6.x track is another matter, for me my upgrade attempt was a complete failure with a few white web pages and sometimes web code as result for my users. Not to mention the CSCuz04979, broken Context Explorer, bug which became a deal breaker for me. The erratic web results my users were getting could have been solved by tweaking the rule set but the Context Explorer could not wait for a patch.

I had to revert back to 5.4 on both FMC and modules. Too bad since the 6.x GUI felt more refined and the option to nest access control rules was really useful for me.

/Fredrik

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card