We currently have an ASA with 7.2 code. We would like to turn of the inspect for sunrpc. I found that we have an access-list configured in the ASA that permits sunrpc traffic that does have hit counts associated with the traffic. We do not have the sunrpc-server configured in our ASA. What are the implications with turning off the inspect for sunrpc and can it be safely disabled without causing application issues?
I'd suggest setting up a capture for that traffic first so that you can take a look at it in Wireshark and determine just what it is. Then you'll be in a better position to decide if you need the inspection. If you find that you do need inspection you can limit it to just certain IPs with an access list if processor load is an issue.