04-07-2017 11:30 AM - edited 03-12-2019 06:21 AM
I have a client that is running an 8140 sourcefire box. After looking at the configured homenets, I see they have a /8 defined.
Can this cause increased resource utilization?
I will be working to define their networks more precisely but was hoping to get this answered.
Thanks!
Steve
04-08-2017 05:15 AM
As long as the /8 defined for the $HOME_NET doesn't sweep up hosts from outside the network of interest then it's fine and should not consume any additional resources. It also cuts down on the overhead of tweaking the object every time a subnet is added (or forgetting to do so).
Some engineers even include all RFC 1918 networks in the object just to make sure they get everything when delaing with a customer who may not have an exact listing of all of their internal subnets.
04-10-2017 01:14 PM
Thank you for the reply Marvin, much appreciated!
04-10-2017 07:17 PM
You're welcome. Please mark your question as answered if it has been.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide