Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
799
Views
0
Helpful
2
Replies

IDS and active X

peterson.dave
Level 1
Level 1

‎02-08-2005 08:47 AM - edited ‎03-10-2019 01:16 AM

Has anybody seen a situation where IDS configured on a router slows down active x apps? I enabled IDS on a few routers we have and all of a sudden certain apps like TrackIT started to take an additional 45 seconds to load. Turn IDS off and everything loads right away?

Has anybody seen this? Has anybody used access-lists referenced in IDS to filter out boxes with similar problems? If so how did you find that it worked?

Thanks,

Dave

Labels:
0 Helpful
2 Replies 2

gabelar
Level 1
Level 1

‎02-08-2005 04:05 PM

Dave I can see potential for this happening. When IDS is enabled in the router it will inspect HTTP layer seven traffic. This will slow down active x and Java downloads. Inline inspection on routers was really designed for use with accelrator cards. If you have a PIX or IDS use that for DPI and let the router just forward packets. Also FYP - The new ISR routers (1800, 2800, 3800) are much more efficient for IDS.

0 Helpful

peterson.dave
Level 1
Level 1
In response to gabelar

‎02-09-2005 06:52 AM

This would make sense. I can run IDS out without any slowing, but when I add IDS IN the app slows to a crawl.

You are right though the new 2800 are much more effecient at IPS. Though the SDM gets a little weird with the java sometimes?

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card