Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
373
Views
0
Helpful
2
Replies

IOS IPS CPU Utilization

nleachman
Level 1
Level 1

‎01-31-2006 11:18 AM - edited ‎03-10-2019 01:52 AM

Hi,

I'm hoping that I can ask a question here about the IPS function built into the AdvSec versions of IOS?

I have experimented with implementing the default signature set on 3845's (12.4 mainline, 1GB dram) - and it works well; but the CPU utilization jumps from around 10% to ~30% - without any other changes.

Is this much of a jump to be expected? And, is there any "tuning" that can be done to bring it down significantly?

Thanks, Nick

Labels:
0 Helpful
2 Replies 2

Adam Frederick
Level 3
Level 3

‎02-09-2006 06:07 PM

Nick;

This is normal and can be tuned (i.e disable sigs for any protocols not in use). I would suggest using the 256MB signature definition file, as that is what I am using and it doesn't add much more overhead than builtin sigs. I have one 2811 in particular feeding 2 T1s w/ MLPPP and taking advantage of the Firewall & IPS features. These 2 features alone only added around 13% extra CPU utilization on this small box.

0 Helpful

nleachman
Level 1
Level 1
In response to Adam Frederick

‎02-10-2006 05:29 AM

Adam,

Thank you for the reply.

I really appreciate knowing that the sharp jump is to be expected - I was expecting something less than a 100% increase in CPU; and it's helpful to know that the 256 sig set is close in performance to the built-ins.

Many thanks,

Nick

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card