Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
302
Views
0
Helpful
4
Replies

Slow performance

rjain
Level 1
Level 1

‎01-16-2004 12:24 PM - edited ‎03-09-2019 06:09 AM

We installed the PIX firewall. Moved the web server to DMZ interface. Now webserver is responding slow. What may be the reason. We have pix 6.3(1) and pIX 515 Restricted.

Labels:
0 Helpful
4 Replies 4

l.mourits
Level 5
Level 5

‎01-16-2004 02:30 PM

In most cases slow responses are due to a lack of nameresolving. Lot of people forget that most webservers do use reverse namelookup before sending respons to the visitor. If this traffic is blocked on the dmz interface, this request times out after which the respons to the visitor is send. The visitor experiences slow respons.

But this is just a lucky shot. I would need to have more information on the setup and on your config to be more specific. But check this first if you want.

There´s also a good document on CCO on this problem which can be found at:

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_tech_note09186a0080094459.shtml

Kind regards,

Leo

0 Helpful

moriarty7
Level 1
Level 1
In response to l.mourits

‎01-23-2004 07:02 AM

It could also be the amount of traffic you are trying to push through this Firewall and how many users this server is supposed to support. Do you know either of these stats?

0 Helpful

rvdoever
Level 1
Level 1

‎01-29-2004 12:39 PM

How's the webserver connected? Using a cross-cable? If so check the speed/duplex settings at both sides, make sure they are set to the same settings at both sites. Setting them both to auto-negotiation should be fine.

0 Helpful

patrick.cannon
Level 1
Level 1

‎01-29-2004 04:35 PM

What type of authentication is going on, are you accessing a domain controller on the other side of the firewall for anything?

Are you accessing a database server on the inside of the firewall?

If you configured database access through the firewall and it is microsoft, did you open all the ports? If the server uses RPC did you do the reghacks to make that work through the firewall?

0 Helpful
Customers Also Viewed These Support Documents