Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
419
Views
0
Helpful
1
Replies

Increased CPU due to Firewall

benson.low
Level 1
Level 1

‎06-21-2012 07:02 AM - edited ‎03-07-2019 07:23 AM

Hi CSC,

I came across a interesting sympton. Please refer to the following topology.

host 1 <-> R1 <-> R2 <-> FW<-> host2

host 1 is configured to send syslog to host2, however due to firewall ACL is not configured, this has caused a spike to 99% in R1 which already has 70% - 80% cpu.

My questions are :

1) Even if the firewall is sending RST back to host 1, it should not caused an 20% cpu increase in R1 cpu. Why this is so? Router model is 3620.

2) How do i prevent this from happening in future? This could potentially allow someone to send random traffic to hosts and cause network performance issue. Is there a way to turn off the RST response from the Firewall? This is an Cisco ASA.

Rgrds,

Benson

Labels:
0 Helpful
1 Reply 1

handoko wiyanto
Level 3
Level 3

‎06-22-2012 02:40 PM

hi,

whats the ios on 3620?

so youre saying that if there is a log message sent from host 1, passing trough R1, it will cause a 20% spike cpu process?

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card