Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hello,
I am working on a DMZ design for a public website and I'm trying to find some information on the performance of the SSL decryption on both FirePOWER devices (such as the 7000/8000 series) and for the FirePOWER service on the firewall itself (...
Here is a question for Pix gurus:What puts a heavier load on a Cisco Pix firewall:- 4000 DNS requests generating 1 MB of traffic or- 1000 HTTP requests generating 50 MB of traffic or- 10 FTP downloads generating 500 MB of trafficIs the Pix using more...
Without an option to evaluate the real impact of real traffic, I have to assume the worst case scenario. I know it can be less, maybe 50% but when asked to offer a guarantee you cannot take chances. Cisco puts numbers for many things, just not for th...
Thanks, indeed, I am excluding the option where the firewall is doing the decryption. Still I cannot find details on how the FirePOWER appliances perform in regards to SSL decryption (throughput, sessions, etc).
See this link for some "real-life" notes related to the monitoring of Pix firewalls: http://www.eventid.net/firegen/pixanalysis.aspAdrian Grigorofwww.firegen.comFirewall Log Analyzers
See FireGen for Pix Log Analyzer. Lots of features, security analysis, traffic reports, configuration analysis, ip forensics and more.See http://www.eventid.net/firegen/firegenpix2.asp
You need to define an alias - see http://www.cisco.com/en/US/products/sw/secursw/ps2120/products_command_reference_chapter09186a00801727a3.html#wp1083304 for details.Regards,Adrian GrigorofDeveloper, FireGen for Pix Log Analyzerwww.firegen.com
