04-21-2009 08:06 PM
=> hi, how about after u disable the screening function ( please be note: u shoud check both of ip address to verify wheater attack or not) ?
=> if u enable VPN, what P1 propsoal dan p2 proposal that u use ? do u use AES encryption ?
=> do u enable policy count on traffic shaping policy ?
04-21-2009 11:43 PM
After I disabled the spoofing function. it have reduce the CPU running around 5x% but it still getting
high CPU at the morning and sometime.
My VPN p1 and p2 are using the "pre-g2-3des-sha " and " nopfs-esp-3des-sha" with 11 VPN tunnel used.
no AES encryption use
I have enable the policy count on traffic shaping at two or three tunnel.
04-22-2009 12:48 AM
Could u disable policy counting for troubleshooting purpose and monitoring ?
btw if after disable it the CPU still high we should calculate for the packet rate.
04-22-2009 03:23 AM
My policy count is enabled after the CPU getting high, it mean that the policy counting is enabled recent.
I haven't enable any policy counting before.
How to calculate the packet rate. would you mind to teach me about it
04-24-2009 10:32 PM