Firewall Wizards mailing list archives
Re: NetScreen Logging with NSRP
From: Kerry Milestone <km4 () sanger ac uk>
Date: Thu, 27 Mar 2008 15:58:13 +0000
Hello, thanks for your tips. I think the majority is from VPN traffic, and one solution may be to get an acellerator card to offload some of this. Alas, an offline audit may be the best option here. CHeers, Kerry. Peter Bruderer wrote:
If a Netscreen is constantly running at 80% on the active and 5% on the passive you have really high traffic. Usually with Netscreen you only get these high load if you do IPsec at the limit of the machine. Do you have an idea how many sessions you have on these machines? Do you have broadcast storms in that network?
Avishai Wool wrote:
Kerry, one thing you could consider is an "offline audit" using something like the AlgoSec Firewall Analyzer (www.algosec.com) . it works of
-- The Wellcome Trust Sanger Institute is operated by Genome Research Limited, a charity registered in England with number 1021457 and a company registered in England with number 2742969, whose registered office is 215 Euston Road, London, NW1 2BE. _______________________________________________ firewall-wizards mailing list firewall-wizards () listserv icsalabs com https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
Current thread:
- NetScreen Logging with NSRP Kerry Milestone (Mar 26)
- Re: NetScreen Logging with NSRP Avishai Wool (Mar 26)
- Message not available
- Re: NetScreen Logging with NSRP Kerry Milestone (Mar 28)
- <Possible follow-ups>
- Re: NetScreen Logging with NSRP Peter Bruderer (Mar 26)