We're running Check Point Firewall-1 NG-AI R55-HFA18 on a Sun SunFire
v480 server, running Solaris 8. The day after DST change, we
launched Smart Dashboard to add a new host to an existing rule. I
didn't realize that I had the checkbox for automatic Smart Defense
updates turned on. When I installed the change to the policy a new
SD update went in as well. Even though none of the new SD updates
were enabled, our throughput went horribly bad. We're on a full 45Mb
DS3 and we were only getting 28k throughput. Looking at my CPU
utilization, both CPU's on the v480 were slammed.
Working with our vendor, we discovered the SD updates and went
through and disabled all Smart Defense settings we could. This has
helped bring our throughput back up, but here's something new to the
mix.
Looking at our /var/adm/messages log, I'm seeing the following error:
fw: [ID 891460 kern.notice] FW-1: fwlddist_adjust_buf: dropped 100000
active connections updates because the system is too loaded. It is
recommended to close active connections.
Any suggestions as to what I should look at? My scalp hurts from so
much hair being pulled out.
Layne Meier
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[EMAIL PROTECTED]
=================================================
