We have the following phenomenon / problem:
As soon as we activate a firewall rule that controls HTTP / HTTPS access (To top priority LAN to WAN) the web policy, the CPU load is constantly increased to 99.9 %.
As soon as we take out the filter, the load goes down again. The same applies to the malware scans, for example HTTP scan.
- 100 Kb/s - 500 Kbps maximum on the WAN interface
- in the web policy only one category is stored in the web policy
- The IPS settings are all active, but they do not affect the CPU load
- Malware scanning options are all disabled
- Pharming Protection is disabled
- tcp and udp flood is not activated
- it happens in 16.5.3 and also 16.5.7
In the awarrenhttp.log I often see the following message:
1505204736.496967459[15548/ (nil)] aptpscanner. c: 169 create_aptp_instance APTP unavailable
1505204736.497019971[15548/0x7f68fc414000] aptpscanner. c: 267 threat_scan APTP unavailable
As well as this one.
1505204846.928649047[15548/0x7f68fc414000] epoll. c: 1424 plain_write_vector Write error on the epoll handler 30 (Connection reset by peer)
1505204846.979740973[15548/0x7f68f971f971f000] epoll. c: 1424 plain_write_vector Write error on the epoll handler 41 (Connection reset by peer)
What setting options did I miss?
I've already seen this question, but I haven't found a helpful answer to it.
I am grateful for every tip ! Many thanks in advance.
Max
This thread was automatically locked due to age.
