Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 7 replies
  • Subscribers 3 subscribers
  • Views 1904 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Anyone else have this problem with ConfD?

BrucekConvergent
We have a lot (read: most) of the IPS rules enabled on our Astaro 6.100 box (P4, 2.4GHz, 512MB RAM), and find that if we click on the little "folder" to go back to the main IPS Rules screen, the ASL times out, we have to hit reload to get webadmin back, and TOP shows CONFD EATING the CPU... looks like it doesn't play nice when CONFD is accessing the DB.. I suggest that this be fixed, soon, as it causes traffic drops, and Daemon restarts as well.


This thread was automatically locked due to age.
Parents
  • 0
    Anyone?

    CTO, Convergent Information Security Solutions, LLC

    https://www.convergesecurity.com

    Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries.  Use the advice given at your own risk.

  • 0 in reply to BrucekConvergent
    Just tried it and couldn't make it fail. I was having that problem on my mandriva workstation/server, but I think that is caused by a problem with the Logitech mouse driver.

    Ian M [:)]
  • 0 in reply to RFCat_vk_01
    Is there a hint in the logs?

    Xeno
  • 0 in reply to Xeno
    I've also experienced that problem with the 120 Security Gateway Appliance as well... it seems when there's a lot of rules configured in IDS, it does this. Both cases, CONFD "ate" the cpu momentarily, which caused the selfmonitoring daemon to think that the alicd and middleware daemons had locked up (they are probably only momentarily rendered unresponsive by CONFD taking up all CPU time), and then they are summarily restarted.  Existing connections are sometimes dropped in this process.

    CTO, Convergent Information Security Solutions, LLC

    https://www.convergesecurity.com

    Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries.  Use the advice given at your own risk.

Reply
  • 0 in reply to Xeno
    I've also experienced that problem with the 120 Security Gateway Appliance as well... it seems when there's a lot of rules configured in IDS, it does this. Both cases, CONFD "ate" the cpu momentarily, which caused the selfmonitoring daemon to think that the alicd and middleware daemons had locked up (they are probably only momentarily rendered unresponsive by CONFD taking up all CPU time), and then they are summarily restarted.  Existing connections are sometimes dropped in this process.

    CTO, Convergent Information Security Solutions, LLC

    https://www.convergesecurity.com

    Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries.  Use the advice given at your own risk.

Children
No Data