Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 4 replies
  • Subscribers 2 subscribers
  • Views 1550 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

IPS on ASG 110

MacDrive
Sup people!

IPS on an ASG 110 8.3 which is connected to a Zyxel Modem-Router for VDSL50(/10) is giving us some headaches. When IPS is turned OFF, speed is about 42/8. When turned ON it drops to 13/5. IPS Log gives some 'FWM snort[13257]: ERROR: dcerpc2: dce2_co.c(1952) Could not create DCE/RPC frag reassembled packet' and 'S5: Session exceeded configured max bytes to queue 1048576 using 1048854 bytes (server queue)' entries. Also SSL-connection to our main office seems far too slow either with or without IPS.
RAM/CPU seems normal and doesn't really goes up to max.

Any ideas where to tweak? 

No Licence for Mail/Web-Security, so just Network-Security.

Thx a bunch


This thread was automatically locked due to age.
Parents
  • 0
    Good call, Barry!

    We added the internal network (192.168.2.x) and the zyxel router-network into the list.

    I made the same mistake several years ago when I was learning the Astaro.  Only put "Internal (Network)" in 'Local networks' and disable/delete those new Exceptions.

    Cheers - Bob
Reply
  • 0
    Good call, Barry!

    We added the internal network (192.168.2.x) and the zyxel router-network into the list.

    I made the same mistake several years ago when I was learning the Astaro.  Only put "Internal (Network)" in 'Local networks' and disable/delete those new Exceptions.

    Cheers - Bob
Children
No Data