comp.security.firewalls archive
Re: NetScreen 5XT botteling up network
Date: Tue Jul 12 2005 - 02:27:03 CEST
In article <1120753354.444509.277090@z14g2000cwz.googlegroups.com>,
Lars Raaum <lars.raaum@gmail.com> wrote:
>Hi,
>
>We have had some problems with NS 5XT Elite:
>
>After about 10 days it bottles up the network; traffick becomes slow
>and the firewall has to be restarted - and then all's good for another
>10 days.
>
>We have a fast internet connection (100mpbs) on the WAN side, and the
>NS 5XT working in transparent mode. About 20 policies, and maybe 12 gb
>traffic/day.
>
>Any clues to what the problem is?
>Could this be capacity or hardware problem? is the unit faulty or do we
>need a higher performance unit (if so, examples welcome...).
What version of ScreenOS? I've also heard of issues when copying
configs from another model and the firewall spins it's wheels
trying to make sense of them. Check the tcp timeouts and see if
they've been set unnecessarily high. I wonder what "get sock" says too.
Can you opeen a ticket with Juniper?
alan
Received on Thu Sep 29 19:58:30 2005