07-05-2017 11:15 AM
Modifying the security profiles that come by default to drop. Hardware processing will rise at any given time?
07-06-2017 05:25 AM
Could you elaborate on what you'd like to know exactly ?
The default security profiles cannot be changed so you may be talking about something else.
In most situations changing the action on something (profiles, policies, ..) to drop, as opposed to allow, will lower hardware processing as you're now discarding something instead of applying inspection on the packets.
07-06-2017 07:23 AM
Yes, what I wanted to express was the change in the exceptions. If the security profiles on threats, default and stric, I clone and change signatures that come by default from alert to drop. Would hardware processing increase?
We can see that the signatures have by default to alert the traffic that matches these. If I change the action to drop in these and several more signatures, 98 more. Processing increases gradually?
07-06-2017 08:15 AM
That makes drastically more sense. Your processing wouldn't increase but by the time it gets to threat processing you won't see that big of a decrease either. Anytime you actually drop something you'll actually save a little in processing as it doesn't continue the inspection process, a drop action will never increase processing load.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!