I'm trying to find out what the following two counters are all about and if our rate/count for these counters are anything to worry about regarding Data plane performance issues with our PA2050 Active-Active platform.
Any info would be greatly appreciated.
Warning level indicates a non-error event, in most cases no immediate action is required but it may be beneficial to monitor.
The AHO is used for threat signature pattern matching, and the DFA is used in App-ID signatures and decoder token matches. If signatures are changed, we will mark the FPGA as unavailable, load the new signatures into the FPGA, then unmark it.
The aho_sw_fpga_unavailable and the dfa_sw_fpga_not_loaded counters are something that we shouldnt worry much about and they seen when signatures are updated, and the PANFW marks the FPGAs as unavailable during the loading process. Once the new signatures have been loaded, the FPGA will be marked available again.
The best way to check if the dataplanes are being overloaded are by looking at the below commands,
>show running resource-monitor
>show session info
Where the first command gives a snapshot of the percentage of CPU being used per DP, during a particular time.
The second command shows the total number of sessions active and throughput at that time.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!