What could the problem be and how might it be mitigated?

A customer just deployed Cisco IOS firewall, and it has started to experience issues with applications timing out and overall network slowness during peak hours. The network administrator noticed the following syslog messages around the time of the problem. %FW-4-ALERT_ON: getting aggressive, count (501/500) current 1-min rate 200 What could the problem be and how might it be mitigated?

A customer just deployed Cisco IOS firewall, and it has started to experience issues with applications timing out and overall network slowness during peak hours. The network administrator noticed the following syslog messages around the time of the problem. %FW-4-ALERT_ON: getting aggressive, count (501/500) current 1-min rate 200 What could the problem be and how might it be mitigated?

A.
the DoS max half-open session threshold has been reached.Increase the threshold with the ip inspect max-incomplete high configuration

B.
the Cisco IOS Firewall session license limit has been exceeded.Obtain a new license with more sessions

C.
The router system resource limit threshold has been reached.Replace the router with one that has more memory and CPU power

D.
The aggregate virus detection threshold has been reached identify the affected host and patch accordingly

E.
The per-host new session establishment rate has been reached Increase the threshold with the ip inspect tcp max-incomplete host configuration



Leave a Reply 0

Your email address will not be published. Required fields are marked *