CPU load and traffic latency after activating Anti-Bot and/or Anti-Virus blade on Security Gateway
||R75, R76, R77, R77.10, R77.20, R77.30
||Gaia, SecurePlatform 2.6, Crossbeam XOS
|Platform / Model
After activating Anti-Bot and/or Anti-Virus blade and installing the Threat Prevention policy on Security Gateway:
Issue mostly occurs when passing complex traffic like CIFS, NFS, etc.
Output of "fwaccel conns" command shows the involved complex traffic with either "S" flag, or "F" flag - the traffic goes via Medium path (PXL), or via Firewall path / Slow path (F2F) - i.e., traffic is not fully accelerated.
The involved traffic is inspected by Anti-Bot / Anti-Virus blade even if it is not matched to any rule in the Threat Prevention policy.
Note: To view this solution you need to