Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Suggested Answer
  • Replies 2 replies
  • Answers 1 answer
  • Subscribers 40 subscribers
  • Views 374 views
  • Users 0 members are here
Options
Suggested

Sophos XGS136 SFOS 21.0.0 with High CPU Utilization

shdan

Hello!

After updating to SFOS 21.0.0, we're facing a high CPU utilization.

I've found that snort is related to IPS Engine. Pattern updates for IPS and Application signatures are updated and a few days ago I've flushed Device Reports (before updating to SFOS 21.0.0.The only way to decrease CPU Utilization is deactivating IPS protection.

Any thoughts?

Regards,

Daniel



Added TAGs
[edited by: Erick Jan at 12:53 AM (GMT -8) on 6 Dec 2024]
  • 0

    Hi,

    this seems like a repeat issue. I think the last forum member that had this issue found they had a loop in one for their firewall rules.

    Please check your rules.

    Ian

    XG115W - v20.0.2 MR-2 - Home

    XG on VM 8 - v21 GA

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to rfcat_vk

    Hello rfcat!

    I’ve checked and the reason for high cpu utilization is an app installed in all of computers. It sync a lot of files and IPS can not deal with that. Can you direct me how to bypass specific URLs and files from IPS checking? I’ve found some topics related to custom IPS signature, and FQDN added to bypass the URL used by this app. However, I’m beggining with Sophos and need more information how to do that.

    Thanks!

    Daniel

Unfiltered HTML