 |
Note: You should not tune the device to increase IDP session capacity if you are not using an IDP policy. |
Using the maximize-idp-sessions command, you can tune the device to assign a weight value to functions such as firewall and IDP. By default, the device assigns a greater weight value to firewall functions. By tuning the device accordingly, you can shift this weight value to increase IDP session capacity.
|
Note: You should not tune the device to increase IDP session capacity if you are not using an IDP policy. |
The device ships with an implicit default session capacity setting. This default value gives added weight to firewall sessions. You can manually override the default by adding the maximize-idp-sessions setting to the system. When you do this, you can choose between several weight values: equal, firewall, and IDP. The following table displays the available session capacity weight values and the throughput changes that result when you configure the device to use these values.
Table 151: Session Capacity and Resulting Throughput
|
Note: Throughput numbers are intended as a guide, actual performance may vary depending on security policy and other factors. Refer to datasheet for more information. |
