Hi Guys,
Have been considering enabling PrioQ on an appliance that suffers from spikes from time to time.
Reading PrioQ SK came across the following limitation:
What is this queue? is it safe to disable?
Also, is it not a better core disposition 1 SND and 1 FW for dual core platforms?
What's your take?
Thanks!
As I stated in my book, 2-core firewalls are between a bit of a rock and a hard place. The only documentation I've seen for variable fwmultik_sync_processing_enabled being set to 0 states that "This limits the CPU to handle fewer stack functions simultaneously.. ". The other related kernel parameters are:
I guess setting fwmultik_sync_processing_enabled to 0 limits parallel processing or CPU monopolization by a Firewall Worker? Not really sure...
Here are the relevant pages from my book covering how to handle 2-core firewalls:
| User | Count |
|---|---|
| 16 | |
| 8 | |
| 8 | |
| 8 | |
| 5 | |
| 5 | |
| 4 | |
| 4 | |
| 3 | |
| 3 |
Tue 25 Mar 2025 @ 09:00 AM (CET)
CheckMates Live Paris: Harmony – Protection avancée de l’espace utilisateurTue 25 Mar 2025 @ 09:00 AM (EDT)
Canada In-Person Cloud Security with Hands-On CloudGuard Workshops!Wed 26 Mar 2025 @ 04:00 PM (IST)
Validating Cyber Exposures: How To Continuously Test Exposures For ExploitabilityThu 27 Mar 2025 @ 03:00 PM (CET)
Be Your Own TAC Part Deux: Advanced Gateway Troubleshooting Commands - EMEAThu 27 Mar 2025 @ 02:00 PM (EDT)
Be Your Own TAC Part Deux: Advanced Gateway Troubleshooting Commands - AmericasTue 01 Apr 2025 @ 11:00 AM (IDT)
Simplifying Zero Trust with Infinity Identity: Centralized, Scalable, Secure - EMEAWed 26 Mar 2025 @ 04:00 PM (IST)
Validating Cyber Exposures: How To Continuously Test Exposures For ExploitabilityThu 27 Mar 2025 @ 03:00 PM (CET)
Be Your Own TAC Part Deux: Advanced Gateway Troubleshooting Commands - EMEAThu 27 Mar 2025 @ 02:00 PM (EDT)
Be Your Own TAC Part Deux: Advanced Gateway Troubleshooting Commands - AmericasTue 01 Apr 2025 @ 11:00 AM (IDT)
Simplifying Zero Trust with Infinity Identity: Centralized, Scalable, Secure - EMEATue 01 Apr 2025 @ 06:00 PM (IDT)
Simplifying Zero Trust with Infinity Identity: Centralized, Scalable, Secure - AmericasWed 02 Apr 2025 @ 03:00 PM (CEST)
The Power of SASE: Smarter Security, Stronger Network - EMEATue 25 Mar 2025 @ 09:00 AM (CET)
CheckMates Live Paris: Harmony – Protection avancée de l’espace utilisateurTue 25 Mar 2025 @ 09:00 AM (EDT)
Canada In-Person Cloud Security with Hands-On CloudGuard Workshops!Thu 10 Apr 2025 @ 10:00 AM (EEST)
CheckMates Live Sofia - Maintenance and Upgrade Best Practices
