You may or may not expect that depending on some scenario specifics. It
sounds like you are using only Block/Permit filters, so no
encryption/authentication of traffic is being used, correct? Can you also
reply with your filters (IP sanitized if you wish)? I assume that you are
doing an "Any to Me: Block" filter and then a few "Any to Me, UDP Dest Port
X: Permit" filters, correct? In this case, the statement below is correct
and you shouldn't see a noticeable impact on performance.
If you reply, can you also share your unique IP's per minute and bandwidth
usage numbers?
--
Mark Swift
Software Test Engineer
IP Security
Windows Networking
Microsoft
This posting is provided "AS IS" with no warranties, and confers no rights.
Use of included script samples are subject to the terms specified at
http://www.microsoft.com/info/cpyright.htm
--
"NeedHelp" <(E-Mail Removed)> wrote in message
news:CA7E388B-C57F-4BD8-9724-(E-Mail Removed)...
> To secure our gameservers I have previously been using plain TCP/IP
> filtering. Recently, I did however setup IPsec policies instead. My
> problem
> is that they consume way to much cpu. According to Microsoft "The
> implementation of IPSec policies should not have a noticeable impact on
> the
> performance of the server".
> I have basicly set only to allow all the UDP ports for the gameservers, as
> well as ftp and remote desktop/vnc. But when i enable teh policy, i can
> almost see a double cpu usage then before.
>
> Should I expect this, or have I done something wrong?
Similar Threads
Linear Mode
