[FLEX/ATP]Why does UTM feature on USG sometimes not work as expected?
Zyxel Employee
Question:
During working hours, sometimes we can access web sites which are not allow to access based on the profile of content filter. The content filter doesn’t seem to work. Moreover, Anti-virus also does not work at the same time.
Why does UTM feature on USG sometimes not work as expected?
Answer:
The device goes into "Memory conserve mode" to bypass UTM feature when memory is running out.
By default, Memory conserve mode is on.
When the device enters conserve mode, the UTM bypass is activated to recover memory space.
When enough memory is recovered, the device is leaving the conserve mode to turn on UTM feature.
You can adjust thresholds to define enter and leave conserve mode depending on the amount of free memory.
Router(config)# mem-conserve utm-bypass rising-threshold xxx
The CLI above defines a value to enter memory conserve mode. The UTM feature is off when memory is less than rising-threshold.
Router(config)# mem-conserve utm-bypass falling-threshold xxxx
The CLI above defines a value to exit memory conserve mode. The UTM feature is on when memory is greater than falling-threshold.
Router> show mem-conserve status
Check if the device is in conserve mode.
Categories
- All Categories
- 392 Beta Program
- 2.1K Nebula
- 117 Nebula Ideas
- 81 Nebula Status and Incidents
- 5.1K Security
- 81 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 69 Switch Ideas
- 914 WirelessLAN
- 34 WLAN Ideas
- 5.9K Consumer Product
- 209 Service & License
- 337 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.9K FAQ
- 907 Nebula FAQ
- 415 Security FAQ
- 236 Switch FAQ
- 206 WirelessLAN FAQ
- 46 Consumer Product FAQ
- 138 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 73 About Community
- 62 Security Highlight