[FLEX/ATP]Why does UTM feature on USG sometimes not work as expected?
Zyxel Employee
Question:
During working hours, sometimes we can access web sites which are not allow to access based on the profile of content filter. The content filter doesn’t seem to work. Moreover, Anti-virus also does not work at the same time.
Why does UTM feature on USG sometimes not work as expected?
Answer:
The device goes into "Memory conserve mode" to bypass UTM feature when memory is running out.
By default, Memory conserve mode is on.
When the device enters conserve mode, the UTM bypass is activated to recover memory space.
When enough memory is recovered, the device is leaving the conserve mode to turn on UTM feature.
You can adjust thresholds to define enter and leave conserve mode depending on the amount of free memory.
Router(config)# mem-conserve utm-bypass rising-threshold xxx
The CLI above defines a value to enter memory conserve mode. The UTM feature is off when memory is less than rising-threshold.
Router(config)# mem-conserve utm-bypass falling-threshold xxxx
The CLI above defines a value to exit memory conserve mode. The UTM feature is on when memory is greater than falling-threshold.
Router> show mem-conserve status
Check if the device is in conserve mode.
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 145 Nebula Ideas
- 94 Nebula Status and Incidents
- 5.6K Security
- 239 USG FLEX H Series
- 267 Security Ideas
- 1.4K Switch
- 71 Switch Ideas
- 1.1K Wireless
- 40 Wireless Ideas
- 6.3K Consumer Product
- 247 Service & License
- 384 News and Release
- 83 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.2K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 83 About Community
- 71 Security Highlight