CPU usage with ACLs

Hello, I was performing some stress testing to a NV3430. When I applied an ACL to the WAN interface the CPU usage increased to 82 % while when I performed a similar test using QoS, the CPU usage was 72%.

In both scenarios I had a 35MB bandwidth. This behavior seems unusual to me. If someone could give me some feedback, I'll appreciate.A

About my NV:

ADTRAN, Inc. OS version

  Mainline Version: ENM.11.033

  Checksum: 94208C9A

  Built on: Fri Jan 06 14:55:51 2012

  Upgrade key: dbf62262cb74d31da2f2326c36998608

Boot ROM version

  Checksum: E962

  Built on: Fri Aug 07 08:48:28 2009

Copyright (c) 1999-2012, ADTRAN, Inc.

Platform: NetVanta 3430, part number 1202820G1

Serial number LBADTN1132AC213

Flash: 134217728 bytes  DRAM: 134217727 bytes

First you may want to look at upgrading your unit as the firmware is pretty old 10.9.4 is the current extended maintenance release, although your firmware number is higher it is actually more then a few years old, Adtran unified it's firmware numbering scheme more then two years ago making 10.X the newest line to all products.  .  And finally I think you maybe pushing the limits of a 3430 the 3430 was designed to be used for two T1 upstream connections which is 3MB of bandwidth, the two Ethernet ports are designed more with internal connections in mind, although other configurations are possible.  I think you maybe pushing the 3430 a little harder then it was designed for and I would recommend upgrading to a 4430 or off loading the firewalling to a firewall device.  Just my opinon based on the way I read the product literature for the 3430.

John Wable

