isa2004 is it ok to disable logging?

firwall service (wspsrv.exe) on isa 2004 is spiking cpu uasage.  in doing my research one option is to change logging from sql to w3c format. I am not oppose to just stopping loggin all together.  I would like to some input from anyone who has insight on this.  Thanks for your time.
brianpcollinsAsked:
Who is Participating?
 
Keith AlabasterConnect With a Mentor Enterprise ArchitectCommented:
lol - if you don't care then obviously it is a fair approach.

Yes, it is OK to not log using the approach above. From ISA's perspective there is a difference between electing to not log and being unable to log (out of disk space on the logging drive etc).

The inability to log will stop all firewall services - blocking all throughput - until the condition is corrected whereas choosing that state is fine
0
 
Keith AlabasterEnterprise ArchitectCommented:
It CAN be done but is a crap approach - part of the whole purpose of the firewall is to be able to identify trends, usage etc.

http://support.microsoft.com/kb/838241
0
 
brianpcollinsAuthor Commented:
thanks for the input.  I know why logging is important, however we are replacing this box and don't care. i was looking for other input prior to doing it, to avoid the server totaly not working.  thanks again.
0
 
brianpcollinsAuthor Commented:
You were correct, stopped all logging and caching, restarted server , all is ok.  We needed this box to stay alive while we transition to a new method and needed best performance possible. Thanks for your input and time.
0
 
Keith AlabasterEnterprise ArchitectCommented:
Welcome :)
0
All Courses

From novice to tech pro — start learning today.