Solved

isa2004 is it ok to disable logging?

Posted on 2012-04-13
5
310 Views
Last Modified: 2012-04-15
firwall service (wspsrv.exe) on isa 2004 is spiking cpu uasage.  in doing my research one option is to change logging from sql to w3c format. I am not oppose to just stopping loggin all together.  I would like to some input from anyone who has insight on this.  Thanks for your time.
0
Comment
Question by:brianpcollins
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 51

Expert Comment

by:Keith Alabaster
ID: 37844075
It CAN be done but is a crap approach - part of the whole purpose of the firewall is to be able to identify trends, usage etc.

http://support.microsoft.com/kb/838241
0
 

Author Comment

by:brianpcollins
ID: 37847069
thanks for the input.  I know why logging is important, however we are replacing this box and don't care. i was looking for other input prior to doing it, to avoid the server totaly not working.  thanks again.
0
 
LVL 51

Accepted Solution

by:
Keith Alabaster earned 500 total points
ID: 37848118
lol - if you don't care then obviously it is a fair approach.

Yes, it is OK to not log using the approach above. From ISA's perspective there is a difference between electing to not log and being unable to log (out of disk space on the logging drive etc).

The inability to log will stop all firewall services - blocking all throughput - until the condition is corrected whereas choosing that state is fine
0
 

Author Closing Comment

by:brianpcollins
ID: 37849151
You were correct, stopped all logging and caching, restarted server , all is ok.  We needed this box to stay alive while we transition to a new method and needed best performance possible. Thanks for your input and time.
0
 
LVL 51

Expert Comment

by:Keith Alabaster
ID: 37849409
Welcome :)
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

ISA Server detected routes through the network adapter LAN that do not correlate with the network to which this network adapter belongs What does this mean and how can one go about correcting it? In simple terms, this error message indicates t…
In all versions of ISA Server and the current version of FTMG, the default https protocol uses TCP port 443 and 563 only. This cannot be changed within the ISA or FTMG GUI and must be completed from a Windows cmd prompt on the ISA Server itself. …
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question