We had read the posts about long ping times with MR4 MP1a and saw that ours were consistently below 1 ms. We made one tiny change and our ping times went high and erratic.
Low ping times:
Policies - Intrusion Prevention Policy
Overview - Enable This Policy - CHECKED
Settings - Enable Intrusion Prevention - Un-checked
Settings - Enable Denial of service prevention - Checked
Settings - Enable port scan detection - Checked
Settings - Enable excluded hosts - Checked and exclusions are set for ALL of our internal subnets
Settings - Automatically block an attacker's IP address - Un-checked
Exceptions - None set
--------
So we're looking at this and I said to myself "Self, why do I have this policy enabled if I have an "excluded hosts" entry for all of our internal subnets?" I couldn't think of any reason so I un-checked "Enable this policy" and updated my policy.
-------
As soon as the policy updated the ping times from my computer went through the roof, even to a computer on the same subnet that's about fifty feet of wiring away. I then ran a continuous ping and re-checked "Enable this policy" and did an Update Policy. As soon as the policy updated, the ping times went from 80 - 500 ms to less than 1 ms.
What's up with that?
Ray