How to optimize SSL VPN connections when BIG-IP is reaching 100% CPU
With a significant increase in the number of remote workers (for example COVID-19), you may see an increase in the number of SSL VPN connections as well as increased CPU usage. This article covers techniques, from the F5 Sales and Support organizations, designed to optimize SSL VPN connections in order to help mitigate CPU performance issues.
Knowledge Article : https://support.f5.com/csp/article/K46161759
- This guidance is made available, and maintained, on our ASK F5 (Support) website.
- This article provides best practices and recommendations to decrease CPU for SSL VPN architectures and related content from ASKF5 around optimizing the CPU usage.
Pete White created a script analysing the BIG-IP configuration and making optimization suggestions : https://devcentral.f5.com/s/articles/APM-Optimisation-Script
To make it more real, I did a video demonstrating the script : https://youtu.be/F0Z1AnM3L54