Forum Discussion
samstep
Mar 29, 2017Cirrocumulus
If you have learning enabled on ASM all the time then that does consume CPU, also anomaly detection based on on URL or client-side integrity will consume CPU.
A particular hog is event correlation, check out this article:
https://support.f5.com/csp/article/K22029939
It is not possible to predict CPU usage under attack, depends on your policy! If you have performance concerns you should consider scaling your architecture/upgrading ASM hardware