Skip to main content
NetApp Knowledge Base

Enabling SMB 3 encryption reduces CIFS performance

Views:
943
Visibility:
Public
Votes:
0
Category:
ontap-9
Specialty:
perf
Last Updated:

Applies to

  • ONTAP 9
  • SMB 3
  • SMB Signing and/or SMB Encryption
  • FAS2500 series

Issue

  • After enabling SMB 3 encryption reduced throughput or increased latency is observed for CIFS sessions
  • SMB signing is enabled and this message is seen:
Node: FAS2554-01
Time: Tue, May 03 20:44:54 2022 -0400
Severity: ALERT

Message: Nblade.cifsNonAesNiBytesProc: Excessive SMB3 cryptographic processing load (AES-NI instruction set is not supported).

Description: This message occurs when a system with CPUs that do not support the AES-NI instruction set is performing
SMB3 encryption or signing of a large amount of data.
These cryptographic operations can degrade performance severely for both SMB and other system operations.

Corrective Action: Avoid encrypted or signed SMB3 traffic on systems that do not support the AES-NI instruction set.

Source: SMBOffloadPool_00
Sequence#: 1065458

 

Sign in to view the entire content of this KB article.

New to NetApp?

Learn more about our award-winning Support

Scan to view the article on your device