Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 28 subscribers
  • Views 1613 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Response Time (ms) Web filter & HTTP scan

eriikooz

Hi,

Decided to install Sophos XG Home on my HP ML310e Gen8 server. Perfect firewall for my home use.

Everything works very well except from the HTTP scan and Web filter. When i activate the filter and http scan on my default firewall rule, the response time on the webpages increases. HTTP scan settings are set to real time and use single engine.

Response Time without filter and http scan: ~2,87ms, response time with filter and http scan enabled: ~8-11,98ms. Speedtest sites also stop to work when doing the upload test if I have the http scan enabled. Adding exceptions for that sites to skip the malware scan will fix that.

Interesting facts are that the connection speed (download/upload) are the same if you have the filter enabled or not. The filter and scan seems only to effect the response time (ms). I use a single ISP ethernet connection (50-100/10 Mbit/s). Normal download speed ~73 Mbit/s, upload speed ~10,73 Mbit/s.

Have tried to search to forums for a solution but without success.

Regards,

Erik



This thread was automatically locked due to age.
Parents
  • 0

    What os are you using? On a DL360 G6 with 2disks raid1 and Proxmox I see no difference.
    First of all, if you have enough ports, try to use dedicated lan port for the XG and a dedicated WAN.

    I have 3 lans on mine. One is the LAN for Proxmox and all the other VMs, one is for XG LAN(which connects to the same switch) and 1 for XG WAN(to the modem)

  • 0 in reply to Panagiotis Vakerlis

    I'm using VMware ESXi 6.5 U2 (HP PreGEN9 image). CPU Xeon e3-1220v2, 2xgbic, 16 GB RAM.

    I already have a dedicated NIC (nic0) and a dedicated virtual switch for the WAN port (PortB).

    LAN port (PortA) is a also a dedicated separate NIC (nic1) and is connected to a dedicated virtual switch named LAN.

    Strange issue I must say.

Reply
  • 0 in reply to Panagiotis Vakerlis

    I'm using VMware ESXi 6.5 U2 (HP PreGEN9 image). CPU Xeon e3-1220v2, 2xgbic, 16 GB RAM.

    I already have a dedicated NIC (nic0) and a dedicated virtual switch for the WAN port (PortB).

    LAN port (PortA) is a also a dedicated separate NIC (nic1) and is connected to a dedicated virtual switch named LAN.

    Strange issue I must say.

Children