Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 6 replies
  • Subscribers 27 subscribers
  • Views 2853 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Wifi Seperate Zone Performance

Andreas Leopold

Hello!

I have a strange Problem.

My XG Firewall has connected a RED 15 with 2 AP15.

The AP15 are used for 2 Wifi Networks:

Internal Wifi (Bridged to AP LAN)

Guest Wifi (Seperate Zone)

 

The Internet Connection is 20/5MBit. In the Internal Wifi i can Use the full 20/5 Mbit - the Speed Tests are Okay.

In the Guest Wifi i have only 0,5MBit Download, the Upload is OK.

The Problem exists since i installed the RED and 2 AP's. Before the 20/5 Connection the RED was behind a 8/0,768 Connection and i thought the Problem is because the slow Upload. But with the new Internet Connection the Problem still exists.

I tried several Things from here:

https://community.sophos.com/products/xg-firewall/f/wireless-networking/113635/slow-performance-on-a-separate-zone-wifi-guest

  • I created a new Seperate Zone Interface
  • I set offload tso off
  • I made a IPS Exception and tried to stop the IPS Service

The Problem still exists. Can anyone help me?



This thread was automatically locked due to age.
Parents Reply
  • 0 in reply to Andreas Leopold

    MTU Size is more likely 1500 on the Shell.

    There is some kind of "issue" in the GUI, that Wireless Networks in Webadmin shows you 1450 MTU Size, but if you check the "real" MTU Size on the Shell, it should be 1500. 

    That is more likely true, because the MSS should not be higher than the MTU. 

     

     

    You should start to dig deeper in this Issue. 

    Login via CLI (Advanced Shell).

    Use 'drppkt | grep AP_IP' 

    Do you see any drops on the Shell? 

     

    __________________________________________________________________________________________________________________

Children
  • 0 in reply to LuCar Toni

    Hi!

     

    Sorry, but i don't see any drops.

    I tested it on a Client on Internal Bridge to AP WLAN via VNC - Speedtest OK

    Then i switched the Client to Seperate Zone WLAn - Speedtest Performance not OK - even VNC Performance is very poor.

    After the Speedtest the VNC Connection was dropped with a Timeout.

     

    MTU is 1500 and MSS is 1460. But the Web Interface says MTU is 1460.

     

    Any Ideas?

  • 0 in reply to Andreas Leopold

    Today i set MTU in Console to 1300, just for a try. IPS restarted and the Performance was much better.

    Now i think , the Problem should be related to the MTU. But why doesn't it work with a newly created WIFI?

Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?