Thread Info
  • State Suggested Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 14 replies
  • Answers 1 answer
  • Subscribers 31 subscribers
  • Views 12215 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Slow Internet Speeds

BobbyDigital

Hello World,

 

I replaced my CheckPoint firewall with the Sophos XG firewall. With CheckPoint I was averaging about 800mb down and 900mb up. I have a 1GIG fiber connection. With sophos i'm struggling to get 300mb down and just over 500mb up. 

 

I recall seeing an article or two on the best recommended settings to achieve the fastest internet speeds possible via the Sophos XG firewall. 

 

Anyone know where I can relocate the KB and/or does anyone have any recommended settings I could use to achieve the highest speeds possible.

 

I searched several speed related post in this community and tried several to no avail. 

 

Thanks for all responses. 



This thread was automatically locked due to age.
Parents
  • 0

    Hi,

     

    First thing, what appliance you had with checkpoint, and what appliance you currently have with sophos xg?

    Both Checkpoint and Sophos uses x86 on their appliances, so It's good to know what you had before.

    Also how are you testing your internet speed? html5 speedtest? Iperf? Or your using something like Cisco Trex, Avalanche Commander?

     

    Thanks.

  • 0 in reply to Prism

    I was using a 2800 Checkpoint appliance. one of their least powerful appliances by far. 

    I'm using several speed test sites to test my speed. 

    I read another thread to which a user was using FIOS and having the same issue and sophos recommended firewall rule changes and moving the rules to the top. I booked mark the thread but I am no longer able to access it as the thread may have been removed and/or deleted.

    I'm open to any and all suggestions. 

    Thank you to everyone for your responses thus far.

Reply
  • 0 in reply to Prism

    I was using a 2800 Checkpoint appliance. one of their least powerful appliances by far. 

    I'm using several speed test sites to test my speed. 

    I read another thread to which a user was using FIOS and having the same issue and sophos recommended firewall rule changes and moving the rules to the top. I booked mark the thread but I am no longer able to access it as the thread may have been removed and/or deleted.

    I'm open to any and all suggestions. 

    Thank you to everyone for your responses thus far.

Children
  • 0 in reply to BobbyDigital

    BobbyDigital said:
    I was using a 2800 Checkpoint appliance. one of their least powerful appliances by far. 

    Thanks, but what Sophos appliance your currently using? If It's a self build appliance, then what CPU your currently using?

     

    Also something to put in mind, Depending on what speed test your using, If It only spawns a single connection, you will be forced to use only a Single Core on XG.

    Also what version your running on it? v17.5.x or v18 EAP?

     

    Some questions about your rules:

    1) You're using IPS?

    2) Do you have DOS Protection enabled?

    3) Is there QoS being applied?

     

    Thanks,

  • 0 in reply to Prism

    Yes. Self Built appliance for testing. AMD Quad core / 8gigs of memory using only 6. (home license)

     

    version - 17.5.9 MR-9

    1.) IPS is only in logging mode. 

    2.) DOS is DISABLED

    3.) No QOS rules 

     

    Thank you

  • 0 in reply to BobbyDigital

    BobbyDigital said:
    Yes. Self Built appliance for testing. AMD Quad core / 8gigs of memory using only 6. (home license)

     

    2 Things:

    1) What CPU model your currently running? Ryzen? Athlon?

    2) Can you disable IPS in your rule and to the speedtest again? Depending on the CPU you have you should see line-rate throughput, on both download and upload.

     

    Your throughput on XG while using IPS will be fully dependent on what your CPU is capable off.

     

    Thanks,

  • 0 in reply to Prism

    1.) AMD Ahtlon 

    2.) I disabled IPS and I created a new firewall with absolutely nothing enabled and my speed only increase minimally. 

     

    my CPU is at 2% and memory at 33%.

     

    Thanks

  • 0 in reply to BobbyDigital

    Same problem here, guys.

     

    Any response?