SOPHOS XG Slow traffic issue

6 MBit/s on WAN is slow anyway, but assuming it was not more before the SFOS implementation. Because 6 Mbit/s for 30 user looks rather low. What did you use before XGS? And how was the performance? Because this should not cause any issue what so ever. 

there is no issue with Internet traffice. when user sitting in LAN are trying to access oracle servers placed in DMZ then this traffic seems slow. how can i troubleshoot it??? with cyberroam everything was working fine. please guide. 

Can you do some file copy&pastes between client devices and DMZ server (or FTP transfer, whatever) to gauge the throughput. I may be misunderstanding, but doesn't seem like you WAN speeds are relevant in this example.

a http based orcle server is placed in DMZ .  accessibility seems slow. it is perfect when i place old Cyberoam. 

Hello everybody,

we have also slow traffic issue with recently purchased Sophos XG 135. I found this discussion so I jumped in rather then creating new discussion.

In our case we have Sophos XG 135 box connected to Internet (Deutsche Telekom 100/40Mbps) and LAN connections on port 2 and port 4. It is small company with about 15 users but at the moment usage is minor since most users are working from home. Our issue is that maximum download/upload on clients is about 5 to 6Mbps. In case when we have simultaneous downloads from one client connected to port 2 and another connected to port 4 their download speed is about 2 to 3 Mbps while we are having maximum of 5 to 6 Mbps download on WAN link port 1. 

We have checked ISP speed by generating simultaneous SSH sessions (25 sessions) to Sophos box and running continuous ping with 65000 bytes size and we got continuous traffic of about 19/13Mbps on system diagnostics on port 1 (WAN port) among 13/13Mbps were occupied by ping sessions while 6Mbps were occupied by download sessions from mentioned client computers.

Furthermore, we have tested performance while coping file from client 1 (connected to port 2) to client 2 (connected to port 4) and again copy speed was about 5 to 6 Mbps. We use Sophos XG device as router between VLANs were mentioned clients are connected.

I have double checked all settings and I did not found any traffic shaping rule or some other setting that could cause bandwidth limitation.

Today we have performed another test to be sure that networking switches which connect clients and SOPHOS XG box do not cause low traffic performance (although all connections are OK and shows 1Gbps). We have connected directly laptop to port 3 and again maximum download speed never cross 5Mbps. We have conducted several speedtest.net tests with different test servers, mainly Deutsche Telekom servers in Germany.

CPU usage and memory usage on SOPHOS XG box looks good.

Do you have any idea what could cause low traffic performance of SOPHOS XG box?

Best Regards

Haris Alatovic on behalf Frank Boettger.

Are you using DPI (SSL/TLS Inspection)? 

What about a wget speedtest on the appliance itself? You find guides on perform this in the internet. 

Generally speaking without any inspection rules, the speed limiting factors are likely some cable or switch issues or configuration issues on the network (Duplex stuff etc.)

Hello Toni,

thank you for your reply. I have tested wget speedtest on device itself and got about 67Mbps which is quite OK:

We do not have DPI in effect:

However we still have an issue with performance from clients connected via switches or even when laptop is directly connected to SOPHOS XG 125 box (port 3). In either case SOPHOS XG 125 shows Auto negotiated 1000Mbps connections. We have double checked network, switches and UTP cables and everything looks good:

any one please guide me.