This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos UTM 9.2 VmWare low cpu utilization problem

Hi.

I run a 9.2 image on my vmware server with 2 VXNET3 nics.

i have 2 networks:

10.0.1.0/24 Server LAN
10.0.4.0/24 Computer LAN

when i transfer a file from a server to a computer with 10gbit nic the transfer peaks at 98 MB/s. when i look at my cpu utilization at my sophos it peaks at 20%

I have tried with vShield Edge firewall with the same Server / Computer and then the filetransfer peaks at 202MB/s so i think sophos is the bottleneck.

does ayone have any suggetions to why?

Regards
Sindre

This thread was automatically locked due to age.

Parents

0 BarryG over 11 years ago

Hi,

(Assuming you have multiple CPU cores assigned to the VM)

The UTM's IPS (snort) runs one process per network stream. i.e. a single stream will be bottlenecked by the top speed of a single core.

Consider optimizing (turning off unneeded rulesets, using the Aging system) the IPS for your network, or creating an exception for fileserver traffic.

Barry
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 BarryG over 11 years ago

Hi,

(Assuming you have multiple CPU cores assigned to the VM)

The UTM's IPS (snort) runs one process per network stream. i.e. a single stream will be bottlenecked by the top speed of a single core.

Consider optimizing (turning off unneeded rulesets, using the Aging system) the IPS for your network, or creating an exception for fileserver traffic.

Barry
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data