I'm struggling with IPS performance under Xen.
I've a 100Mb fibre connection, and running my UTM as the only virtual machine on a reasonable machine. It has plenty of RAM + CPU.
The NICS are "Intel 80003ES2" however, they are showing up as RealTek in the VM? Is that normal. (details below)
I've got Web Filtering off, vanilla firewall rules.
Speed test shows around 60Mbps Down and 10Mbps Up (as a blunt tool) with IPS off, and around 20Mbps Down and 10Mbps Up with IPS on. My rules are in the picture below.
Downloading ISO images simultaneously shows similar degradation in performance, but the hardware reports for the server show that it's hardly blinking - no swapping, cpu
ethernet interface hardware object REF_ItfEthEth1RealtSemic
device hardware (hardware) = eth1
description (description) = Realtek Semiconductor Co., Ltd. RTL-8139/8139C/8139C+
auto-negotiation flag (auto_negotiation) = 1
auto-negotiation switch (auto_negotiation_status) = 1
supported link mode list (supported_link_modes) = 10baseT/Full,10baseT/Half,100baseT/Full,100baseT/Half
hardware MAC address (mac) = ea:c6:70:fd:1d[:D]b
interrupt request (irq) = 36
PCI device ID (pcidev) = 0x8139:0x1
MII flag (mii) = 1
HA link monitoring switch (link_monitoring) = 1
ethernet interface hardware object REF_ItfHwDefaultInternal
device hardware (hardware) = eth0
description (description) = Realtek Semiconductor Co., Ltd. RTL-8139/8139C/8139C+
auto-negotiation flag (auto_negotiation) = 1
auto-negotiation switch (auto_negotiation_status) = 1
supported link mode list (supported_link_modes) = 10baseT/Full,10baseT/Half,100baseT/Full,100baseT/Half
hardware MAC address (mac) = aa:3d:1d:8c:f2[:D]6
interrupt request (irq) = 32
PCI device ID (pcidev) = 0x8139:0x1
MII flag (mii) = 1
HA link monitoring switch (link_monitoring) = 1
Img at: http://take.ms/pliRdo
This thread was automatically locked due to age.
