Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 20 replies
  • Subscribers 2 subscribers
  • Views 5577 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Kind of a delay before opening webpages

apijnappels
This weekend my ISP upgraded my connection to 150Mbps down / 15Mbps up.
That of course is great, but unfortunately I had to use another modem for this which they also sent me.
The modem is a Cisco EPC3928AD. It looks like it's not possible to configure this device as a bridge so I may be stucked with my UTM behind this NAT device.
I have already given my UTM a static IP in the range of the modem and setup the modem to use this address as a DMZ but some strange things are happening:

One of these problems is that when opening webpages it takes several seconds (4-20) before anything starts to happen and then all of a sudden the pages load very quickly.
I don't see anything suspicious in firewall, IPS or webfiltering logs which would explain this.

I'm using UTM 9.2 beta 9.185-3 but these problems weren't there before my ISP upgraded my connection so I don't yet suspect the beta firmware to be the culprit.


This thread was automatically locked due to age.
  • 0
    what is the cpu type and speed and how much ram?

    Owner:  Emmanuel Technology Consulting

    http://etc-md.com

    Former Sophos SG(Astaro) advocate/researcher/Silver Partner

    PfSense w/Suricata, ntopng, 

    Other addons to follow

  • 0
    Core i5 4760 with performance scaling (not ondemand) and 8 GB of RAM.

    Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

    Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.

  • 0
    do you have a/v on?  I noticed you are running a beta version as well.  This is probably a beta version issue.

    Owner:  Emmanuel Technology Consulting

    http://etc-md.com

    Former Sophos SG(Astaro) advocate/researcher/Silver Partner

    PfSense w/Suricata, ntopng, 

    Other addons to follow

  • 0
    Yes a/v is also on and yes it's beta. However the problem first started directly after the modem change. At that time it had already run for 1 or 2 days using the 9.185-3 beta without problems.
    I'm going to see what happens now, I've just switched web filtering back on. Time will tell if the problem will reoccur, for now it seems not to exist yet.

    Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

    Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.

  • 0
    If the issue persists then i would get another hdd and try 9.1 with the new modem.

    Owner:  Emmanuel Technology Consulting

    http://etc-md.com

    Former Sophos SG(Astaro) advocate/researcher/Silver Partner

    PfSense w/Suricata, ntopng, 

    Other addons to follow

  • 0
    There is a problem with dns-resolver.pl in the current beta (see https://community.sophos.com/products/unified-threat-management/astaroorg/f/81/t/65395).

    Maybe this is related to your problem?

    ----------
    Sophos user, admin and reseller.
    Private Setup:

    • XG: HPE DL20 Gen9 (Core i3-7300, 8GB RAM, 120GB SSD) | XG 18.0 (Home License) with: Web Protection, Site-to-Site-VPN (IPSec, RED-Tunnel), Remote Access (SSL, HTML5)
    • UTM: 2 vCPUs, 2GB RAM, 50GB vHDD, 2 vNICs on vServer (KVM) | UTM 9.7 (Home License) with: Email Protection, Webserver Protection, RED-Tunnel (server)
  • 0
    Could be.... mine is currently using 6.4% of 8GB, so about 524 MB or roughly half a GB.

    Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

    Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.

  • 0
    I had restarted the dns-resolver, but that didn't seem to change anything (except that my used memory went from 30% to 24%).

    Better yet... I called my ISP and just asked them whether it would be possible to get a bridge. The nice man on the phone told me he could setup my router as a bridge if I'd like. This is a setting not available to the end-user, but ISP can set it up. I would however loose my wifi and 3 of the 4 ethernet ports. That of course I completely understand.

    Right now, after switching my router to bridging, the delays seem to be over. Fingers crossed and see if it solved indeed.

    Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

    Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.

  • 0
    As per apijnappels' other thread, his http.log includes this tidbit:

    2013:12:11-09:49:51 utm httpproxy[16089]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0xca4e688" function="connect_server_timeout" file="dns.c" line="754" message="Connection to KNMI - Koninklijk Nederlands Meteorologisch Instituut using IPv6 timed out, re-trying to connect using IPv4"


    The timeout is 60 seconds.  So either his UTM or his modem is not liking IPv6.
  • 0 in reply to Michael Dunn
    As per apijnappels' other thread, his http.log includes this tidbit:

    2013:12:11-09:49:51 utm httpproxy[16089]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0xca4e688" function="connect_server_timeout" file="dns.c" line="754" message="Connection to KNMI - Koninklijk Nederlands Meteorologisch Instituut using IPv6 timed out, re-trying to connect using IPv4"


    The timeout is 60 seconds.  So either his UTM or his modem is not liking IPv6.


    I guess it was my modem, since now it's in bridged mode and all delays are gone.

    Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

    Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.

Cookie Information Banner