I have recently converted to Sophos from many years of Untangle, and for the most part am quite impressed. But, I am tearing my hair out over some (probably) minor issues.
I have an Intel E3300 on a G31 board with 4GB RAM. I have two 3Com 3C905-TX NICs for WAN & LAN, and a Realtek GbE on-board NIC for my wireless network.
General surfing/gaming/etc works great, and according to the dash board is usually at about 5% or so CPU and 35% RAM usage. However, when downloading stuff, things kind of get sideways.
With the ftp proxy turned on, downloading from my desktop in a browser works OK, but it can sometimes be pretty slow. Running Speedtest is erratic during the test; nothing, then 95+mbit, then the test shows 25-30mbit download. I think that's consistent with my connection, but seems a little slower than what I had with Untangle. Downloading puts the CPU usage into 40-60% usage, from watching the dashboard and CPU log page. I actually had a small spike that showed on the daily log (not weekly) at 99.98% usage.
It makes more sense when you get the Sophos download page, but a lot of these downloads don't see that, so you don't really see what's going on.
Where it has really been problematic is installing software with the FreeBSD ports. I've been setting up some test machines, and it has caused a lot of issues. I install stuff with FreeBSD's Ports collection, and it uses a lot of ftp/fetch. Often times the entire install won't even get off the ground because fetch times out.
Some of it might be App Blocker, because it was blocking Sourceforge (for instance). However, if I turn off ftp proxy and open a firewall port, it works more reliably.
So, is my hardware not fast enough? Would better NICs help, or offloading routing or something to another device?
I would also like to add VPN. Is the E3300's lack of AES-NI going to be detrimental to the VPN noticably?
Thanks for the time!
This thread was automatically locked due to age.
