Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 6 replies
  • Subscribers 2 subscribers
  • Views 2063 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Hardware sizing - UTM 425 - upgrade needed?

njorge
Could someone recommend an appropriate UTM appliance for our future environment? Is a UTM 425 still appropriate, or is more capacity needed?

Current environment:
UTM 425

Load balances:
50/50 Mbps fiber 
75/15 Mbps cable

Services:
400 Windows workstations
300 Google Chromebooks
300-400 personal devices



Future environment:

Load balances:
100/100 Mbps fiber
75/15 Mbps cable

Services:
400 Windows workstations
600 Google Chromebooks
600 personal devices



This thread was automatically locked due to age.
Parents
  • 0
    It's really not as simple as the number of users.  Much has to do with what they're doing.  That being said, with all modules in use, given your future environment, at a minimum current sizing guidelines recommend an SG550.
    __________________
    ACE v8/SCA v9.3

    ...still have a v5 install disk in a box somewhere.

    http://xkcd.com
    http://www.tedgoff.com/mb
    http://www.projectcartoon.com/cartoon/1
  • 0 in reply to Scott_Klassen
    It's really not as simple as the number of users.  Much has to do with what they're doing.  That being said, with all modules in use, given your future environment, at a minimum current sizing guidelines recommend an SG550.


    Thanks for responding.

    Can you help me with a link to the current sizing guidelines? The only one I could find didn't include the newer SG line of hardware.

    Our firewall processes about 150-200 GB of traffic a day during school days. A lot of that traffic is web browsing, Google Drive, and YouTube/streaming video.

    I also attached screenshots of traffic and concurrent connections, in case that is helpful.

    What we don't use:

    No RED APs
    No e-mail filtering
    No IPS



    What we do use:

    Web filtering for HTTP.
    HTTPS URL filtering only.
    AV Scanning for HTTP.
    Firewall w/ 20 rules approx.
    Network visibility.
    Load balancing.
    QoS rules.

  • 0 in reply to njorge
    Thanks for responding.

    Can you help me with a link to the current sizing guidelines? The only one I could find didn't include the newer SG line of hardware.

    Our firewall processes about 150-200 GB of traffic a day during school days. A lot of that traffic is web browsing, Google Drive, and YouTube/streaming video.

    I also attached screenshots of traffic and concurrent connections, in case that is helpful.

    What we don't use:

    No RED APs
    No e-mail filtering
    No IPS



    What we do use:

    Web filtering for HTTP.
    HTTPS URL filtering only.
    AV Scanning for HTTP.
    Firewall w/ 20 rules approx.
    Network visibility.
    Load balancing.
    QoS rules.



    btw how many interface are in use?  is it only one internal and the two wans?  If there are more interfaces that's going to factor into our appliance recommendations.

    Owner:  Emmanuel Technology Consulting

    http://etc-md.com

    Former Sophos SG(Astaro) advocate/researcher/Silver Partner

    PfSense w/Suricata, ntopng, 

    Other addons to follow

  • 0 in reply to William Warren
    btw how many interface are in use?  is it only one internal and the two wans?  If there are more interfaces that's going to factor into our appliance recommendations.


    Yup - one internal interface, two WANs. Attached are CPU and RAM usage. CPU usage is affected by an issue I'm troubleshooting that is causing httpprox to use a full CPU core until restarted (thread here: https://community.sophos.com/products/unified-threat-management/astaroorg/f/55/t/46671).

    Before and after that jump and plateau is our more typical CPU usage.

    Thanks for the help, btw.
Reply Children
No Data
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?

Unfiltered HTML