Hi there,
I had deployed several UTM 110 boxes at customer sites troughout 2014.
One customer (16 mps down/1mbps up ADSL) is now experiencing delays while browsing websites. He told me that usually websites needed about 3 to 4 seconds to open up completely. Now sometimes they need up to 15 seconds according to him.
Firmware is 9.211-3 (I know... will be upgraded to 9.3xx this evening).
I could NOT reproduce this behaviour. At least when I turn off web protection, the troughput nearly reaches 16 mbps.
But I found some posts indicating that using the UTM (or any device) with a router instead of a simple modem may create delays as there are two devices that have to do NAT instead of one.
Did anyone here ever test if and how this 'double NAT situation' causes perfomance issues?
The customer may be willing to upgrade his hardware soon.
Assuming there now is this 16 mbps line BUT it's possible that some time in the future he will get a 50 mbps/10 mbps VSDL line... which device would you recommend?
No RED devices, no access points (yet, but max. 1-2, if ever), no VPN, no heavy use (five users but only one with >100 e-mails a day and some pretty big downloads).
Moduls currently activated:
- Firewall
- IPS (7289 of 23000 patterns)
- Web Filtering
- Network visibility
- Antivirus and Antispyware (http/https)
While the SG 115and SG 125 (and even SG 135 and SG 210) seem affordable, their subscriptions are not. [:D]
So I guess only the SG 115 or SG 125 are options here. Will they do a much faster job/will they be capable enough for a 50/10 line?
Last question: Some years ago it had been a golden rule to not let your firewall(s) do the dial-up. So I chose the double NAT scenario.
Are the UTMs/SGs doing a good and stable job when it comes to establishing dial-up connections?
Sorry for my english. [:$]
Best Regards,
bfg
This thread was automatically locked due to age.
