This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Slow TFTP through firewall

We recently upgraded to 9.102 and also started running UTM on a VM.  Since then tftp transfers have been extremely slow (avg of 3 mins for a 30mb file) and even worse when multiple tftp transfers are initiated.  TFTP transers work well when on the same network as the TFTP server though (12 seconds for the same 30mb file).  The UTM and TFTP servers are on the same network.

I have run tcpdump/Wireshark on both ends and can watch all the packets pass successfully, the only difference is that the stream of packets seems to "pause" every one or two seconds when the file transfer is initiated from a different network.  The different networks resides on the same switches in our data center, so I know it is not a physical link issue.

The dashboard says less than 30% CPU and less than 25% of memory is being used, so I do not think the box should be slowing things down.  Other services such as the web filter seem to be fine.

I also tried turning off IPS, but that did not make a difference.

Any other ideas?

Thanks,

Everett

This thread was automatically locked due to age.

0 BarryG over 12 years ago

Hi,
Check the logs (firewall, IPS (even if IPS is disabled), web protection/http).
It could be the UDP flood protection, which would show in the IPS log.

Barry
Cancel
Vote Up 0 Vote Down

Cancel
0 efpii over 12 years ago

Well it turns out that the servers' route tables originally included static routes through our router directly to our internal networks. However, at some point when the servers were moved to another ESX box, udev changed the NIC's name from eth0 to eth1 thereby only loading the default route through the UTM which caused the slowness of the TFTP transfers. Fixed the NIC name and rebooting fixed the issue.

Thanks,

Everett
Cancel
Vote Up 0 Vote Down

Cancel