Hi All,
I'm an engineer with much more experience with Checkpoint, Cisco ASA's and Palo Alto Firewalls. We have a client who is experiencing very slow performance from the UTM 425 unit when IPS and/or Web Filtering is active. I've opened a support call and they can't seem to get me a straight answer regarding firewall performance, how to identify why the throughput is dropping so drastically or even escalate my call to the next level of support.
Can people confirm the throughput for single flow we should be able to expect with all the IPS protections enabled (all protections + all ages). Sophos Support said that they do not have documentation that will show the throughput we can expect with their product using those features.
Does 35Mbps seem reasonable for max browsing speeds with the IPS and Web Filtering activated?
===========================
UTM 425 Gateway
Version 9.312-8
RAM = 32% of 8GB
Log Disk = 21% of 150GB
Data Disk = 20% of 115GB
LAN Utilization = 25 to 50Mbps avate during business hours
I was able to confirm LAN to DMZ 750Mbps throughput with iPERF testing.
===========================
Internet Circuit = 200Mbps
SpeedTest.net = 185Mbps down / 95Mbps up (-IPS / -WebFilter)
SpeedTest.net = 45Mbps down / 25Mbps up (+IPS / -WebFilter)
SpeedTest.net = 35Mbps down / 25Mbps up (+IP / +WebFilter)
+IPS = IPS Enabled
-IPS = IPS Disabled
+WebFilter = Web Filtering Enabled
-WebFilter = Web Filtering Disabled
===========================
Thanks all.
This thread was automatically locked due to age.
