Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 2 subscribers
  • Views 2743 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

VPN passtrough speed issue

C F

After my last solved VPN problem I have another one. This is how the network looks like:

 

UTM1: version 9.580-7, 400/40 internet
UTM2: version 9.510-5,  1000/300 internet

The problem is that if the client with the share connects to UTM2 using L2TP over IPSEC /with Windows 10s built in VPN client/ the file transfer speed to UTM2s network is very slow, only about 3Mbit/sec from the 40 available. If I connect the client directly to the internet /UTM1s WAN cable goes to the client/ the speed is about 35Mbit/sec, so the problem must be on this side. I tried to disable everything /ips, flood protections, portscan, webfilter, qos/ but no change. Can't find anything related in the logs. What could be the problem? Thanks in advance.



This thread was automatically locked due to age.
Parents
  • 0

    Hoi C F,

    What do you learn from doing #1 in Rulz?

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson

    Nothing, because there is nothing related in the logs. I forgott to mention, the speed problem is only there if I upload data from the client, the other way arround the speed is perfect.

  • 0 in reply to C F

    So you confirm that you did look at the logs to confirm that they contained no related lines?  Have you tried ifconfig on the interfaces involved in the upload from the client?

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson

    I checked the firewall log, ips is empty ifconfig on the internal nic shows 0 errors or drops on the wan nic there are a few drops and overruns but the number doesn't change if I reconnect and start an upload.

    But I have found something. The MTU is 576 on the wan nic and it's not correct /the provider is Ziggo with a docsis 3 network/. Did a test with direct internet connection to the client and the max mtu is 1472 this way, and indeed it's 576 through the UTM. I tried to change the value but after I click save when the nic comes up it's 576 again. This is the only problem I have found but on the other hand every other service works perfectly, speedtest shows maximum results.

Reply
  • 0 in reply to BAlfson

    I checked the firewall log, ips is empty ifconfig on the internal nic shows 0 errors or drops on the wan nic there are a few drops and overruns but the number doesn't change if I reconnect and start an upload.

    But I have found something. The MTU is 576 on the wan nic and it's not correct /the provider is Ziggo with a docsis 3 network/. Did a test with direct internet connection to the client and the max mtu is 1472 this way, and indeed it's 576 through the UTM. I tried to change the value but after I click save when the nic comes up it's 576 again. This is the only problem I have found but on the other hand every other service works perfectly, speedtest shows maximum results.

Children
No Data
Unfiltered HTML