Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 11 replies
  • Answers 3 answers
  • Subscribers 40 subscribers
  • Views 3324 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SFOS 18.0.0 GA-Build354 Extremely slow throughput - XG Home - Physical Box

Daniel Bingham

Hi,

 

I am running Sophos Home XG on a Shuttle PC with 2X GbE port (Intel i211) NIC's on the board.

 

I am experiencing extremely bad throughput.

 

I am in Australia - NBN FTTP connected via PPPoE with Internode.

So, running 17.5 MR10, no issue whatsoever.

 

Now SFOS 18.0.0 GA-Build354 it is terrible.

 

I have:

  • Messed with the Port 2 MTU - Originally set at 1500, I seem to be getting the best speed with 1425
  • Opened the Firewall rule and disabled:
    • Block QUIC
    • Apply Web Based Traffic Shaping (wasn't on anyway)
    • Scan HTTP and decrypted HTTPS
    • Scan FTP for malware
    • Use web proxy instead of DPI engine (wasn't checked)
    • Decrypt HTTPS during web proxy filtering
  • No IPS set

Here is a screenshot with these settings

 

Now, if I go to my NTD and plug my device directly in and setup a PPPoE connection here is what I get:

 

I have rebooted, hard coded speeds on the Port 2 port (100mb Full) as with V18, auto detect fails and hard coding 1000mb also fails - Thanks rfcat_vk for helping with that at this post



This thread was automatically locked due to age.
Parents
  • 0

    Hi Daniel,

    if you open the diagnostics and look at the interface reports are you seeing large number of errors on any interface?

    Which site are you using for the speediest, I found the Telstra sites fail in the upload, the internode worked both ways.

    Ian

    XG115W - v20.0.2 MR-2 - Home

    XG on VM 8 - v21 GA

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to rfcat_vk

    rfcat_vk said:
    if you open the diagnostics and look at the interface reports are you seeing large number of errors on any interface?

     

    Further to my last, I think this is what you're after

     

     

     

    And via advance shell:

    Port2            Zonetype:WAN  MAC Address:80:EE:73:9D:08:FB  MTU:1425
                     IPv6 Addr(s): fe80::82ee:73ff:fe9d:8fb/64 (link-local)
                     Speed:100Mb/s Full Duplex  
                     UP BROADCAST RUNNING MULTICAST
                     RX State: packets:5556684 bytes:7462034286 (6.9 GiB)
                               errors:0 dropped:0 overruns:0 frame:0
                     TX State: packets:4418830 bytes:701010452 (668.5 MiB)
                               errors:0 dropped:0 overruns:0 carrier:0

  • 0 in reply to Daniel Bingham

    Hi Daniel,

    your NTD interface should be running at 1gb/s not 100mb/s.

    Options are

    1/. faulty cable

    2/. faulty NTD

    3/. configured incorrectly

     

    Ian

    XG115W - v20.0.2 MR-2 - Home

    XG on VM 8 - v21 GA

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to rfcat_vk

    rfcat_vk said:
    our NTD interface should be running at 1gb/s not 100mb/s

    It only runs at 100mb with V18.

    V17.5 1gb

    Directly plugged into my PC 1gb

     

    It seems that V18 is way to premature for me.

     

    I am rebuilding and going back to 17.5 MR10

  • 0 in reply to Daniel Bingham

    Hi Daniel,

    before you install mr-10 would please try ann experiment for me, if you have a small 1gb/s switch put it between your XG and the NTD.

    Ian

    XG115W - v20.0.2 MR-2 - Home

    XG on VM 8 - v21 GA

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to rfcat_vk

    Sorry Ian, too late. I have flashed the machine.

     

    Now I have the dreaded

    Operation failed. Please upgrade IPS and application signatures to latest version for this restore

     

    So now trying to "Import" my settings rather than restore from backup ‍♂️

  • 0 in reply to rfcat_vk

    rfcat_vk said:

    Hi Daniel,

    your NTD interface should be running at 1gb/s not 100mb/s.

    Options are

    1/. faulty cable

    2/. faulty NTD

    3/. configured incorrectly

     

    Ian

     

     

    Hi Ian, an update to this for other people's information.

    1. Tried 3 new CAT6's no issue

    2. Faulty NTD - HIGHLY unlikely but I tested with a Pocket Ethernet from NTD Patch to Switch 1gbps, but Switch Patch to NTD 100mb

    3. Configured incorrectly - Yes and No, see below

    The NTD can show 100mb. It is up to the RSP to set the AVC to Auto/Auto. It turns out that Internode (My RSP) manually code it to 100mb unless you are on a business connection with them. Luckily I got an absolute legend at Internode and told him about V18 being painful with port speeds. He fortunately had pfSense at home and had seen a similar issue so he changed my NTD to Auto/Auto.

     

    So I am back on 17.5MR10 and......

     

    So when I get the courage up again to cop a barrage of abuse from COVID-19 isolated kids and wife trying to watch Netflix I will roll back up to V18 Build 354

  • 0 in reply to Daniel Bingham

    Final update to this post...

    Now I am on 1000/1000 I updated back to 354 and speeds are great and everything is working perfectly... so far.

  • 0 in reply to Daniel Bingham

    Hi  

    Thank you for your update and sharing almost every small details with fellow community members, all are can be benefitted from such testing.

    Much appreciated

    Thank you

    Regards,

    Keyur
    Community Support Engineer | Sophos Support
    Sophos Support VideosKnowledge Base  |  @SophosSupport | Sign up for SMS Alerts |
    If a post solves your question use the 'This helped me' link

Reply Children
No Data
Unfiltered HTML