Another Hardware Question - Dont Shoot

Hi,

when running your speed test, open a console and run top to see which package is using the most CPU .

Please post a screenshot of your IPS setttings?

Ian

Hello,

which IPS settings do you want a screenshot of? The policies or spoof & protection?

Spoof and protection.

Ian

Please see attached screenshots8802.IPS settings.docx

Hi Bobby,

Thank you for the document.

When attaching documents please use the insert pictures etc there is les risk of a virus etc being passed.

There are additional settings within the CLI that further disable IPS.

Now did you try opening and running TOP session to see which application is using the CPU during a download sessions?

Ian

His CPU is probably too weak for 1Gbit.

Also, see if you can squeeze a bit more performance for IPS using hyperscan.

SSH in your XG, go to (4) Device Console and execute: "set ips search-method hyperscan".

Thanks,

Hi Prism,

the CPU is a 2.6ghz quad core which is as you suggested marginal. The other question is whether the CPU is using some form of power saving cpu cycle control which under one connection will not ramp up to full speed.

I would suggest that he start a second speedtest from a different device to see if he can obtain full speed.

Ian

rfcat_vk said:

I would suggest that he start a second speedtest from a different device to see if he can obtain full speed.

"When I swap devices I am able to achieve 900 and up throughput both inbound and outbound. "

rfcat_vk said:

the CPU is a 2.6ghz quad core which is as you suggested marginal. The other question is whether the CPU is using some form of power saving cpu cycle control which under one connection will not ramp up to full speed.

It is his CPU, also just by being quad-core and clocked at 2.6Ghz doesn't mean that much, seriously, his CPU is from a 11 Year old architecture, a lot has changed in the x86 world; With all his 4 Cores being used on CPU and consuming a TDP of 65W It's still the same processing power of a single core on my G5400, which have a max power consumption on It's 2c/4t of 25W.

Also a reminder for you, on single connections you are still stuck on a single core in XG, and his CPU is already weak with It's 4 cores, imagine with just one.

Also power saving features and CPU scheduler won't make this Athlon II X4 inspect traffic at gigabit. That's not a magical thing.

Thanks,

Going back in time to a post by William (William Warren) where he did extensive testing of snort and throughput, the result was cpu speed not cpu processing power, that is why celerons are better or equal to I5 and I7s running at the same CPU speed. He also advised to disable power saving because under a single connection  snort would not ramp up the CPU speed, that is why I suggested he try a multi device speed test.

William's report is why the advice to home users is get the fastest CPU you can get, not necessarily the most powerful.

Ian

All,

Thanks for all the responses. What I'm gathering here is I should purchase a 3.4ghz processor or whatever the highest my mobo will support.

I was looking at purchasing this https://www.amazon.com/dp/B07G9NHRGQ/?coliid=I1H9A49YNMSF2I&colid=3TW03O6WOD1Z7&psc=1&ref_=lv_ov_lig_dp_it

but it's only a Celeron 2.2ghz processor.

I'm going to upgrade my CPU and see what happens.

Again, thanks all for the response. 

Also, if you have a recommended device and/or build that works please share. I'm sure I'm not the only person with this question.

Thanks,