XG: ISP 20 Mbps, users getting no more than 10 Mbps - no IPS, policies, or checks

You don't need QOS and remember the QOS is in bytes not bits. Also you need to run top while doing your testing to see if  one of the CPUs is max'ing out because 25% CPU load would indicate a core is running flat out.

Also please check your LAN settings to make sure they are set for auto negotiate and displays 1gbs connection.

Ian

Thanks for your quick reply!

1. QoS is essential on my LAN since the WAN pipe is only 20 Mbps. However, I turned it off for the tests to make sure it wasn't throttling the clients. I'm aware QoS is in bytes - irks me to no end. Why does Sophos insist on using kB instead of Mb?
2. I checked 'top' during one of the tests - CPU was not running hot.
3. Interface is set to auto and is connected at 100 (it's old...). Also set it to 100 manually, no difference. Keep in mind that the test from the XG CLI (using the same interface) was able to download at the full 20 Mbps. Therefore, I don't believe there's an issue with the interface.

Thanks for your quick reply!

1. QoS is essential on my LAN since the WAN pipe is only 20 Mbps. However, I turned it off for the tests to make sure it wasn't throttling the clients. I'm aware QoS is in bytes - irks me to no end. Why does Sophos insist on using kB instead of Mb?
2. I checked 'top' during one of the tests - CPU was not running hot.
3. Interface is set to auto and is connected at 100 (it's old...). Also set it to 100 manually, no difference. Keep in mind that the test from the XG CLI (using the same interface) was able to download at the full 20 Mbps. Therefore, I don't believe there's an issue with the interface.

Forget using qos on your lan, it will cause you grief. It will affect your inter lan traffic.
ian

Sure - but I have little choice. Our office won't re-open until September at the earliest and all I have at the moment is a 20 Mbps mobile hotspot to share between work obligations and remote school. That's up from 3 Mbps DSL. We're half a mile, but $75,000 away from broadband.

QoS has served us well, troubled as it is.

Either way, with QoS disabled/bypassed I'm getting barely half of the 20 Mbps WAN speed on the LAN side. It would appear that  something SFOS-related is the culprit.

Hopefully we'll be able to plug into Starlink soon, but if XG is not giving me more than 10 Mbps on the LAN-side it won't help to have 100-300 Mbps on the WAN-side.

Hi,

my home system has a 50/20 WAN and various devices that connect at 1gbs and a couple that connect at 10gbs. The internet shares via the XG which does not allow one download to hog the bandwidth. The only QOS I have in place is to ensure the VoIP devices have a guaranteed minimum connection speed.

It was not that long ago that I had an 3.5/0.8 ADSL service with the same QOS settings.

Ian

Regardless of QoS (which I disabled for the test), I'm stil not seeing more than 10 Mbps from WAN to LAN. Given that the XG server itself is getting the full 20+ Mbps, any idea what's causing XG to deliver no more than 10 Mbps to the clients?

Hi,

things to look at are

1/. switch configuration

2/. can clients connect to the network at 100mb/s or 1gb/s?

3/. are you running full duplex connections on your network?

Ian

Those are good suggestions. I'm using a pair of Sophos AP 110C access points in a mesh, but your reply made me realize I never tried eliminating that from the test configuration.

I'll try that as soon as possible and report back.

New test: connected a client directly to the LAN port. Speeds were a little below 20 Mbps, but not much.

Looks like the problem lies in the Sophos AP mesh or the (unmanaged) switch between the main AP and XG.

I'll get to the bottom of that once I have a faster connection from my ISP. Could be months or even years...