Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Extremely Slow Upload Speeds

Ever since I installed the Sophos firewall, I noticed that I only get about 7-30Mbps upload speed.  I have 1G/1G service and I have ruled many things out and have concluded it is definitely the Sophos firewall software (I have tried 18.0.5 MR-5-Build586 and 18.5.1 MR-1-Build326).   I really want to use this firewall as I like the features and interface over the others.

I get speed tests of ~850Mbps up and down when using any firewall other than Sophos.  This even includes a different software firewall (Untangled) on the same hardware so it's nothing in the hardware that's an issue.  I have attempted the following configurations and verifications:

- verified that no QoS is active

- Disabled all UTM including ATP, DoS protection, Zero-day, ssl/tls inspection, etc...

- Logs don't show anything being blocked

- Packet captures show nothing unusual when getting slow speeds

- even went through various other posts with the same issue and found none that apply

- interfaces have no errors

- MTU is fine

- Top from CLI shows no high RAM or CPU usage during uploads

 

I know the box is capable of handling it as a speed test from the Sophos CLI gets the full speeds.  It's only traffic going through the firewall that is affected.

Hardware specs:

CPU: J3455 @ 1.50GHz (4 cores)

RAM: 6GB

HD: 128GB



This thread was automatically locked due to age.
  • I wanted this to be it, but it looks like I didn't follow the wizard and there doesn't appear to be a bridge interface 

    console> system bridge staticentry show
    bridge | member | macaddr | staticpriority
    -----------------+---------------+-----------------------+---------------

    console>

  • If you have followed the setup wizzard and configured a Bridge interface, this might be the issue.
    Try to delete the bridge interface and connect a client to a "solo" port. 

  • Already off.  I even tried disabling the firewall acceleration.   So far nothing has increased upload speed when traversing Sophos.  

  • Hi,

    try disabling the DDOS settings.

    Ian

    XG115W - v20.0.3 MR-3 - Home

    XG on VM 8 - v21 GA

    If a post solves your question please use the 'Verify Answer' button.

  • There are no duplex issues. I verified the link on all ports and verified that each link can push the designated speeds. As mentioned, if I swap this out with any other firewall, speeds are fine both up and down using the same switches, ports and cables. I have verified that it is definitely the software.  I'm just trying to determine if its a bug or if there is something I can disable that will fix it.  I Like this firewall and would like to keep using it, but I may need to go back to using Untangle instead as that software did not have any speed issues.  

    I feel like I should also point out that I have multiple VLANs on the LAN side in case there are any known issues in that type of setup. 

    Thanks

    Mark 

  • Which connection do you have between XG and Client?

    One or more Switches? Type? 

    Possible there is a duplex-mismatch. Are all (4) affected ports (firewall - switch+switch - client) set to auto-negotiation?


    Dirk

    Systema Gesellschaft für angewandte Datentechnik mbH  // Sophos Platinum Partner
    Sophos Solution Partner since 2003
    If a post solves your question, click the 'Verify Answer' link at this post.