This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

PPPoE connection on XGS 2100 SFOS 19.0.0 GA-Build31 - slow page loading

Hi, 

I have problem with pppoe connection which I don't know how to solve 

MTU 1492

MSS 1452

no web policy

no ips

no DoS

tried changing port (on port 2 connection was terrible)

Problem is that pages are loading slow, after I press "enter" on url nothing happens for 10 seconds and then it start to looking for page. I checked on multiple pc's, diferent browsers and directly plugged to lan port (without other clients).  Internet speed is about 200 mbps faster on ISP equipment. Behind XG I get around 350 download and 200 upload. 

Maybe this has to do something with dns but I don't know how to troubleshoot.

Thanks. 

Carlo



This thread was automatically locked due to age.
Parents
  • As soon as the PPPoE connection is established the firewall loses connection with Sophos Central and firewall itself cannot resolve any hostnames.

    2022-07-24 11:32:34Z WARN API.pm[6598]:119 SFOS::Common::Central::API::send_request - 500 Can't connect to dzr-utm-amzn-eu-west-1-9af7.upe.p.hmr.sophos.com:443 (Bad hostname)
    Content-Type: text/plain
    Client-Date: Sun, 24 Jul 2022 11:32:34 GMT
    Client-Warning: Internal response
    
    Can't connect to dzr-utm-amzn-eu-west-1-9af7.upe.p.hmr.sophos.com:443 (Bad hostname)
    
    LWP::Protocol::https::Socket: Bad hostname 'dzr-utm-amzn-eu-west-1-9af7.upe.p.hmr.sophos.com' at /lib32/perl/site_perl/5.20.1/LWP/Protocol/http.pm line 47.
    
    2022-07-24 11:32:34Z INFO API.pm[6598]:120 SFOS::Common::Central::API::send_request - HTTP::Request failed due to a SSL verification error
    2022-07-24 11:32:34Z ERROR Tools.pm[6598]:97 SFOS::Common::Central::Tools::report_status - EAGAIN: Temporary error while accessing Sophos Central or Sophos Central indentity could not be verified.
    

    XGS2100_RL01_SFOS 19.0.0 GA-Build317# nslookup utm.cloud.sophos.com
    ;; connection timed out; no servers could be reached
    
    XGS2100_RL01_SFOS 19.0.0 GA-Build317#
    

    When I specify name server manually then it resolves

    XGS2100_RL01_SFOS 19.0.0 GA-Build317# nslookup utm.cloud.sophos.com 1.1.1.1
    Domain Name Server#  1.1.1.1
    Domain Name       #  utm.cloud.sophos.com
    Resolved Address 1#  hub-nsg-cloudhub-eu-west-1.prod.hydra.sophos.com.
    Resolved Address 1#  hub-spinnaker-278430500.eu-west-1.elb.amazonaws.com.
    Resolved Address 1#  34.243.182.71
    Resolved Address 2#  52.17.171.245
    Resolved Address 3#  54.77.73.158
    Total query time  #  127.37 msec
    
    

    Resolving google.com

    XGS2100_RL01_SFOS 19.0.0 GA-Build317# nslookup google.com
    Domain Name Server#  127.0.0.1
    Domain Name       #  google.com
    Resolved Address 1#  142.251.39.78
    Total query time  #  0.12 msec
    Domain Name       #  google.com
    Resolved Address 1#  2a00:1450:400d:80e::200e
    Total query time  #  0.06 msec
    
    

    Resolving community.sophos.com

    XGS2100_RL01_SFOS 19.0.0 GA-Build317# nslookup community.sophos.com
    ;; connection timed out; no servers could be reached
    

    pppoe log

    Connect time 0.1 minutes.
    Sent 0 bytes, received 24 bytes.
    Failed to create /etc/ppp/resolv.conf: Read-only file system
    local  IP address XXX.XXX.XXX.XXX 
    remote IP address 10.0.0.1
    primary   DNS address XXX.XXX.XXX.XXX <- isp dns
    secondary DNS address 10.0.0.1
    WARNING ; Jul 24 11:31:58Z  ; SYSTEM ; JSON_PARSOR    ; Unable to find handler for key: if_config;
    INFO    ; Jul 24 11:31:58Z  ; SYSTEM ; LINK           ; ;
    INFO    ; Jul 24 11:31:58Z  ; SYSTEM ; LINK           ; interface = Port2;
    INFO    ; Jul 24 11:31:58Z  ; SYSTEM ; LINK           ;               zonetype = 2;
    INFO    ; Jul 24 11:31:58Z  ; SYSTEM ; LINK           ;               zoneid = 2;
    INFO    ; Jul 24 11:31:58Z  ; SYSTEM ; LINK           ;               gatewayid = 1;
    INFO    ; Jul 24 11:31:58Z  ; SYSTEM ; LINK           ;               gatewayid6 = 0;
    INFO    ; Jul 24 11:31:58Z  ; SYSTEM ; LINK           ;               enabled = Yes;
    INFO    ; Jul 24 11:31:58Z  ; SYSTEM ; LINK           ;               linktype = Physical;
    INFO    ; Jul 24 11:31:58Z  ; SYSTEM ; LINK           ;               mtu = 1500;
    INFO    ; Jul 24 11:31:58Z  ; SYSTEM ; LINK           ;               mss = 0;
    INFO    ; Jul 24 11:31:58Z  ; SYSTEM ; LINK           ;               interface_speed = none;
    INFO    ; Jul 24 11:31:58Z  ; SYSTEM ; LINK           ;               mac-address = (null);
    INFO    ; Jul 24 11:31:58Z  ; SYSTEM ; LINK           ;               parent_ifname = ;
    INFO    ; Jul 24 11:31:58Z  ; SYSTEM ; LINK           ;               system interface = Port2_ppp;
    INFO    ; Jul 24 11:31:58Z  ; SYSTEM ; LINK           ;               master = ;
    INFO    ; Jul 24 11:31:58Z  ; SYSTEM ; IP             ; Total Interface = 0;
    INFO    ; Jul 24 11:31:58Z  ; SYSTEM ; NEIGH          ; Total Interface = 0;
    INFO    ; Jul 24 11:31:58Z  ; SYSTEM ; DHCPRELAY      ; Total Interface = 0;
    INFO    ; Jul 24 11:31:58Z  ; SYSTEM ; LINK_PHYSICAL  ; set system interface 'Port2_ppp';
    INFO    ; Jul 24 11:31:58Z  ; SYSTEM ; LINK_COMMON    ; ioctl: interface 'Port2_ppp' group '2';
    INFO    ; Jul 24 11:31:58Z  ; SYSTEM ; LINK_COMMON    ; ioctl: interface 'Port2_ppp' nettype '2';
    INFO    ; Jul 24 11:31:58Z  ; SYSTEM ; LINK_COMMON    ; ioctl: interface 'Port2_ppp' gateway '32769';
    INFO    ; Jul 24 11:31:58Z  ; SYSTEM ; LINK_COMMON    ; ioctl: interface 'Port2_ppp' gateway '0';
    WARNING ; Jul 24 11:31:58Z  ; SYSTEM ; IP             ; Not Found any data for IP.;
    INFO    ; Jul 24 11:31:58Z  ; SYSTEM ; ND_MAIN        ; time taken for do_nd_action is 0.000000.;
    INFO    ; Jul 24 11:31:58Z  ; SYSTEM ; ND_MAIN        ; sending reply: 0;

    when I use another GW from another ISP I don't have any issues with page loading speeds, connection to central or anything, only with downloading speed because link is 40/10. When I switch to fiber pppoe with greater speeds i get somekind of delay when browsing internet. 

  • I have the feeling, something is truly broken with your PPPoE Connection. 

    Are you sure, the config of the Interface is correct? 

    __________________________________________________________________________________________________________________

  • port2

    WAN zone

    Preferred IP set

    username / password set

    DSLvlan set

    Interface speed set to auto

    MTU set to 1500

    MSS 1452

    nothing more configured on that interface

  • Hi  Carlo 

    Please check with the interface negotiation 100FD or 100HD ,you may also check if there is any negotiation issue between WAN or LAN with the next-in-line device.

    Open Console go to Option 4 and type ethe command

    console > system dia uti band       "press 'u' twice"

    Check if there is any error's E/S  (error/second)

    If so then lower the link speed.

    Also, another step provide us the output of the command;

    Console> sh net interfaces

    Thanks and Regards

    "Sophos Partner: InfrassistTechnologies Pvt Ltd".

    If a post solves your question please use the 'Verify Answer' button.

Reply Children
  • Also, another step provide us the output of the command;

    Console> sh net interfaces

    "Sophos Partner: InfrassistTechnologies Pvt Ltd".

    If a post solves your question please use the 'Verify Answer' button.

  • GuestAP          Zonetype:UNBOUND MAC Address:deleted  MTU:1500
                     IPv4 Addr(s): 10.255.0.1/24 Bcast:10.255.0.255
                     UP BROADCAST MULTICAST
                     RX State: packets:0 bytes:0 (0.0 B)
                               errors:0 dropped:0 overruns:0 frame:0
                     TX State: packets:0 bytes:0 (0.0 B)
                               errors:0 dropped:0 overruns:0 carrier:0
    
    
    Port1            Zonetype:LAN  MAC Address:deleted  MTU:1500
                     IPv4 Addr(s): 10.2.0.1/24 Bcast:10.2.0.255
                     IPv6 Addr(s): fe80::7e5a:1cff:febe:4024/64 (link-local)
                     Speed:1000Mb/s Full Duplex  Auto Negotiation:yes
                     UP BROADCAST RUNNING MULTICAST
                     RX State: packets:2285160 bytes:1316762988 (1.2 GiB)
                               errors:0 dropped:11 overruns:0 frame:0
                     TX State: packets:4332024 bytes:5436615106 (5.0 GiB)
                               errors:0 dropped:0 overruns:0 carrier:0
    
    
    Port2            Zonetype:WAN  MAC Address:deleted  MTU:1500
                     IPv4 Addr(s): 192.168.1.2/30 Bcast:192.168.1.3
                     IPv6 Addr(s): fe80::7e5a:1cff:febe:4025/64 (link-local)
                     Speed:-1Mb/s Full Duplex  Auto Negotiation:yes
                     UP BROADCAST MULTICAST
                     RX State: packets:3782415 bytes:4635820552 (4.3 GiB)
                               errors:0 dropped:0 overruns:0 frame:0
                     TX State: packets:1991648 bytes:1125156785 (1.0 GiB)
                               errors:0 dropped:0 overruns:0 carrier:0
    
    
    Port3            Zonetype:WAN  MAC Address:deleted  MTU:1500
                     IPv6 Addr(s): deleted (link-local)
                     Speed:1000Mb/s Full Duplex  Auto Negotiation:yes
                     UP BROADCAST RUNNING MULTICAST
                     RX State: packets:8255498 bytes:10525493413 (9.8 GiB)
                               errors:0 dropped:0 overruns:0 frame:0
                     TX State: packets:3541676 bytes:721057176 (687.6 MiB)
                               errors:0 dropped:0 overruns:0 carrier:0
    
    
    Port3.995        Zonetype:WAN  MAC Address:deleted  MTU:1500
                     IPv6 Addr(s): deleted (link-local)
                     Speed:1000Mb/s Full Duplex  Auto Negotiation:yes
                     UP BROADCAST RUNNING MULTICAST
                     RX State: packets:8049383 bytes:10311885516 (9.6 GiB)
                               errors:0 dropped:0 overruns:0 frame:0
                     TX State: packets:3541710 bytes:692638654 (660.5 MiB)
                               errors:0 dropped:0 overruns:0 carrier:0
    
    
    Port4            Zonetype:UNBOUND MAC Address:deleted  MTU:1500
                     Speed:-1Mb/s Full Duplex  Auto Negotiation:yes
                     BROADCAST MULTICAST
                     RX State: packets:0 bytes:0 (0.0 B)
                               errors:0 dropped:0 overruns:0 frame:0
                     TX State: packets:0 bytes:0 (0.0 B)
                               errors:0 dropped:0 overruns:0 carrier:0
    
    
    Port5            Zonetype:UNBOUND MAC Address:deleted  MTU:1500
                     Speed:-1Mb/s Full Duplex  Auto Negotiation:yes
                     BROADCAST MULTICAST
                     RX State: packets:0 bytes:0 (0.0 B)
                               errors:0 dropped:0 overruns:0 frame:0
                     TX State: packets:0 bytes:0 (0.0 B)
                               errors:0 dropped:0 overruns:0 carrier:0
    
    
    Port6            Zonetype:UNBOUND MAC Address:deleted  MTU:1500
                     Speed:-1Mb/s Full Duplex  Auto Negotiation:yes
                     BROADCAST MULTICAST
                     RX State: packets:0 bytes:0 (0.0 B)
                               errors:0 dropped:0 overruns:0 frame:0
                     TX State: packets:0 bytes:0 (0.0 B)
                               errors:0 dropped:0 overruns:0 carrier:0
    
    
    Port7            Zonetype:UNBOUND MAC Address:deleted  MTU:1500
                     Speed:-1Mb/s Full Duplex  Auto Negotiation:yes
                     BROADCAST MULTICAST
                     RX State: packets:0 bytes:0 (0.0 B)
                               errors:0 dropped:0 overruns:0 frame:0
                     TX State: packets:0 bytes:0 (0.0 B)
                               errors:0 dropped:0 overruns:0 carrier:0
    
    
    Port8            Zonetype:LAN  MAC Address:deleted  MTU:1500
                     IPv4 Addr(s): 10.2.1.1/24 Bcast:10.2.1.255
                     IPv6 Addr(s): fe80::7e5a:1cff:febe:402b/64 (link-local)
                     Speed:1000Mb/s Full Duplex  Auto Negotiation:yes
                     UP BROADCAST RUNNING MULTICAST
                     RX State: packets:3250942 bytes:537519630 (512.6 MiB)
                               errors:0 dropped:8 overruns:0 frame:0
                     TX State: packets:6819093 bytes:9447905884 (8.7 GiB)
                               errors:0 dropped:0 overruns:0 carrier:0
    
    
    PortF1           Zonetype:UNBOUND MAC Address:deleted  MTU:1500
                     Speed:-1Mb/s Full Duplex  Auto Negotiation:yes
                     BROADCAST MULTICAST
                     RX State: packets:0 bytes:0 (0.0 B)
                               errors:0 dropped:0 overruns:0 frame:0
                     TX State: packets:0 bytes:0 (0.0 B)
                               errors:0 dropped:0 overruns:0 carrier:0
    
    
    PortF2           Zonetype:UNBOUND MAC Address:deleted  MTU:1500
                     Speed:-1Mb/s Full Duplex  Auto Negotiation:yes
                     BROADCAST MULTICAST
                     RX State: packets:0 bytes:0 (0.0 B)
                               errors:0 dropped:0 overruns:0 frame:0
                     TX State: packets:0 bytes:0 (0.0 B)
                               errors:0 dropped:0 overruns:0 carrier:0
    
    
    PortMGMT         Zonetype:LAN  MAC Address:deleted  MTU:1500
                     IPv4 Addr(s): 10.0.1.1/28 Bcast:10.0.1.15
                     IPv6 Addr(s): fe80::7e5a:1cff:febe:4023/64 (link-local)
                     Speed:65535Mb/s Full Duplex  Auto Negotiation:yes
                     UP BROADCAST MULTICAST
                     RX State: packets:267 bytes:19566 (19.1 KiB)
                               errors:0 dropped:0 overruns:0 frame:0
                     TX State: packets:6 bytes:688 (688.0 B)
                               errors:0 dropped:0 overruns:0 carrier:0
    
    
    erspan0          Zonetype:UNBOUND MAC Address:00:00:00:00:00:00  MTU:1450
                     BROADCAST MULTICAST
                     RX State: packets:0 bytes:0 (0.0 B)
                               errors:0 dropped:0 overruns:0 frame:0
                     TX State: packets:0 bytes:0 (0.0 B)
                               errors:0 dropped:0 overruns:0 carrier:0
    
    
    gretap0          Zonetype:UNBOUND MAC Address:00:00:00:00:00:00  MTU:1462
                     BROADCAST MULTICAST
                     RX State: packets:0 bytes:0 (0.0 B)
                               errors:0 dropped:0 overruns:0 frame:0
                     TX State: packets:0 bytes:0 (0.0 B)
                               errors:0 dropped:0 overruns:0 carrier:0
    
    
    ifb0             Zonetype:UNBOUND MAC Address:deleted  MTU:1500
                     IPv6 Addr(s): fe80::b4ee:cdff:fed7:bbc1/64 (link-local)
                     UP BROADCAST RUNNING NOARP
                     RX State: packets:0 bytes:0 (0.0 B)
                               errors:0 dropped:0 overruns:0 frame:0
                     TX State: packets:0 bytes:0 (0.0 B)
                               errors:0 dropped:0 overruns:0 carrier:0
    
    
    mvmgmt0          Zonetype:UNBOUND MAC Address:deleted  MTU:9600
                     IPv6 Addr(s): fe80::68da:57ff:fe4f:7fa5/64 (link-local)
                     UP BROADCAST RUNNING MULTICAST
                     RX State: packets:220379 bytes:66408997 (63.3 MiB)
                               errors:0 dropped:0 overruns:0 frame:0
                     TX State: packets:197626 bytes:40674778 (38.7 MiB)
                               errors:0 dropped:0 overruns:0 carrier:0
    
    
    oct0             Zonetype:UNBOUND MAC Address:deleted  MTU:10000
                     IPv6 Addr(s): fe80::f:ff:fe0b:9849/64 (link-local)
                     Speed:10000Mb/s Full Duplex
                     UP BROADCAST RUNNING MULTICAST
                     RX State: packets:17181540 bytes:17717663524 (16.5 GiB)
                               errors:0 dropped:0 overruns:0 frame:0
                     TX State: packets:16441607 bytes:17447592681 (16.2 GiB)
                               errors:0 dropped:11 overruns:0 carrier:0
    
    
    pport_l0         Zonetype:UNBOUND MAC Address:deleted  MTU:1500
                     Speed:-1Mb/s Full Duplex  Auto Negotiation:yes
                     BROADCAST MULTICAST
                     RX State: packets:17421506 bytes:16904042137 (15.7 GiB)
                               errors:0 dropped:0 overruns:0 frame:0
                     TX State: packets:16686717 bytes:16773512045 (15.6 GiB)
                               errors:0 dropped:0 overruns:0 carrier:0
    
    
    pport_l0s0p0     Zonetype:UNBOUND MAC Address:deleted  MTU:1500
                     Speed:-1Mb/s Full Duplex  Auto Negotiation:yes
                     BROADCAST MULTICAST
                     RX State: packets:16684912 bytes:16773512045 (15.6 GiB)
                               errors:0 dropped:0 overruns:0 frame:0
                     TX State: packets:17421507 bytes:16973728243 (15.8 GiB)
                               errors:0 dropped:0 overruns:0 carrier:0
    
    
    pport_l254       Zonetype:UNBOUND MAC Address:deleted  MTU:1500
                     UP BROADCAST RUNNING MULTICAST
                     RX State: packets:0 bytes:0 (0.0 B)
                               errors:0 dropped:0 overruns:0 frame:0
                     TX State: packets:0 bytes:0 (0.0 B)
                               errors:0 dropped:0 overruns:0 carrier:0
    
    
    reds1            Zonetype:LAN  MAC Address:deleted  MTU:1500
                     IPv4 Addr(s): 192.168.10.2/30 Bcast:192.168.10.3
                     IPv6 Addr(s): fe80::243:7ff:fe50:1e04/64 (link-local)
                     UP BROADCAST RUNNING MULTICAST
                     RX State: packets:191291 bytes:28266588 (26.9 MiB)
                               errors:0 dropped:77 overruns:0 frame:0
                     TX State: packets:183551 bytes:20082352 (19.1 MiB)
                               errors:0 dropped:573 overruns:0 carrier:5
    
    
    spq              Zonetype:UNBOUND MAC Address:deleted  MTU:1500
                     BROADCAST MULTICAST
                     RX State: packets:0 bytes:0 (0.0 B)
                               errors:0 dropped:0 overruns:0 frame:0
                     TX State: packets:0 bytes:0 (0.0 B)
                               errors:0 dropped:0 overruns:0 carrier:0

  • Why there is no ipv4 address on pppoe port ? Maybe it uses ipv6 dns servers?

  • Hi Carlo

    Can you place an unmanaged switch between the PPPoE modem router and Sophos XG?

    Regards 

    "Sophos Partner: InfrassistTechnologies Pvt Ltd".

    If a post solves your question please use the 'Verify Answer' button.