Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 7 replies
  • Answers 3 answers
  • Subscribers 41 subscribers
  • Views 4240 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Internet connection speed drops when connected to SSL VPN

Michal Sumega

Hi all,

I meeting a client tomorrow to tshoot his bad experience with internet connection speed when connected to Remote SSL VPN. I'm not an expert so I've made some research and found few things that I check/test. Appreciate any advise that could help me to "look the right direction" 

The client is running on Sophos XG210 (SFOS 19.0.1 MR-1-Build365). His connection drops from cca 140Mb when not on VPN to cca 40Mb when on VPN

  • He is using an old SSL VPN Client so I will install "Sophos Connect" instead
  • I've found that DDOS protection could cause issue, so I've checked and DDOS is not configured at all
  • below is the VPN configuration - is there anything that could cause connection speed goes down?



This thread was automatically locked due to age.
Parents
  • 0

    This could have multiple Reasons

    - Firewall Rules with features Enabled like IPS or Web/SSL Inspection
    - Webrules have bad Regex and causing high CPU usage on the Sophos Firewall
    - The Firewall is maybe to little? Try it with only one user connected and see if its difference
    - DoS Attacks is enabled (Many complaints its cause of many perfomance issues)
    - Maybe to many Firewall rules, try order them, since the firewall is looking through each upside down
    - A connection drop can be caused by other stuff too, not sure how he tested it, like typical windows server smb would start at 200 mb/s and will drop down to 120 mb/s
    (So try it out with something like programm like robocoopy if it's really a issue of the sophos, were target and client are both ssd.)

Reply
  • 0

    This could have multiple Reasons

    - Firewall Rules with features Enabled like IPS or Web/SSL Inspection
    - Webrules have bad Regex and causing high CPU usage on the Sophos Firewall
    - The Firewall is maybe to little? Try it with only one user connected and see if its difference
    - DoS Attacks is enabled (Many complaints its cause of many perfomance issues)
    - Maybe to many Firewall rules, try order them, since the firewall is looking through each upside down
    - A connection drop can be caused by other stuff too, not sure how he tested it, like typical windows server smb would start at 200 mb/s and will drop down to 120 mb/s
    (So try it out with something like programm like robocoopy if it's really a issue of the sophos, were target and client are both ssd.)

Children
No Data
Unfiltered HTML