Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 15 replies
  • Answers 1 answer
  • Subscribers 43 subscribers
  • Views 3635 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Slow/Freezing SMB Traffic over Sophos XG Gateway Opening

Simplified Sam

Hello,

since adding the Sophos XG as man in the middle / gatway to our network, we have speed issues more or less, specially over SMB.

At moment the XG is connectet over 1 gig port to the main switch, the main switch has sub switches, at main switch are also the servers connected. (Switches are also 1 Gig and have atleast 2-4 up/down to the other switch)

Our network is seperated with vlan's clients and servers, about 50-70 clients, and the diagnostics graphs on sophos-xg looks low?.

While copying files over smb i get abot 100 mb/s so i think this fine, even if i notices sometimes freezes time to time and this was worst about half year ago, the speed was then for longer time at 20 mb/s or less and freezed, but i cant say for sure i was copying multiple files then. (Lots of user opens 2D CAD files, and the opening speed is over network much slower.) I did see this on multiple pc's over time.

So i did now some testing with a zip file on our SMB Server (Windows Server, domain joined) with Samsung_Magician_Installer_Official_7.3.0.1100.ZIP. (188 mb, unpacked about 193 mb)

The Zip contains a exe, now opening with my older pc over smb the zip with winrar and starting the exe out of the zip directly, takes ages, like you can count 1% per secound or less! Opening it locally on desktop, whole file about 2-5 secounds.(On HDD, so speed should be about the same)

On other pc which is newer and got maybe one less network-switch beween sophos/server, its lots faster but still slow and you can see it stuttering.

Between the old and new pc in same vlan between 2-3 switches, it's like opening it locally on my old pc. So i guess it's the sophos.
(Between Servers on same vlan on same switch, open's like a champ, so no antivirus/endpoint protection neither!)

Now on my firewall all is disabled and grayed out, got pc --> server with any ports (testing). Advances protection on/off makes no difference. So it should not look into the traffic, right? Or do i miss somehting? 

XGS2100 (SFOS 19.5.2 MR-2-Build624)



This thread was automatically locked due to age.
Unfiltered HTML