Let me say, first, that I have finally been forced over from UTM (why Sophos ever decided to EoL such a stellar product, is beyond me).
It takes a whole other mindset to manage XG here; but, I am slogging through it - have had issues pretty much across the board, and, I am not a fan of the "make a configuration change, and, it doesn't instantly take effect like it did on UTM".
That said, one of my biggest issues right now, is bandwidth across the firewall pair (HA-active\active). I can barely pull 1080p YouTube content, and, my LANcache is downloading in literal bytes/sec. I've increased the bandwidth assigned to all the base QoS profiles; and, have even gone in and "stickied" "High Guarantee" profiles to the related firewall rules, to no avail. I must be missing something here, that works differently than UTM. I've disabled IPS across the board, and, added URL and internal IP exceptions to Web Filtering. I've even tried taking one of the firewall nodes offline, and see no improvement in bandwidth across the firewall. I've got multiple Gb/s available on the WAN side, which I could [nearly] fully utilize under UTM, so, there's something with the XG configuration that is hindering me.
"Hardware" is identical virtualized nodes, running on separate hosts - assigned the maximum CPU and memory under "home" licensing.
This thread was automatically locked due to age.
