EAP2 noticeable improvements and observations

Dear All

My memory uses has gone down from 60 % to 40 % in VM

Still testing other things

BR

Vishvas

Another observation. Mail is still broken on some of my ISP mail servers the certificate is not trusted in both v17.5.9 where it shows as being trusted on the MBP and V18 EAP2.

Ian

I believe it is normal.  Many caches have been flushed.  It may go back to previous levels within a week.

Paul Jr

Hi folks,

some graphs to show the changes.

Ian

My memory utilization dropped by almost 50 percent.  80% down to 42% in eap2

Can't see any difference... 

MEM | tot 3.9G | free 166.9M | cache 658.2M | dirty 13.5M | buff 167.3M | slab 105.0M | slrec 70.1M | shmem 126.8M | shrss 71.2M | shswp 0.0M | | vmbal 0.0M | | hptot 0.0M | hpuse 0.0M |
SWP | tot 1.0G | free 1.0G | | | | | | | | | | | vmcom 6.4G | vmlim 2.9G | |

top - 13:07:11 up 2:03, 2 users, load average: 0.18, 0.22, 0.11
Tasks: 408 total, 1 running, 353 sleeping, 0 stopped, 0 zombie
Cpu(s): 1.7%us, 1.0%sy, 0.0%ni, 97.0%id, 0.3%wa, 0.0%hi, 0.0%si, 0.0%st
Mem: 4038100k total, 3794436k used, 243664k free, 170480k buffers
Swap: 1048572k total, 776k used, 1047796k free, 672800k cached

PID PR NI VIRT RES SHR S %CPU %MEM TIME+ COMMAND
9889 20 0 3238m 967m 15m S 0.7 24.5 0:36.83 snort
6643 20 0 1191m 948m 15m S 0.0 24.1 1:37.03 snort
6415 20 0 503m 455m 15m S 0.0 11.5 0:40.14 avd
6332 20 0 494m 109m 10m S 0.3 2.8 0:17.95 java
6294 20 0 48024 45m 11m S 0.0 1.2 0:03.03 awed
6902 20 0 68124 40m 22m S 0.0 1.0 0:02.65 ctasd.bin
5148 20 0 62736 39m 10m S 0.0 1.0 0:03.35 garner
6996 20 0 65744 37m 22m S 0.0 1.0 0:02.47 ctasd.bin
6971 20 0 56368 29m 21m S 0.0 0.8 0:04.21 postgres
4213 20 0 30756 28m 5084 S 0.0 0.7 0:35.47 cfs
7989 20 0 30912 27m 5244 S 0.3 0.7 0:03.38 screenmgr.pl
4284 20 0 27832 25m 5396 S 0.0 0.6 0:00.24 red
6963 20 0 58620 24m 14m S 0.0 0.6 0:02.85 postgres

I think the memory usage will creep back up as Big_Buck commented above. I do however see a huge improvement in load average.  

I am usually pretty harsh on sophos for not listening but someone actually listened and tuned the load average. Since v15, I have never seen XG running like a normal linux box with low load averages when the firewall is sitting there idle. Bravo to the developers and PM who actually listened to our feedback and made an effort to make things better.

Regards

Bill

But.  It does not mean its bad for so much anyway.  Logic dictates OS flushes it only when necessary.  Or maybe.  What I am most concerned is the turn around.  If the OS dumps & reads memory on disk constantly, then, THAT means there's not enough.  What I see here, is that it fills slowly over many days.  Which suggest it fills because the OS (or applications) does not detect any flush is necessary.  Much like a teenager with his bed-room. I'll clean it only when I won't be able to close the door anymore.

Paul Jr

An update on the the graphs - memory and load. There is no noticeable increase in memory even after adding 2 more clienteless users in IPv6. Further updating and adding mail rules to allow for the MBP certificate issue with one of my mail accounts.

What drives memory usage up is having the GUI open. 

Ian

EAP2 has been running for a couple of days now.

1/. ram usage is still down - 60% down form over 70%

2/. load is still down, way below 17.5.9 values

3/. categories are not being identified

4/. report summary missing values.

5/. GUI much more responsive.

6/.I have email scanning working for one mail account even on the iPad.

7/. mail still throwing up odd mail address info, same as 17.5.x

8/. mail still has trouble determining how many times a message should be scanned and reported on

9/. I am running IP4 and IPv6 on all interfaces - will be the subject of another thread.

Ian