Hi I would like some help with troubleshooting a really frustrating issue with my UTM. My Internet speed is 100Mbps. I was downloading a game on Steam and my speed was maxing out at 2.1MB/sec and at the same time everything that consumes Internet bandwidth was slow. I was running continuous ping to Google DNS during the download and the average latency was more than 500ms which doesn't make sense for this Internet speed. For some reason the UTM wouldn't allow more traffic in. I wondered if that was the maximum speed that could go through my UTM WAN port and I ran a speed test. The maximum speed achieved was 95Mbps which signifies that the interface can carry more traffic. I'm an IT pro and after seeing Sophos in action at work and loved it, I decided to play with it at home. My setup is as described below: ESXi 6.0 on HP MicroServer Gen 8 with 16GB of total RAM Sophos UTM v9.314-13 installed on a VM VM runs on 2GB of RAM, 40GB Thin Provisioned Disk, Intel Celeron G1610T (2.3Hz/2 - core), 2 vNICs UTM is the only VM running on the ESXi host and doesn't even share any resources with any other VMs Steps that I have already taken for troubleshooting: Returned to my provider's original router setup to ensure that the provider was not to blame - speed was maxing out as it should Restarted everything, including the ESXi host Restored Factory Default Settings with the only active configurations for NAT masquerading my internal network and firewall rule to allow all traffic from my internal network to any destination During the download described above, incoming traffic to the UTM WAN interface was 20Mbps which means the issue starts from there. Consequently, outgoing traffic to the LAN interface was pretty much the same. Ensured that the maximum link speed has been properly configured on the interfaces with autonegotiation (1Gbps) Checked the UTM hardware resource utilisation on the main dashboard and everything was on normal below 50% levels. I even tried with 4GB of RAM just in case. I'm leaning towards the possibility that this is caused by a hardware incompatibility issue of some sort rather than a misconfiguration I have done on the UTM itself. Your thoughts and opinions would be very much appreciated in resolving this case.

This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos UTM throughput limitations

Hi

I would like some help with troubleshooting a really frustrating issue with my UTM. My Internet speed is 100Mbps. I was downloading a game on Steam and my speed was maxing out at 2.1MB/sec and at the same time everything that consumes Internet bandwidth was slow. I was running continuous ping to Google DNS during the download and the average latency was more than 500ms which doesn't make sense for this Internet speed. For some reason the UTM wouldn't allow more traffic in. I wondered if that was the maximum speed that could go through my UTM WAN port and I ran a speed test. The maximum speed achieved was 95Mbps which signifies that the interface can carry more traffic.

I'm an IT pro and after seeing Sophos in action at work and loved it, I decided to play with it at home. My setup is as described below:

ESXi 6.0 on HP MicroServer Gen 8 with 16GB of total RAM
Sophos UTM v9.314-13 installed on a VM
VM runs on 2GB of RAM, 40GB Thin Provisioned Disk, Intel Celeron G1610T (2.3Hz/2 - core), 2 vNICs
UTM is the only VM running on the ESXi host and doesn't even share any resources with any other VMs

Steps that I have already taken for troubleshooting:

Returned to my provider's original router setup to ensure that the provider was not to blame - speed was maxing out as it should
Restarted everything, including the ESXi host
Restored Factory Default Settings with the only active configurations for NAT masquerading my internal network and firewall rule to allow all traffic from my internal network to any destination
During the download described above, incoming traffic to the UTM WAN interface was 20Mbps which means the issue starts from there. Consequently, outgoing traffic to the LAN interface was pretty much the same.
Ensured that the maximum link speed has been properly configured on the interfaces with autonegotiation (1Gbps)
Checked the UTM hardware resource utilisation on the main dashboard and everything was on normal below 50% levels. I even tried with 4GB of RAM just in case.

I'm leaning towards the possibility that this is caused by a hardware incompatibility issue of some sort rather than a misconfiguration I have done on the UTM itself. Your thoughts and opinions would be very much appreciated in resolving this case.

This thread was automatically locked due to age.

Parents

0 darrellr_01 over 9 years ago

No, that is the correct configuration. I just wanted to clarify William's comment that you cannot assign more ghz to a vcpu than the physical counterpart has. For example, you cannot assign 4.6ghz (2.3ghz x 2 cores) to one core in a VM to get a super-fast single vCPU core. You can only assign 2.3ghz worth of processor (the full speed of a single core) to a single vCPU core.

Another thing William will correctly advise is that if you have IPS enabled, the core speed becomes very important and your lower speed (2.3ghz) will be a limiting factor in things like speed tests and whatnot that tend to be single-streamed (the IPS software, snort, is not multi-threaded).
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 darrellr_01 over 9 years ago

No, that is the correct configuration. I just wanted to clarify William's comment that you cannot assign more ghz to a vcpu than the physical counterpart has. For example, you cannot assign 4.6ghz (2.3ghz x 2 cores) to one core in a VM to get a super-fast single vCPU core. You can only assign 2.3ghz worth of processor (the full speed of a single core) to a single vCPU core.

Another thing William will correctly advise is that if you have IPS enabled, the core speed becomes very important and your lower speed (2.3ghz) will be a limiting factor in things like speed tests and whatnot that tend to be single-streamed (the IPS software, snort, is not multi-threaded).
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data