Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 21 replies
  • Subscribers 15 subscribers
  • Views 39658 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Specs needed for a build for a google fiber WAN using HOME use version"?

chriswise
I am going to be getting Google fiber at my house soon and would like to put together a server build to run the home version of Sophos that will be able to handle the full gigabit of up and down speed I will have while still using the antivirus and intrusion prevention features. I currently have a 100 Mb connection and am using an older sonic wall but even this goes down to 70 MB whenever I turn on the gateway antivirus and intrusion prevention so there is no way it will handle my new connection.


This thread was automatically locked due to age.
Parents
  • 0
    Hi chriswise,

    I've read a number of threads in this and previous Astaro forum and have never found a config that was able to deliver a full Gbps throughput with IPS and AV turned on when installed on commodity hardware.

    I've tried esxi and hyper-v installs on dual quad core 2.66Ghz Zeon CPUs and didn't break the 300Mbps speed no matter how much system resources were allocated.

    I ended-up with a pair of Dell PowerEdge R210 II with Xeon E3-1270 CPUs and 16GB RAM with SSDs running in active/passive HA for my home. I installed Sophos UTM Home on baremetal to maximize use of machine resources. Since I don't have the number of concurrent users to take full advantage of a Gbps fiber connection, I've dropped my home speed to 300/100 Mbps. With this hardware I can easily achieve the full 300 Mbps speeds with the hardware not even breaking a sweat. Even with 3-10 concurrent users streaming content, that 300 Mbps connection is never saturated.

    At the end of the day, the single-threaded nature of Snort will likely mean that you'll never get a full single user speed beyond 300-400Mbps. In a multi-user environment, I'm sure that is different. I'm willing for someone else to correct me if I'm wrong but that appears to be the common refrain in these forums.
Reply
  • 0
    Hi chriswise,

    I've read a number of threads in this and previous Astaro forum and have never found a config that was able to deliver a full Gbps throughput with IPS and AV turned on when installed on commodity hardware.

    I've tried esxi and hyper-v installs on dual quad core 2.66Ghz Zeon CPUs and didn't break the 300Mbps speed no matter how much system resources were allocated.

    I ended-up with a pair of Dell PowerEdge R210 II with Xeon E3-1270 CPUs and 16GB RAM with SSDs running in active/passive HA for my home. I installed Sophos UTM Home on baremetal to maximize use of machine resources. Since I don't have the number of concurrent users to take full advantage of a Gbps fiber connection, I've dropped my home speed to 300/100 Mbps. With this hardware I can easily achieve the full 300 Mbps speeds with the hardware not even breaking a sweat. Even with 3-10 concurrent users streaming content, that 300 Mbps connection is never saturated.

    At the end of the day, the single-threaded nature of Snort will likely mean that you'll never get a full single user speed beyond 300-400Mbps. In a multi-user environment, I'm sure that is different. I'm willing for someone else to correct me if I'm wrong but that appears to be the common refrain in these forums.
Children
No Data
Unfiltered HTML