Thread Info
  • State Verified Answer
  • +2 person also asked this people also asked this
  • Locked Locked
  • Replies 15 replies
  • Subscribers 6 subscribers
  • Views 11222 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

UTM 9 Software appliance slow download/upload speeds

Liquid Spook

Hey Guys, just wanted to see if you could point me into the right direction. I have a software appliance running on a Hyper-V server windows 2010 with 15G or RAM and 512GB of disk. Nothing else runs on it. The machine is strictly dedicated to UTM9.

When I fist build it, the speeds were just fine 200Mbps/200Mbps. No major changes, beside some NAT rules for port forwarding that were made. I've also disabled them later during the testing with the same results.

Recently the speeds dropped to 10/20Mbps. I've connected my laptop directly to ISP router and was able to regain 200/200 speeds.

I've read a few post in Sophos communities, but still no luck. I've disabled all types of network protections, Anti-DDoS, web filtering, anti-portscan...etc but nothing has changed.

The hardware performance are steady at CPU=8%, RAM=10-15%, Log Disk=1%, and Data Disk=7%. All the hardware resources (windows machines) all dedicated to UTM.

I checked the Interface settings, under advanced and all set to 1000Mbps respectfully.

The windows Machines NIC's all set to 1Gb under hardware performance.

Everyone's help is greatly appreciated. 



This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to RobertBurri

    You can restore a configuration backup from non-Sophos hardware to any other non-Sophos hardware.  With Sophos hardware, if moving from an SG 210 to an SG 230, for example, a license for a 230 must be applied after the restore.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to RobertBurri

    interesting; I'll have to test my NIC. it's possible it might have gone bad, since I did not buy it new and rather used an old one from my other PC. Thanks.

     

    I actually been talking to Sophos support and they have taken an interest in this case. I tried a few suggested alteration without success. They are looking to get into my system and collect data. 

    I'll keep everyone posted once I complete this task. 

  • 0 in reply to RobertBurri

    It does starting to look like a possible a bad NIC hardware. I can't even change the speed on interfaces. No option is available. 

    Trying to figure out how to attempt this change via CLI.

    Going to the store tomorrow to get a new hardware.....and NOT a Realteck.

     

  • 0 in reply to RobertBurri

    When changing hardware you should of course also select a system with at least as many NIC's as your previous system has. Then again, the order of the NIC's might do something strange. I build one machine once which had 2 NIC's of itself and put a 4 NIC card into it to have a total of 6.

    1 of the Onboard NIC's was eth0, eth 1-4 were on the additional board and eth5 was again on the mainboard.....

    Managing several Sophos firewalls both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

  • 0 in reply to RobertBurri

    Well, looks like it was a hardware. I pulled my Realtec NIC out and replaced it with HiRo (I got a cheap one to make sure this was an issue) and just so happen, it resolved the issue. 

    Thanks

  • 0 in reply to Liquid Spook

    I've recently learned something and wanted to provide an update for anyone using ATT Fiber.

    The Pace 5268AC gateway firmware upgrade to 11x has an issue with the DMZ+ mode which impacts throughput to about 50/200 max.

    So...if you happen to have ATT Fiber, the Pace gateway, and your UTM in its' DMZ...

     

    https://forums.att.com/t5/AT-T-Fiber-Equipment/PACE-11-1-0-531418-DMZ-Issue/td-p/5700776

Unfiltered HTML