Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 3 subscribers
  • Views 3534 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

RED & WAF slow

Jan W

Hello

Sophos internal Subnet -> 192.168.1.0/24

RED Subnet -> 192.168.2.0/24
Operation mode:    Standard / Unified

on the RED site there is a webserver -> 192.168.2.100

a PC connected to the sophos can connect and the connection is fast

a domain reds1.example.org points to the external IP of the sophos. A WAF routes it through the red-vpn to the webserver on the red site.
the firewall profil of thh waf is only in monitor mode but this connection is really really very slow. you can't realy surf the webpages...

What can i improve?

Regards

Jan



This thread was automatically locked due to age.
Parents
  • 0

    Hallo Jan and welcome to the UTM Community!

    Do you see anything related to this in the Intrusion Prevention log?

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson

    Hello

    Thank you for your answer, the Intrusion Prevention Log is empty.

    in Webserver Protection i get following errors:

    2019:07:03-16:56:14 utm1 httpd[22608]: [proxy_http:error] [pid 22608:tid 4011592560] (70008)Partial results are valid but processing is incomplete: [client y.y.y.152:46854] AH01110: error reading response

    and several:

    2019:07:03-16:57:30 utm1 httpd[22608]: [proxy_http:error] [pid 22608:tid 3892271984] (70014)End of file found: [client 192.168.1.20:1139] AH01102: error reading status line from remote server 192.168.2.100:443, referer: https://sub.example.com/action/login

    It takes 3 minutes or more to connect over the proxy, with no proxy its in seconds...

    Regards

    Jan

  • 0 in reply to Jan W

    Jan, please show a picture of the Edit of the RED server.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply Children
No Data
Unfiltered HTML