This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

High CPU load on virtual UTM9

We have a virtual UTM 9 used as a WAF in front of a relatively high trafic website (100k to 400k visits per day).

The UTM9 is processing the https and act as a WAF for the website.

Our UTM is in v9.4 because we had to downgrade it from 9.5 due to a bug on the network interface.

During load and performance testing, we noted a very high CPU load on the virtual machine hosting the UTM9, with performance significantly slowing down. It seems the UTM9 is reaching its limits and become a bootleneck.

We tried to get sizing guidelines from Sophos, no clear answer (if any), and we couldn't find anywhere a précise documentation on the subject for the virtual UTM.

Has anyone experienced a similar situation ?

Any recommandation on sizing guidelines ?

This thread was automatically locked due to age.

0 OLIVIERMIOSSEC over 6 years ago

Hi

There are several reasons for CPU Load
on a virtual machine, very high traffic (more than 1,5 Gbps) can slow down the UTM as the traffic is processed on the first CPU for the old version (9.5 implements some Hyper-v Features that can address that)

You should monitor vCpu usage.

Other things to check is the configuration of your Hypervisor (I am an Hyper-V specialist, and by changing C-Stat configuration and NetAdapter Firmware I can a 20 % boost on CPU)
Cancel
Vote Up 0 Vote Down

Cancel
0 BAlfson over 6 years ago

I remember that you have VMware, but hopefully you can use Olivier's advice.

When you run top from the command line, what are the typical values in the Cpu(s) line?

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel