|
Title: IDS/IPS Perfromance Post by: madswitcher on Thursday 09 August 2012, 05:04:46 am Hi All,
has anyone come across a performance limit when running the IPS module? I am running version 2.5.1 with the proxy running transparently and a fairly light rule set on the firewall. My line speed is about 106Mb/s, but drops down to about 35Mb/s when I turn the IPS on. The hardware is quite nifty, 1Gb/s NICS, No memory or swap pressure. Disc I/O is about 1 per second average. CPU is ticking over at about 5.8 % User and 1.6% System with or without the IPS. Memory is 1GBytes with Used peaking at 34%. Any thoughts or suggestions? Thanks and regards Mike Title: Re: IDS/IPS Perfromance Post by: oakleeman on Monday 20 August 2012, 07:33:33 am This is a known issue for us as well but no clue why.
We have a 50Mbps external connection and with IPS turned on it drops down to 35. I setup a test install on our gigabit internal network and tested iperf to a server on the external side of the test install. With IPS turned off I got around 980Mbps but but IPS turned on it dropped down to to 280ish. |