Welcome, Guest. Please login or register.
Did you miss your activation email?
Saturday 02 November 2024, 07:36:27 am

Login with username, password and session length

The Latest Endian Firewall is now available for download HERE
14248 Posts in 4376 Topics by 6515 Members
Latest Member: hulteends
Search:     Advanced search
+  EFW Support
|-+  Support
| |-+  General Support
| | |-+  IDS/IPS Perfromance
0 Members and 1 Guest are viewing this topic. « previous next »
Pages: [1] Go Down Print
Author Topic: IDS/IPS Perfromance  (Read 9047 times)
madswitcher
Jr. Member
*
Offline Offline

Posts: 6


« on: Thursday 09 August 2012, 05:04:46 am »

Hi All,
has anyone come across a performance limit when running the IPS module? 

I am running version 2.5.1 with the proxy running transparently and a fairly light rule set on the firewall. My line speed is about 106Mb/s, but drops down to about 35Mb/s when I turn the IPS on.

The hardware is quite nifty, 1Gb/s NICS,  No memory or swap pressure. Disc I/O is about 1 per second average.  CPU is ticking over at about 5.8 % User and 1.6% System with or without the IPS. Memory is 1GBytes with Used peaking at 34%.

Any thoughts or suggestions?

Thanks and regards

Mike
Logged
oakleeman
Full Member
***
Offline Offline

Posts: 12


« Reply #1 on: Monday 20 August 2012, 07:33:33 am »

This is a known issue for us as well but no clue why.

We have a 50Mbps external connection and with IPS turned on it drops down to 35.

I setup a test install on our gigabit internal network and tested iperf to a server on the external side of the test install. With IPS turned off I got around 980Mbps but but IPS turned on it dropped down to to 280ish.

Logged
Pages: [1] Go Up Print 
« previous next »
Jump to:  

Page created in 0.047 seconds with 19 queries.
Powered by SMF 1.1 RC2 | SMF © 2001-2005, Lewis Media Design by 7dana.com