Solved

Troubleshooting poor SFTP performance

Posted on 2010-08-26
9
1,108 Views
Last Modified: 2013-11-29
We have users constantly complaining about how slow sftp is when uploading or downloading to our SFTP server via the Internet. Internally it is fine.  We have tested other download / upload speeds and the bandwidth seems fine. It it just when users try uploading from or to our SFTP server from the Internet when we seem to get poor performance.  I don't see how the ISP could or would limit bandwidth for ports 21 and 22. It doesn't make sense. Traffic does traverse our Checkpoint firewall for both internal and external connections to the server. So it is hard to say it is the firewall when internally we have no issue. This is the only service we are receiving complaints on and I am just looking for any input as to how to either fix this or where we can start looking. I was planning on calling our ISP however I wanted to gather as much information as I could first. We have a 20 mb fiber connection to the Internet and from what I understand this is 100mb burstable.

Hey help is appreciated.
0
Comment
Question by:tobyhansen
  • 4
  • 3
  • 2
9 Comments
 
LVL 40

Expert Comment

by:omarfarid
Comment Utility
what is the link utilization for your connection to your ISP?
0
 
LVL 20

Accepted Solution

by:
woolnoir earned 500 total points
Comment Utility
put a test machine (linux laptop or something) on the network that your SFTP server is sitting on try and do a connection and test the speed, then place one on the external interface of the checkpoint firewall (assuming you have multiple external IP's) and test. That will indicate if its a) the server, b) the checkpoint box or c) the ISP.
0
 
LVL 1

Author Comment

by:tobyhansen
Comment Utility
omarfarid  - The link utilization is at 15%. I did see one thing that bothers me. Our average receive bps is never goes past 20Mbps, Transmit is between 10 and 18Mbps. I would think I would see spikes past 20mbps if we have up to 100Mbps burstable.


woolnoir - this is a good idea. We have great speeds form our LAN - 8-9 Mb/s I will try putting a machine on our DMZ switch and testing it there.
0
 
LVL 20

Expert Comment

by:woolnoir
Comment Utility
Let me know how you get on and we can diagnose :)
0
Free camera licenses with purchase of My Cloud NAS

Milestone Arcus software is compatible with thousands of industry-leading cameras for added flexibility. Upon installation on your My Cloud NAS, you will receive two (2) camera licenses already enabled in the software. And for a limited time, get additional camera licenses FREE.

 
LVL 40

Expert Comment

by:omarfarid
Comment Utility
you may need to check with your ISP if they really allow more that 20 mbps, also if you can try with different protocol other than sftp, like http and see if you still see same problem
0
 
LVL 1

Author Comment

by:tobyhansen
Comment Utility
Omar, yeah, that is what I am thinking. It is odd that we plateau like that. What I may do is test this in the dead of the night when traffic is at it's minimum.

Thanks guys
0
 
LVL 20

Expert Comment

by:woolnoir
Comment Utility
> I would think I would see spikes past 20mbps if we have up to 100Mbps burstable.

yeah ive had this problem to.. the ISP's definition of burstable is often very subjective. You can only guarantee the soft limit (traffic managed) component of your connection. You might want to ask the ISP under what conditions they allow 100mbps burst.
0
 
LVL 1

Author Comment

by:tobyhansen
Comment Utility
Thanks Woolnoir. I have a call into our ISP. I have a suspision that this is the case. That our bandwidth has a ceiling of 20mbps.

I am curious to see what they say.
0
 
LVL 20

Expert Comment

by:woolnoir
Comment Utility
@tobyhansen let me know when your ISP get back to you :) im interested :)
0

Featured Post

Free Trending Threat Insights Every Day

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

Join & Write a Comment

Even if you have implemented a Mobile Device Management solution company wide, it is a good idea to make sure you are taking into account all of the major risks to your electronic protected health information (ePHI).
Join Greg Farro and Ethan Banks from Packet Pushers (http://packetpushers.net/podcast/podcasts/pq-show-93-smart-network-monitoring-paessler-sponsored/) and Greg Ross from Paessler (https://www.paessler.com/prtg) for a discussion about smart network …
Viewers will learn how to properly install and use Secure Shell (SSH) to work on projects or homework remotely. Download Secure Shell: Follow basic installation instructions: Open Secure Shell and use "Quick Connect" to enter credentials includi…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

6 Experts available now in Live!

Get 1:1 Help Now