Why the Internet speed is chopped to 150 MBps?
This using a subscribed Internet line with speed - 250 Mbps. During the setup,my ISP engineer came down and did the speed test on the WAN router, and it can reach 250 Mbps. However, after we connect the Watchguard XTM series 2 firewall and 1 hp procurve 1910-24-poe switch, we found that the speed can not reach 250, the most it can reach is 130 Mbps. The connection is from Interne t towards the internal, are WAN router > Firewall > hp procurve 1910-24-poe switch.
On Watchguard xtm series 2, I already change both the trusted and untrusted interfaces to 1000M/duplex. After on hp switch, where the uplink connected to port 24, I also changed to 1000M/duplex. Still speed stay at 130 mbps, the most. Is there a way to increase the speed to up to 250 Mbps?
thanks,
On Watchguard xtm series 2, I already change both the trusted and untrusted interfaces to 1000M/duplex. After on hp switch, where the uplink connected to port 24, I also changed to 1000M/duplex. Still speed stay at 130 mbps, the most. Is there a way to increase the speed to up to 250 Mbps?
thanks,
connect PC or laptop just after WAN Router and run speed test.
call your ISP and discuss with them regarding CIR (Committed Information Rate).
if speed test shows 250 so connect PC/Loptop before switch (select that IP which have full access to internet) and then check the response.
call your ISP and discuss with them regarding CIR (Committed Information Rate).
if speed test shows 250 so connect PC/Loptop before switch (select that IP which have full access to internet) and then check the response.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
You need to check the internal throughput of the WatchGuard Firewall. It may be too slow, and you may need to upgrade the firewall. I have had to do that to get higher internal throughput.
Good comment John,
Firewall Throughput XTM25 @ 240Mbps XTM26 @ 540Mbps, bigger issue maybe the VPN throughput @ 40Mbps & 60Mbps. If you are using additional tools and services AV/IPS/UTM these are also slower than you bandwidth so could be holding the unit back i have attached the unit Specs below:
wg_xtm2_ds.pdf
Firewall Throughput XTM25 @ 240Mbps XTM26 @ 540Mbps, bigger issue maybe the VPN throughput @ 40Mbps & 60Mbps. If you are using additional tools and services AV/IPS/UTM these are also slower than you bandwidth so could be holding the unit back i have attached the unit Specs below:
wg_xtm2_ds.pdf
ASKER
Hi ncomper and John,
Thanks for the suggestions. Moving forward from here, I will do the tests as mentioned by ncomper in his previous comments. I'll update you guys about the status.
Thanks for the suggestions. Moving forward from here, I will do the tests as mentioned by ncomper in his previous comments. I'll update you guys about the status.
ASKER
Hi ncomputer and john,
Please see the test results:
a. Directly to router, with my laptop: 280/280
b. Connect router > watchguard > switch > my laptop: 130/130
c. Connect router > fortigate > switch > mylaptop: 110/110
Obviously, no hardware is faulty. Shall I check with ISP for CIR?
Please see the test results:
a. Directly to router, with my laptop: 280/280
b. Connect router > watchguard > switch > my laptop: 130/130
c. Connect router > fortigate > switch > mylaptop: 110/110
Obviously, no hardware is faulty. Shall I check with ISP for CIR?
d. Router > switch > laptop
??
??
ASKER
Hi Muhammed,
280/280
280/280
oK, if your switch is configurable so please ensure that there isn't any restriction in terms of bandwidth.
and then you have to do something with your firewalls.
and then you have to do something with your firewalls.
ASKER
Hi Muhammad,
Anything have to do on the firewalls?
Anything have to do on the firewalls?
check its configuration and try to find something which relates to the bandwidth at WAN and LAN as well.
a. Directly to router, with my laptop: 280/280
b. Connect router > watchguard > switch > my laptop: 130/130
I was not trying to say the hardware was faulty, but I was saying that internal throughput or other limitation of your watchguard and fortigate could possibly cause this issue.
I don't think the issue lies with your ISP since you can connect the computer and get full speed.
b. Connect router > watchguard > switch > my laptop: 130/130
I was not trying to say the hardware was faulty, but I was saying that internal throughput or other limitation of your watchguard and fortigate could possibly cause this issue.
I don't think the issue lies with your ISP since you can connect the computer and get full speed.
ASKER
change internet line with higher CIR and it seems that the speed is maintained
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks for the 4 experts in pointing out the culprit - watchguard firewall; at first, I didn't believe, but, after that I gave it a try to replace the firewall with a different brand firewall, and Vroom, the speed is a lot different.
ASKER
20151002_165121.jpg