Home
Help
Search
Login
Register
OPNsense Forum
»
Archive
»
22.1 Legacy Series
»
Network performance issue with IPS
« previous
next »
Print
Pages: [
1
]
Author
Topic: Network performance issue with IPS (Read 1377 times)
decalpha
Newbie
Posts: 15
Karma: 1
Network performance issue with IPS
«
on:
July 12, 2022, 03:36:58 pm »
CPU: Intel(R) Core(TM) i3-5005U CPU @ 2.00GHz (2 cores, 4 threads)
Networking: Intel Gigabit LAN
Memory: 8GB
Versions: OPNsense 22.1.10-amd64
Intrusion Detection: Enabled
Promiscuous mode: Not Selected
Detect Profile: High
I am using iperf for network performance measurement, and iperf3 on the OPNsense host shows <300 Mbits/sec. Strange thing is that after a restart it's around 950 Mbits/sec, before dropping back to 250-300 range. To rule out network issue I tried iperf3 across multiple other systems and it's in around 950 Mbits/sec.
Is this expected with this hardware setup?
Logged
abulafia
Full Member
Posts: 156
Karma: 8
Re: Network performance issue with IPS
«
Reply #1 on:
July 12, 2022, 03:44:50 pm »
IDS needs a lot of performance, IPS even more so.
However, my 5250u can push a gigabit with IDS enabled. So you may need to tune your rules (less, and moving IP Blocklists to the firewall alias+rules) and configuration.
Logged
decalpha
Newbie
Posts: 15
Karma: 1
Re: Network performance issue with IPS
«
Reply #2 on:
July 12, 2022, 03:51:50 pm »
Would you be able to direct me to correct resource(s)?
«
Last Edit: July 12, 2022, 03:57:18 pm by decalpha
»
Logged
mimugmail
Hero Member
Posts: 6766
Karma: 494
Re: Network performance issue with IPS
«
Reply #3 on:
July 12, 2022, 05:22:53 pm »
I5 8000U should handle 1000 also in IPS mode. Which rules do you use? Hyperscan active?
Logged
WWW:
www.routerperformance.net
Support plans:
https://www.max-it.de/en/it-services/opnsense/
Commercial Plugins (German):
https://opnsense.max-it.de/
decalpha
Newbie
Posts: 15
Karma: 1
Re: Network performance issue with IPS
«
Reply #4 on:
July 13, 2022, 01:39:08 pm »
Quote from: mimugmail on July 12, 2022, 05:22:53 pm
I5 8000U should handle 1000 also in IPS mode. Which rules do you use? Hyperscan active?
Pattern matcher: is indeed set to Hyperscan.
How do I get the list/count of rules from command line?
Regarding I5 8000U, afraid I have to upgrade the whole system (using Qotom mini pc).
Would N6005 be any better?
«
Last Edit: July 15, 2022, 03:06:51 pm by decalpha
»
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Archive
»
22.1 Legacy Series
»
Network performance issue with IPS