Hot Downloads

Welcome, Guest
Username: Password: Remember me
  • Page:
  • 1
  • 2

TOPIC: Watchguard

Watchguard 13 years 1 month ago #1109

  • pndennie
  • pndennie's Avatar
  • Offline
  • Frequent Member
  • Posts: 29
  • Karma: 0
I have a watchguard firewall and users are complaining that internet connectivity is slow. I have over 300 users through a FB1000. Any ideas on performance tuning and should I move to another type of firewall.
The administrator has disabled public write access.

Re: Watchguard 13 years 1 month ago #1111

  • Chris
  • Chris's Avatar
  • Offline
  • Administrator
  • Posts: 1446
  • Thank you received: 13
  • Karma: 8
Can you post a url with the firewall's specs?

Most small size firewalls are adequate for up to 200 concurrent session.. after that, they start to drag and packet routing is extremely slow.

I'm not sure about your make/model as I haven't heard of it. Post the url so we can check it and let you know what our opinion is.
Chris Partsenidis.
Founder & Editor-in-Chief
www.Firewall.cx
The administrator has disabled public write access.

Re: Watchguard 13 years 1 month ago #1112

  • pndennie
  • pndennie's Avatar
  • Offline
  • Frequent Member
  • Posts: 29
  • Karma: 0
The administrator has disabled public write access.

Re: Watchguard 13 years 1 month ago #1118

  • Chris
  • Chris's Avatar
  • Offline
  • Administrator
  • Posts: 1446
  • Thank you received: 13
  • Karma: 8
ndennie,

I've definately seen these firewall devices before, but didn't really know who made them.

The specific model you have seems to be more than adaquate for the amount of users your network has.

Its highly advised to make use of the performance monitoring utilities the system has to see if there is any specific task that might be bringing the device to its knees.

Moving away from your LAN, towards your WAN, what type of connection to your ISP does the company have? Also, is the slow down permanently or during peak hours? It could be possible that your ISP is not able to cope during these peak hours, therefore everyone’s connection slows down.

As you can see, there are quite a few different scenarios, so in order to make some sence out of everything and put things into prospective, you need to follow a step by step checkup to determine where the problem is, and then see how it can be fixed.

My proposal is this:

Monitor the network response and Internet activity using the firewall's tools. Try and see when the slowdowns are happening and during which hours.

While the Internet connection is slow, try and connect one workstation after the firewall, effectively bypassing the firewall and connecting it straight to the Internet. Test the speed to see if the results are the same or different and make a note of it.

At the same time, see if you can run a packet sniffer (available in our download section) and monitor the traffic that’s going in and out of the network... you might find yourself surprised in some cases when you figure that users are doing things they are not suppose to, and believe me, it happens!

Once you complete the above steps, I'm sure you will have a better understanding on what is causing these slowdowns.

You can then let us know and we can take it from there.

Keep us informed on the situation.

Cheers
Chris Partsenidis.
Founder & Editor-in-Chief
www.Firewall.cx
The administrator has disabled public write access.

Re: Watchguard 13 years 1 month ago #1122

  • sahirh
  • sahirh's Avatar
  • Offline
  • Honored Member
  • Posts: 1700
  • Karma: 0
Out of curiousity, what made you isolate the bottleneck to the firewall ? If you're well within the load ratings (as it appears you are), I'd be looking elsewhere for the problem.


Cheers
Sahir Hidayatullah.
Firewall.cx Staff - Associate Editor & Security Advisor
tftfotw.blogspot.com
The administrator has disabled public write access.

Re: Watchguard 13 years 1 month ago #1128

  • pndennie
  • pndennie's Avatar
  • Offline
  • Frequent Member
  • Posts: 29
  • Karma: 0
The public router is not very busy and our T-1 seems to be fine. I think my problems lies in the fact that our DNS setup sucks and that I do not have a proxy server. Mst people are happy with the speed. the people who complain are the check signers. I am still trying to figure out what they are comparing speed to. I do not think it is my firewall at this time.... :wink:
The administrator has disabled public write access.
  • Page:
  • 1
  • 2
Time to create page: 0.082 seconds

CCENT/CCNA

Cisco Routers

  • SSL WebVPN
  • Securing Routers
  • Policy Based Routing
  • Router on-a-Stick

VPN Security

  • Understand DMVPN
  • GRE/IPSec Configuration
  • Site-to-Site IPSec VPN
  • IPSec Modes

Cisco Help

  • VPN Client Windows 8
  • VPN Client Windows 7
  • CCP Display Problem
  • Cisco Support App.

Windows 2012

  • New Features
  • Licensing
  • Hyper-V / VDI
  • Install Hyper-V

Linux

  • File Permissions
  • Webmin
  • Groups - Users
  • Samba Setup