WAN Throughput Capping at 500mbps - ATT Gigapower



  • Hi all, I just finished my first configuration of pfSense and am really liking it so far. I have 1000mb fiber from ATT to my home. On their gateway I can achieve these speeds all day. On my pfSense build I am capping around 500 up and 500 down…

    Specs
    Intel Xeon E3 Quad Core
    8gb RAM
    120SSD
    Dual Intel Gig NICs

    If anyone has any insight on this I would greatly appreciate it.

    Best



  • Also if it helps. I am running this inside of VMWARE default configuration on both NICs.



  • You're going to get questions asking what services you have running in pfsense…. such as snort, pfblocker, squid, etc, etc.

    Also, while I'm not familiar with VMWare in particular, I know that VM configurations for NICS can have a major impact on what kind of speeds you're getting, so it might be a good idea to fill in many of those details.  (I don't know what settings even exist for vmware, so I don't know which ones might be good/bad.)



  • Try to run those test on the real hardware in different OS.
    Also it can be ATT itself https://forums.att.com/t5/AT-T-Fiber-Equipment/Only-1-2-Gigapower/td-p/4064704/page/2



  • Going to take some playing… I'm thinking something to do with VM or onboard NIC? Going to have to test. No add't services are running... It's not AT&T. I am able to hit 1000mb/up/down all day on their gateway.



  • I too share your frustration here. I have Comcast Gigabit and PFSense on a checkpoint firewall and am capping at around 330mbps, but when connected directly to the modem hit appropriate 1000mbps. The Firewall has specs to hit 1000mbps all day long on all interfaces, so there must be something funky going on in PFSense to cause our common issue. I hope we can find some answers, will post back if I can find anything or if I fix my problem, maybe it can fix yours too.



  • @adam759:

    I too share your frustration here. I have Comcast Gigabit and PFSense on a checkpoint firewall and am capping at around 330mbps, but when connected directly to the modem hit appropriate 1000mbps. The Firewall has specs to hit 1000mbps all day long on all interfaces, so there must be something funky going on in PFSense to cause our common issue. I hope we can find some answers, will post back if I can find anything or if I fix my problem, maybe it can fix yours too.

    Glad I'm not the only one. Are you running it in a VM or in a physical box? I am tempted to try the Sophos UTM and see if the same happens. Aside from that though I am enjoying pfSense this far! Please report back if you hear of anything!



  • I've seen some posts on AT&T forums from peoples who runs Gigapower at full speed on pfSense, but I don't know which one version is used.
    Please post some details about network layout, pfSense settings and maybe run test from pfSense itself.
    https://forum.pfsense.org/index.php?topic=71537.msg679607#msg679607
    Also try 2.4 beta as there are some fixes for Intel card drivers.





  • @Vapour1ze:

    Glad I'm not the only one. Are you running it in a VM or in a physical box? I am tempted to try the Sophos UTM and see if the same happens. Aside from that though I am enjoying pfSense this far! Please report back if you hear of anything!

    I am using a physical CheckPoint UTM 570. Its specs are all sufficient for Gigabit throughput, but it just peaks at 1/3 of the power. The LAN port is gigabit, the WAN port is gigabit, and PFSense recognizes this. Your build is much more powerful than this box, but I we seem to be having very similar issues. It seems like there is some limitation somewhere, but I don't think it is hardware. I have tried a few things from the "Low Throughput" PFSense wiki page, but none of it worked. This is very frustrating as these powerful dedicated routers can't do gigabit where I have a Netgear Nighthawk as my wireless AP and it can do gigabit throughput all day long. Very frustrating indeed.



  • What's you're system activity? Interrupt and total.

    My quad core i5 easily hits 2Gb/s around 12% load and 1.4Mpps around 20% load, with traffic shaping.