What's slowing me down?

R.C.Anderson

R.C.Anderson

R.C.Anderson

Associate
Joined
20 Feb 2009
Posts
2,227
Location
Ashton-Under-Lyne
So I took advantage of the BRSK black friday deals & upgrades my 1Gb connection to 2Gb at no extra charge, but I'm getting various different speedtest readings:

From my router (UDM-SE), I get speedtest results 1.9-2.1Gb/s in both directions (as expected), using the built in speed test.
From any connected machines, I get 1.3-1.7Gb down & 1-1.5Gb up, using speedtest.net.

I'm struggling to find what could be slowing me down on my machines.

My setup:
UDM-SE
10gb DAC
USW-Aggregation
10gb fibre to one machine / 10gb fibre to 2.5gb switch to 2.5gb port on another machine.

I've tried bypassing the aggregation, but that doesn't seem to make a difference, which makes me think it's either: A) My UDM-SE isn't gatewaying traffic at full speed (and the internal speedtest bypasses this point), B) The speedtests are working slightly differently & different metrics/measurements are giving different results, or C) something I've not thought of.

Has anyone had similar & can either give any pointers on how to narrow it down a bit more & confirm what's slowing the connection down?
 
Echoing @rp2000 - Try turning off IDS/IPS. Check your smart queuing and any traffic shaping.
Reboot the UDM. (Yeah yeah basic but it's painful how much a reboot fixes).

You're not getting awful speeds, you're getting north of 1Gb so it's not a physical link issue, maybe the IPS just isn't forwarding all o fyour traffic fast enough, it doesn't say anywhere you'll get full speed all the time.
 
UDM-SE should be able to route with IDS/IPS enabled at 3.5Gbps according to official specs.

Worth trying to see if it makes a difference.

Running any other apps on the gateway other than network?
 
How is your internet delivered? DHCP IP, Static IP or PPPoE?
PPPoE performance will suffer at these speeds.
MTU could be a problem.
 
rp2000 said:
Do you have IDS/IPS enabled on the UDM? Try disabling if so and retest the speeds.


rp2000
Click to expand...

Steveocee said:
Echoing @rp2000 - Try turning off IDS/IPS. Check your smart queuing and any traffic shaping.
Reboot the UDM. (Yeah yeah basic but it's painful how much a reboot fixes).

You're not getting awful speeds, you're getting north of 1Gb so it's not a physical link issue, maybe the IPS just isn't forwarding all o fyour traffic fast enough, it doesn't say anywhere you'll get full speed all the time.
Click to expand...

I didn't try disabling, as the specs say 3.5Gb/s, so I ignored it, although I've jut tried disabling, and it does seem to get me ~300Mb/s more. I got ~1.7/1.2 before & after with it on & 2/1.5 with it off. A bit annoying if it can't actually handle the rated speed.

I'll take a closer look at the rest of the firewall settings, but there's nothing particularly special going on.
 
ChrisD. said:
Check for and disable smart queues, also look to see if hardware offloading is enabled. Any kind of smart queues/ISP speed limit is done at the software layer and is performance impacting for over 1 Gbps.
Click to expand...
Smart Queues is already disabled & I cannot find any setting for hardware offloading, and from a google around, it looks like it's not configurable on the UDM-SE, as it's enabled automatically.
 
R.C.Anderson said:
I didn't try disabling, as the specs say 3.5Gb/s, so I ignored it, although I've jut tried disabling, and it does seem to get me ~300Mb/s more. I got ~1.7/1.2 before & after with it on & 2/1.5 with it off. A bit annoying if it can't actually handle the rated speed.

I'll take a closer look at the rest of the firewall settings, but there's nothing particularly special going on.
Click to expand...
Do you have the option to plug in your isp provided router to see if the issue persists?


rp2000
 
R.C.Anderson said:
Smart Queues is already disabled & I cannot find any setting for hardware offloading, and from a google around, it looks like it's not configurable on the UDM-SE, as it's enabled automatically.
Click to expand...
When connecting via the Aggregation, does the switch have flow control enabled? Try disabling that.

Also triple check there is no application priority or any other traffic shaping enabled as it will affect performance.
 
R.C.Anderson said:
A bit annoying if it can't actually handle the rated speed.
Click to expand...

Sadly this is a thing. The maximum speed is always done under ideal conditions and usually with the preferred payload size. When you actually boil down to real world the figures are often lower. Some manufacturers even now advertise the sum of the two duplexes added together (eg 10Gb interface with 3Gb routing meaning it can do 1.5Gb one way and 1.5Gb the other). I don't think this is the case with the UDM though.

As you're DHCP connection. Can you find a way of patching a device in as directly as you can to the ONT? Remove the routing element completely. It is most likely the ISP just isn't able to handle your traffic in a sustained way as opposed to the hardware not handling it.
 
rp2000 said:
Do you have the option to plug in your isp provided router to see if the issue persists?


rp2000
Click to expand...

Steveocee said:
Sadly this is a thing. The maximum speed is always done under ideal conditions and usually with the preferred payload size. When you actually boil down to real world the figures are often lower. Some manufacturers even now advertise the sum of the two duplexes added together (eg 10Gb interface with 3Gb routing meaning it can do 1.5Gb one way and 1.5Gb the other). I don't think this is the case with the UDM though.

As you're DHCP connection. Can you find a way of patching a device in as directly as you can to the ONT? Remove the routing element completely. It is most likely the ISP just isn't able to handle your traffic in a sustained way as opposed to the hardware not handling it.
Click to expand...

I'll have to have a play & see if I can work something out... My biggest issue is my devices that are anywhere near the ONT are all SFP+ with fibre, and my ONT & ISP router are all RJ45, so I'm not sure I've got a way to connect up directly. My only 2.5Gb RJ45 machine is the other end of the house & has a fibre, rather than copper running the length.
 
ChrisD. said:
When connecting via the Aggregation, does the switch have flow control enabled? Try disabling that.

Also triple check there is no application priority or any other traffic shaping enabled as it will affect performance.
Click to expand...
No, flow control is already disabled.

I will check for any traffic shaping I might have enabled, but I don't believe I have anything.
 
R.C.Anderson said:
I'll have to have a play & see if I can work something out... My biggest issue is my devices that are anywhere near the ONT are all SFP+ with fibre, and my ONT & ISP router are all RJ45, so I'm not sure I've got a way to connect up directly. My only 2.5Gb RJ45 machine is the other end of the house & has a fibre, rather than copper running the length.
Click to expand...

If you span up a "test" vlan, access port from ONT into your switch and then assign that vlan to a vm with a bit of oomph would that work? Removes the routing element.
 
Steveocee said:
If you span up a "test" vlan, access port from ONT into your switch and then assign that vlan to a vm with a bit of oomph would that work? Removes the routing element.
Click to expand...
I don't have any SFP+ RJ45 modules, so the only 2.5G+ ports I have near the ONT are SFP+, or the 2.5Gb WAN port of my UDM, so I still couldn't bypass it.
 
You must log in or register to reply here.
Back
Top Bottom