Just wondering if anyone else has any thoughts on the subject..
We have a cluster of 28000 series running R80.40 T161 with IPS, APCL, URLF, AB, AV and HTTPS interception turned ON.
Yesterday we were forced to reboot standby member during day and observed that full sync took nearly half an hour which seemed quite excessive
Oct 25 09:55:42 2022 fw1 fwk: CLUS-120120-1: Fullsync started
Oct 25 10:20:21 2022 fw1 fwk: CLUS-120122-1: Fullsync completed successfully
Performance figures at that point:
- total throughput ~15Gbps
- internet ~4Gbps
- HTTPS inspected ~2Gbps
- Threat prevention applied to external traffic only
- 600,000 concurrent connections
- 10,000 new connections per second
It seemed that sync protocol was not able to keep up with new connection rate - we just saw from connections table size on the standby that it was growing very very slowly. An no obvious errors reported from cphaprob syncstat
It's a fairly new cluster and we are still in the "tuning" phase (new boxes and new functionality). So we disabled sync for DNS connections and delayed HTTP/S connection sync to 30secs. Which should help of course.
I just wanted to hear if anyone else is pushing high end appliances close to these numbers and have seen anything like that?
Has anyone noticed "performance" improvements after upgrading to R81.10 on gateways? I know management gets "faster" but gateways?
I realize that we are getting close to box MAX: