Hey Guys,
I'm running my PVE on a 8 x 11th Gen Intel(R) Core(TM) i5-1135G7 with "in my opinion" enough power to virtualize my Firewall (Sophos XG at the moment, will be Fortigate in the near future). I already was able to switch the better performing Openvswitch but I'm not getting as much bandwith as I'm able to get by my ISP.
I already checked my speeds with a direct connection from my Laptop to the Modem of my ISP (having the full 900-1000 Mbit downloadspeed).
If my environment is running behind my Sophos XG it all drops down to max 300 Mbit if I'm lucky, most of the time I'm sitting at 100 Mbit.
Now I started reading here and there about "deactivate hardware offloading". Most threads are about pfSense/OpnSense installations.
So I was going to my PVE WebUI and tryed to find that setting anywhere. You guess it, I didn't find it (is that a setting that is only available on pfSense? or am I just a bonehead?).
Passthrough of the NICs seems not to be a proper solution because my SATA drives will start sending errors after I activate it.
Just to clear this up before anyone asks: the firewall got 2 cores with 4 gb of ram and nothing of it seem to be used as much as there should be a bottleneck (max 10% CPU load, max 50% memory).
Any advice? And as always, thank you in advance.
EDIT: Here my hardwareconfig:
Networks on my host:
vmbr1 => WAN
I'm running my PVE on a 8 x 11th Gen Intel(R) Core(TM) i5-1135G7 with "in my opinion" enough power to virtualize my Firewall (Sophos XG at the moment, will be Fortigate in the near future). I already was able to switch the better performing Openvswitch but I'm not getting as much bandwith as I'm able to get by my ISP.
I already checked my speeds with a direct connection from my Laptop to the Modem of my ISP (having the full 900-1000 Mbit downloadspeed).
If my environment is running behind my Sophos XG it all drops down to max 300 Mbit if I'm lucky, most of the time I'm sitting at 100 Mbit.
Now I started reading here and there about "deactivate hardware offloading". Most threads are about pfSense/OpnSense installations.
So I was going to my PVE WebUI and tryed to find that setting anywhere. You guess it, I didn't find it (is that a setting that is only available on pfSense? or am I just a bonehead?).
Passthrough of the NICs seems not to be a proper solution because my SATA drives will start sending errors after I activate it.
Just to clear this up before anyone asks: the firewall got 2 cores with 4 gb of ram and nothing of it seem to be used as much as there should be a bottleneck (max 10% CPU load, max 50% memory).
Any advice? And as always, thank you in advance.
EDIT: Here my hardwareconfig:
Networks on my host:
vmbr1 => WAN
Last edited:
