Hello friends, how are you?
We are testing untangle as an option for our university. Currently we have about 10000 hosts and our internet is a 1 gbit connection with real ips and some fake ips using nat. We are using this server with these hardware specifications and untangle 1401:
1x - Intel(R) Xeon(R) CPU E5-2430 0 @ 2.20GHz (family: 0x6, model: 0x2d, stepping: 0x7)
96 GB RAM
1x - Ethernet controller: Intel Corporation 82572EI Gigabit Ethernet Controller (Fiber) (rev 06)
4x - Ethernet controller: Intel Corporation 82576 Gigabit Network Connection (rev 01)
1x - Samsung SSD 850 EVO 500GB
We are using all the free apps with except vpns, intrusion detect and captive portal.
We notice a very slow performance and a lot of disk usage. The /var/log/messages and /var/log/syslog and growing so fast (more than 100gb by day) and the rsyslog service is using too much cpu.
So, after untag the firewall rules (pass, because the block ones I'm unable to untag), also changed bypass and other logs at the advanced option but the log is growing at the same way.
I found a problem with conntrack and I rise the limits for the:
net.netfilter.nf_conntrack_max = 524288
net.nf_conntrack_max = 524288
If somebody could help us to setup this correctly I'll be glad. We are very interest on the product.
Thanks
M.Sc. José Renato Castro Milanez
Analista de Tecnologia da Informaçăo/TI Analist
Diretoria de Tecnologia da Informaçăo/Information Technology Direction
Universidade Federal de Itajubá/Federal University of Itajubá
Itajubá - Minas Gerais - Brasil