I was doing some load testing on a UTM-1 270 and saw delays when installing a 5 rule policy. When the appliance was passing 11,529 Kbps of constant vpn traffic it took me 7 minutes to push the policy to it. If the throughput was lower, say around 5,489Kbps, then it took a minute.
What I didn't realize was that I had SmartDefense enabled, 25 active / 53 monitored checks to be precise. After going down to 12 active / 17 monitored, the throughput jumped up to 17,253Kbps and my policy push only takes 45 seconds now.
However I know my load testing errs on the side of impracticality due to its design. Does anyone have any "real world" data they can share regarding throughput of UTM-1 270 that has a moderate amount of SMDF enabled?
HTML Code:
This is Check Point VPN-1(TM) & FireWall-1(R) NGX (R65) HFA_25, Hotfix 617 - Build 003
kernel: NGX (R65) HFA_25, Hotfix 617 - Build 003
The numbers with SMDF:
19:29:25 up 1:55, 1 user, load average: 1.76, 1.31, 1.11
49 processes: 46 sleeping, 3 running, 0 zombie, 0 stopped
CPU states: cpu user nice system irq softirq iowait idle
total 0.1% 0.0% 0.1% 0.0% 96.3% 0.3% 3.0%
Mem: 1018164k av, 403296k used, 614868k free, 0k shrd, 35320k buff
257632k active, 44880k inactive
Swap: 2096472k av, 0k used, 2096472k free 111128k cached
The numbers with minimal SMDF:
19:20:57 up 1:47, 1 user, load average: 0.01, 0.30, 0.84
48 processes: 46 sleeping, 2 running, 0 zombie, 0 stopped
CPU states: cpu user nice system irq softirq iowait idle
total 0.0% 0.0% 0.0% 0.0% 36.4% 0.0% 63.6%
Mem: 1018164k av, 387196k used, 630968k free, 0k shrd, 33536k buff
243620k active, 43592k inactive
Swap: 2096472k av, 0k used, 2096472k free 108432k cached 
UTM-1 270 throughput specs 
2008-08-27 
UTM-1 270 throughput specs 
Linear Mode
