Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Messages - Wanos

Pages: [1] 2 3 4
General Discussion / Re: SSL Optim
« on: April 03, 2019, 01:03:06 PM »
Hi Nqny, Alex,

Please first see the FaQ on encrypted protocols at

In summary all features are enabled except for Compression and Deduplication. HTTPS is most likely already Gzipped so it is really only deduplication that is not supported for SSL. To offset this, SSL Object caching is supported via WebCache. This is intended to be used within an enterprise and to improve the performance of an enterprise HTTPS application. It is required to use a SSL certificate on the appliance. It can be a self signed certificate. It is recommended to use a certificate that can be placed in the trusted list on the workstations.

Note the SSL caching feature is not intended to cache all Internet traffic. We get this request frequently. Please have a look at Squid if you would like to bake your own SSL caching server for Internet traffic.

Please see the SSL Caching documentation for steps on how to enable this for an enterprise HTTPS application at:


This sounds like the expected behavior.

1) With Wanos deployed correctly at both ends the throughput is 1MB/s (or 10Mbps) which is 10x the speed without Wanos 118KB/s (1Mbits/s)
2) Removing one side will ensure the remote end does not continue compressing traffic, since the decompressor is no longer in the network. This is why the traffic is showing pass-through as expected and also why the traffic is no longer optimized and running at the line rate 118KB/s (I take it the line rate is either set on the routers or on Wanos with a Global WAN TX rate config)

I think your setup is 100% except maybe upgrade to v.4

General Discussion / Re: Express vs Plus licensing
« on: April 23, 2016, 12:02:40 PM »

Thanks for highlighting the ambiguity. 
The FAQ on Express Licensing has been updated and can be found at:

The Express FAQ and the products page should be referred to for the latest info on Express.

Some additional info on the current state of Express:
Express limits and features may change from release to release, so its best to have a look at the products page.
Express does not include professional support.
Express does not have a guaranteed upgrade path. Put another way, features available in Express may change with an upgrade.
Mixing Express with Plus is not recommended: Future Plus upgrades may have features that are not compatible with Express.
Due to the complexities of mixing Express and Plus, it voids professional support e.g. Companies that have a Plus at a hub site and Express at the remote sites.
Ad Hoc support at an hourly rate has been introduced.

l found login wanos via "tc' , don't need password

Hi, yes it appears to be raid or scsi compatibility. If the raid drive is available when booting from flash then the drive can be used for the datastore without the dd process. Alternatively please install ESXi as a base system

ESXi will also allow other vm's to run on the hardware since the hardware is most likely significantly more powerful than required for 20mbps.

Deployment / Re: deployment behind Firewalls
« on: May 18, 2015, 03:49:08 PM »
Sounds like the second network interface is not detected.

FAQ / Re: Datastore Full?
« on: May 07, 2015, 12:46:47 PM »
The datastore cannot be cleared while in edge mode. It is to help avoid making a mistake.

Installation / Dell 1950 / Dell 2950 / HP ML350 G5 NIC
« on: March 31, 2014, 02:02:07 AM »
Broadcom BNX Network Interfaces not coming online on Dell 1950/ 2950 / HP ML350 G5 / HP ML360 G5 Similar.
An error during boot up is briefly displayed similar to "Can't load firmware file bnx2/bnx2-mps"

Current workaround:
Please uncomment the following line in /opt/
#rmmod bnx2 && modprobe bnx2

Reset just to be sure everything works after boot up:

After reboot verify:
'ifconfig' should display tun0

Deployment / Re: WanOS complex setup
« on: March 28, 2014, 12:52:23 PM »
Hi, pleasure, hope we can figure it out. The configs looks perfect for the setup and should work if traffic that match the policies flow through the device. The by-pass makes sense for the Internet traffic. The multisite config is also configured right, although only required if there are multiple edge sites.

Some info that might point us in the right direction:
Does the wan0 network traffic (Reports > Network > Traffic) reflect the same network traffic that you expect going over the router? (E.g is it possible that traffic towards the Edge site is missing the Core)
Also just to be sure, traffic is directly between the and range? Or in other words no special NAT addresses? If for example the servers have a public addresses that are translated to the internal range.
On the dashboard is the datastore growing? (Shows that the policies are matching the subnets and the database is growing)
Is the free traffic graph showing any savings on a second transfer?
Protocol used not encrypted? (Datastore will grow, but traffic saving stats will remain low)
+-Speed throughput of the IPsec VPN? (If throughput is higher than the hardware specs can handle, the free traffic stats will show savings, but throughput test might not show throughput gains.
Any interface errors under Reports > Network > Interface Statistics?

Deployment / Re: WanOS complex setup
« on: March 28, 2014, 10:08:22 AM »
Hi there,

Ok, since there are only two devices, in a point to point configuration, the traffic policies are not essential. Also the by-pass rules apply only to the Core. That said, the policies looks right according to the diagram.

To verify that optimization is working, the free traffic graph can be viewed. When copying the same file (10mb) a second time this graph must display a saving if all is well and the protocol used is not encrypting the traffic. Careful with CIFS/SMB since the newer operating systems can sign/encrypt this traffic as well.

Would it be possible to upload the /tce/etc/wanos/ file? Interestingly someone else experienced the exact same issue when enabling a similar policy.

Also ensure to reset the service under Configure > Reset > Reset Service after making changes to the policy. Also just ensure the optimization mode on the Core is set to 'Core'.

Graphs of the optimized vs by-pass traffic and graphs of the QoS classes will be available soon.

A session stats table will be available soon after introducing NetFlow which is ready as well.

Ok, thanks for the feedback, fixed in 0.1.8

Hi Michael,

Looks like you are doing everything 100% right. That sda1 in the GUI could be a cosmetic bug. You can verify where the datastore is actually at by running 'ls -la /wanos'

FAQ / Will it work with only one device?
« on: March 27, 2014, 09:23:01 AM »
Can I use this with only one device?

Unfortunately due to deduplication and compression, both devices are required.

Installation / Re: Hardware Compatibility
« on: March 26, 2014, 09:01:17 PM »
Yes, throttling down to 1 Mbps is just to make sure everything is ok in a lab environment. Some users want to visually see the throughput improvement e.g. 1 - 1.5 Mbps on the first pass and 4-10 Mbps on the second.

In the current version Edge -> Core optimization is not enabled yet. This will be enabled in the Wanos Plus version. That said most network traffic is asymmetrical or in other words users consume more data than they produce (normally), so for the majority this would be ok. The benefit for larger deployments is that the edges only need entry level CPU resources which lowers the access barrier. The Core needs about 10 times more CPU resources (which would be the same when optimization is enabled on the edge as well).

Troubleshooting / Re: No traffic optimization
« on: March 26, 2014, 06:08:03 PM »
Hi Sasha,

Ok, that topology looks really good. 4Mbps should be within the capabilities of a P4 and higher CPU. I don't think this is where the problem is since the free traffic graphs shows little or no optimization, which confirms what you are seeing with your tests.

I think we should double check the config. The two things that I can think of that could cause all traffic to be by-passed is if:
1) 'Core mode' is not enabled on the Core
2) A new traffic policy for optimized traffic is configured but not applied

I have attached the Core policy which looks perfect to me. Is this still correct? If possible restart the Wanos service to make 100% sure this policy is being implemented.

Installation / Re: Hardware Compatibility
« on: March 26, 2014, 05:50:30 PM »
That is a pretty neat setup with those SSD disks. Since your machine is connected to the Core, you can run a file or FTP server and test from the rest of the lan. Also, since both Core and Edge connect to the switch at 100Mbps-1Gbps the WAN simulation feature might come in handy to 'see' the difference with optimization on and off.

Pages: [1] 2 3 4