VPN IPSEC Very Slow
-
Good afternoon, how are you?, I'm having a slow VPN (Ipsec) problem, in one branch I'm using Pfsense 2.4.5-RELEASE-p1 and the other Pfsense 2.7.2 with AES 128 BITS SHA257 algorithm on both, could anyone tell me to help ?
-
@cunhaigo23
how do you know its slow?
what does slow mean? Whats the context? Internet speed at both locations? iperf tests done? -
@michmoor In both places we have 300mb/s links and we tested on other links as well and the result is the same 6mb/s. There is no bandwidth control in both places.
-
@cunhaigo23
But how are you testing? iperf or smb or....?
You havent provided any information that could be used to figure out why speeds are slow. -
@michmoor I tested via ftp and smb, both are slow and from different machines, the ipsec interface is not blocking anything, could it be something with the different versions of the two firewalls?
-
@cunhaigo23
SMB is a poor way to test throughput over VPN due to how the protocol works and latency.
What is the latency between sites?
What ist he CPU usage during file transfers?
Are you able to achieve full bandwisth when using a speedtest - not going through a vpn? -
@michmoor In terms of the speedtest, we achieved full speed, the latency between sites is low, the CPU does not exceed 10%, could there be something related to different versions of pfsense?
-
How did you set the MSS?
Give 1328 try. -
@NOCling Greetings, thank you very much for the tip, I will test it and report it here, thank you very much