Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    VoIP, VPN, QoS : IPSec or OpenVPN?

    Scheduled Pinned Locked Moved OpenVPN
    4 Posts 2 Posters 1.8k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      thomas7467
      last edited by

      Hi all,

      We want to connect 4 sites with VPN with  PFSENSE software.

      On central site, we have a data server and Alcatel OmniPCX - remote sites will hosts PC & IP Phones, who access data server and IPBX through VPN.

      What would be the best choise for VPN : OpenVPN or IPSEC?

      PCs will access Internet through WAN interface. I need probably to use QoS to priorise Voip flow against data flow through VPN.

      Thanks for your feedbacks,

      Thomas

      1 Reply Last reply Reply Quote 0
      • DerelictD
        Derelict LAYER 8 Netgate
        last edited by

        I am curious about the answer to this, too.

        This is a difficult problem because you have two QoS issues.  The first is the prioritization of VPN traffic over the WAN with the other WAN traffic.  The second is prioritization of VoIP within the VPN tunnel.

        I have not tried this yet, but I think the only way you are going to be able to even attempt to apply QoS to different traffic in the VPN tunnel is with OpenVPN and assigned interfaces.

        Take a look at this: https://forum.pfsense.org/index.php?topic=64439.0

        Chattanooga, Tennessee, USA
        A comprehensive network diagram is worth 10,000 words and 15 conference calls.
        DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
        Do Not Chat For Help! NO_WAN_EGRESS(TM)

        1 Reply Last reply Reply Quote 0
        • T
          thomas7467
          last edited by

          Hi,

          I've just configured my 4 OpenVPN servers, with 4 different ports.

          Next step  : I've created 4 "virtual" interfaces (Interfaces -> assign), with network ports ovpns1(), ovpns2(),…

          I think I can use Traffic Shaper & Queues to priorize trafic inside my VPNs through my interfaces (next step), but now i'm looking how to priorize packets between my VPN interfaces...

          Any ideas?

          Thank you,

          Best regards,
          Thomas

          1 Reply Last reply Reply Quote 0
          • DerelictD
            Derelict LAYER 8 Netgate
            last edited by

            What do you mean by prioritize between the interfaces?

            You can shape traffic going out an interface.

            Chattanooga, Tennessee, USA
            A comprehensive network diagram is worth 10,000 words and 15 conference calls.
            DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
            Do Not Chat For Help! NO_WAN_EGRESS(TM)

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.