Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    100K openvpn users

    Scheduled Pinned Locked Moved OpenVPN
    4 Posts 4 Posters 1.2k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      shamirb
      last edited by

      Hi,
      I'm trying to setup 100K predefined users with certification, I created script to add them all.
      once the script reached to 9K users, openvpn become very slow.
      Any idea how to figure out what is the root cause for it ?

      Thank you,
      Shamir

      1 Reply Last reply Reply Quote 0
      • H
        heper
        last edited by

        hows the cpu/memory/disk usage when adding this ammount of users? is the GUI still working?

        1 Reply Last reply Reply Quote 0
        • jimpJ
          jimp Rebel Alliance Developer Netgate
          last edited by

          The built-in user manager on pfSense is not designed for that sort of scale. For that many users, you should be using a dedicated authentication server like RADIUS or LDAP.

          You can keep the users off the box and generate certificates locally if you wish, the export package should still be able to pick up on that so long as the certs are made from the same CA.

          Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

          Need help fast? Netgate Global Support!

          Do not Chat/PM for help!

          1 Reply Last reply Reply Quote 0
          • ?
            Guest
            last edited by

            I'm trying to setup 100K predefined users with certification, I created script to add them all.

            On what hardware you are trying this to realize?

            once the script reached to 9K users, openvpn become very slow.

            And writing a script that adds even and only adding 5000 users per run should not work?

            Any idea how to figure out what is the root cause for it ?

            • The CPU is to lame
            • The RAM size is to low
            • The storage is to slow or small

            Why not using an external OpenVPN Server? We use CentOS 6.6 and SoftEtherVPN Server on it.
            Intel E3-1286v3 / 32 GB ECC RAM / Samsung840 Pro 512 GB SDD
            Comtech AHA600 VPN acceleration card (AES-CBC)
            Comtech AHA PCIe372 compresison card (on each side)

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.