Increased RTT times
-
Thanks for the reply.
Here is the quality graph. Seems not too bad, yes/no?
-
The amount of packet loss seems high to me.
-
To give an idea of what your quality graph should probably look like, I included a wide range of screenshots I've done over the years. The more recent 12ms pings is because I switched to using the external target of 4.2.2.2 instead of my ISPs speedtest server. This way I could monitor my internet connection instead of just my link.
I'm assuming your PPPOE is probing an ISP target.
Two things could be at play and could be a mix-
Your link has issues
-
Your target has issues
-
-
Harvy has a particularly nice WAN link. Here is a 2 day graph from my more pedestrian link.
-
As my main concern was the increased VPN (vpn_gw) RTT times I did the graph below. Keep in mind my target is not external but 10.10.100.1.
If I graph my WAN (WAN_PPPOE) where the monitoring IP is blank in System | Routing | Gateways for the same time period I get this:
Thanks again for your help.
Greg
-
Low levels of packet loss on the WAN link will result in increased latency on the VPN link. Higher levels of packet loss on the WAN link will result in both the WAN and VPN connections resetting. This is likely why you are seeing frequent restarts of dpinger.
-
This shows the RTT for the VPN (vpn_gw) suddenly increased on Jan 6 while the packet loss does not change on either the WAN or the VPN.
-
So did you edit your vpn monitor ip? Normally out of the box setting up a vpn client connection in pfsense it will point to its own interface as the gateway - ie the vpn connection. So the RTT should be like almost nothing..
Is pfsense pointing to the far end of the vpn connection, or its own IP as the monitor?
-
So did you edit your vpn monitor ip? Normally out of the box setting up a vpn client connection in pfsense it will point to its own interface as the gateway - ie the vpn connection. So the RTT should be like almost nothing..
Is pfsense pointing to the far end of the vpn connection, or its own IP as the monitor?
As per these instructions https://vpn.ac/knowledgebase/63/OpenVPN-on-pfSense.html from my VPN Provider the VPN Monitor IP is 10.10.100.1. Do not know why that was chosen.
-
Well that is clearly some IP in their network.. If your normal wan monitoring RTT has not increased you will have to get with them on any slowdowns your seeing in their network.
-
Well that is clearly some IP in their network.. If your normal wan monitoring RTT has not increased you will have to get with them on any slowdowns your seeing in their network.
OK, Thanks for your time.
Greg
