Open VPN Server to Client Devices SLOW

Mat1987

Hey all

Im not going to list loads of information but anything else you need let me know.

I am trying to connect a client and a server together.  This part works fine i can ping both ways.  However when copying a file i cannot seem to get more than 10mb of my 60mb connection and it also fluctuates so much even down to 100kb.

I have tried UDP and TCP but cannot get any better.  Any help would be great.

Thanks

Mat

jimp

Mind your B's and b's (B for Bytes, b for bits)

How are you testing and what is the exact readout given by the software reporting the speed?

And what is your CPU usage while transferring the file? And what shows in "top -aSH" output during the transfer?

Mat1987

Sorry for late reply

I am just copying a 5gb file.  i just upgraded my broadband to 120mb/120mb but copying a file over SMB will not go over 30mb

cpu does not go over 38%

jimp

How many cores on the firewall? What does it look like in "top -aSH" or on Diagnostics > System Activity?

If it's a quad core firewall, OpenVPN could be maxing out one core but the overall CPU would only show 25%, for example.

Mat1987

Its a VM but it has 2 logical processors.

PID USERNAME PRI NICE  SIZE    RES STATE  C  TIME    WCPU COMMAND
  11 root    155 ki31    0K    32K RUN    1  91.5H  92.97% [idle{idle: cpu1}]
  11 root    155 ki31    0K    32K CPU0    0  91.3H  80.96% [idle{idle: cpu0}]
4961 root      52    0  262M 32588K piperd  1  0:01  4.98% php-fpm: pool nginx (php-fpm)
    0 root    -92    -    0K  192K -      0 214:11  0.00% [kernel{em1 taskq}]
  12 root    -72    -    0K  240K WAIT    1 153:21  0.00% [intr{swi1: netisr 1}]
    0 root    -92    -    0K  192K -      0 146:20  0.00% [kernel{em0 taskq}]
  12 root    -60    -    0K  240K WAIT    1  13:39  0.00% [intr{swi4: clock}]
  15 root    -16    -    0K    16K -      0  7:31  0.00% [rand_harvestq]
29484 root      20    0 28896K  7040K kqread  0  6:07  0.00% nginx: worker process (nginx)
29435 root      20    0 28896K  7048K kqread  0  6:04  0.00% nginx: worker process (nginx)
  291 root      20    0  107M 14236K select  0  5:39  0.00% /usr/local/bin/vmtoolsd -c /usr/local/shar
    0 root    -92    -    0K  192K -      0  5:01  0.00% [kernel{dummynet}]
93147 root      20    0 14512K  2312K select  0  2:06  0.00% /usr/sbin/syslogd -s -c -c -l /var/dhcpd/v
    7 root    -16    -    0K    16K pftm    1  1:29  0.00% [pf purge]
  265 root      52    0  262M 25144K kqread  1  1:27  0.00% php-fpm: master process (/usr/local/lib/ph
  21 root      16    -    0K    16K syncer  0  0:34  0.00% [syncer]
57149 root      20    0 15012K  2292K nanslp  0  0:33  0.00% [dpinger{dpinger}]
63602 root      52  20 17000K  2572K wait    1  0:32  0.00% /bin/sh /var/db/rrd/updaterrd.sh

pfSense is 2004 - 2016 by Electric Sheep Fencing LLC. All Rights Reserved. [view license]

i think it may be my brothers connection.  I'm going to test with HTTP download on a few remote pcs at weekend.

Derelict

Also keep in mind all your upload and download speeds. If you are running an OpenVPN server, connect to it, and download, it will be limited by the upload speed of the connection on the server. so on a 100/10 circuit 10 will be the max speed available.

I would change as little from the default as possible. And definitely stick with UDP for the OpenVPN unless you know you have a reason to change it.

Mat1987

my broaband is 120/120mb (Open VPN Server)
my brothers broadband is 100/06mb (Client)

Mat

Mat1987

Also i shouldnt be limited as i have got force all traffic on

Derelict

Huh?

Mat1987

i can upload at 120mb so why cant my brother with his 100mb nearly max my line out.  i get 30/40 tops

Mat