Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    SG-3100 IPSEC tunnels do not pass traffic after creating 275 simultaneous tunnels

    IPsec
    1
    1
    127
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      teott1 last edited by

      I have created 275 tunnels that individual work fine, but when all turned up simultaneously, fail to pass traffic. The SA's come up, and the logs appear to be correct with no errors, but only a chosen few of the tunnels actually pass traffic. I have tried to modify the hash table in strongswan, but that did not change the outcome. Also, a related problem was that even one tunnel would go down when I initiated an ssh tunnel. I increased the maximum management sessions from 2 to 10 on the gui and this rectified that condition. BTW, the cpu and memory usage is relatively low. Is there an artificial limit on this device being that it is an arm based processor that would exhibit these traits?

      1 Reply Last reply Reply Quote 0
      • First post
        Last post