VPN tunnels massively slows down if high network traffic
-
@paoloest said in VPN tunnels massively slows down if high network traffic:
Unfortunately today there are no good modems (stand alone) are available. So another Router where no router is really needed
Sure there are, for (V)DSL you can use the Draytek Vigor 165 for example. For cable it depends on your provider.
-
@grimson said in VPN tunnels massively slows down if high network traffic:
Draytek Vigor 165
thanks a lot. have seen this, but it costs more then the fritzbox 7530 - the pros of the fritzbox for me were that the modem (with the same specs) is build in and I can have one more security layer. (and with the fritzbox I can fine tune the parameters)
would you choose the modem over the router?
-
@paoloest said in VPN tunnels massively slows down if high network traffic:
would you choose the modem over the router?
When using pfSense, always. Double-NAT just adds useless complexity and the pfSense devs are a lot faster in fixing security issues than the AVM devs.
-
And beyond the pfsense there is a Sophos utm for one subnet and an xg for Another.
So maybe no bad idea to leave one layer of complexity ;)
-
You guys actually have VDSL2+? No jealousy here!
Otherwise the V130 would likely be cheaper.
Steve
-
@stephenw10
Sounds like another +1 for the vigorVdsl2+ - 3 weeks to go
-
@stephenw10 said in VPN tunnels massively slows down if high network traffic:
You guys actually have VDSL2+? No jealousy here!
Not to bad for a little village in the hills. Real fiber would be nicer, but that's not going to happen anytime soon here.
Edit: this is with a current link uptime of 6 weeks.
-
Nice!
-
Today the vigor will arrive and I am prepared to set it up ;)
One question: if it runs as a modem via pppoe and the connection is initiated by the pfsense. How can you dial in the webinterface of the modem? (The wan Interface has no ip in subnet of modem)
Do you have one vlan (7) as Gateway vlan and another as a Management vlan with static ip in the vigor subnet?
-
One method:
https://docs.netgate.com/pfsense/en/latest/interfaces/accessing-modem-from-inside-firewall.html