1. Home
  2. pfSense® Software
  3. IPsec
  4. Slow IPSec Connection

Slow IPSec Connection

  • T

    Hey there,
    I'm using IPSec Tunnels to connect multiple remote locations to my main network.
    Unfortunatly, the speeds I'm getting are really low. My internet connection is 100Mbit/s down and 45Mbit/s up.
    For my remote location it's 400Mbit/s down and 45Mbit/s up. So it should be possible to get a file transfer to speeds of around 40Mbit/s.
    Unfortunatly, in reality it's 5-8Mbit/s. Connection locally to the nas results in speeds of >10Gbit/s, so the NAS shouldn't be the problem ;)
    CPU & RAM utilization is also very low, at around 1-10% for both.

    Phase 1 config:
    IKEv1
    Proposal: AES256, SHA1, DH14.

    Phase 2 config:
    ESP
    AES256
    SH1, PFS14

    Are the slow speeds results of the (really not great) configuration? I unfortunatly can't change that because of compatibility limitations. Would just love to try everything else before buying a new router.

    0
  • Derelict
    LAYER 8 Netgate

    What kind of transfer? What is the latency across the tunnel? How exactly are you measuring throughput?

    AESGCM will generally be faster overall than AES. Change the Phase 2 to AESGCM without a hash.

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

© 2020 Rubicon Communications, LLC | Privacy Policy