Wireguard Insane CPU Usage
-
Hello there,
This is my first post over pfsense forums.
My systems is currently running on Ryzen 9 3950x ESXi 7.0.
The wireguard I set up is to forward udp game traffic from remote server to my pfsense box, however the CPU usage to forward these traffic is insanely high, using 50% of the whole Ryzen 9 3950x 16 cores CPU (27.5Ghz).The wireguard tunnel would run fine on itself when using normally to browsing and downloads, however I setup wireguard as an interface and port forwarded the traffic from remote server to game servers behind the pfsense firewall via wireguard internal network. From what I can see I am doing around 20-30kpps at the moment with about around 30mbps network traffic.
From the htop inside pfsense box, I can only see "kernel" is using 50% cpu usage.
Here are some attached screenshots
Once the load from wireguard is taken off, everything would resume back to normal, I also did try using openvpn to forward the same amount of traffic, but non of those show these insame amount of CPU usage.
-
On low or normal browsing load,
The wireguard performs outstanding performance compare to openvpn from what I can see, higher throughput, lower latency, higher reliability. It is just weird problem with high CPU usage on wireguard with high kpss and load.. -
Addon :
Just found out that netgate pulled the plug on wireguard, I don't know anything about the kernel's code, but this might be one of the reason they pulled the plug, something is unoptimized in the kernel code and does not work as intended.
Thank you for reading.