Anyone using Soekis Engineering vpn1401 on 1.2.3?
-
Hi all,
Just wondering if anyone is using a Soekis Engineering vpn1401 card on pfsense 1.2.3 I have been working on build a new system based on 1.2.3 release and ive found that when i have my vpn1401 installed after a random amount of time (after the VPN's come up 5 in total) the system will hardlock and crash.
So far ive not been able to get anything from logs and it wont report anything to the console, the system is just completely hardlocked.Im going to try it in another system later to make sure the card is not just crashing the system for some reason, I will note that when this was using 1.2.x previously there were no problems with the system…though it has not been powered on or used for about 2 months (it was a backup pf using pfsync but was removed because of space limitations).
Ill be installing it in a 1.2.x pfsense ive got at home to see if it can use it without crashing.. Ill report back if anything comes up, till then I am just wondering if anyone is using this particular card in a production 1.2.3 environment with more than 2 IPSEC vpn's.
Thanks!
-E -
What type of hardware are you using this card with?
If the base hardware is fast enough, you may actually lose speed by using such a card.
-
Good question.
Here are some specs.Dual Xeon (dual cores) @ ~2.0
3.5 GB ramI do know that with a system like this running the few tunnels ive got at the moment i should not have much to worry about. I am just wondering about the future when this system is running ~100 tunnels.
What type of hardware are you using this card with?
If the base hardware is fast enough, you may actually lose speed by using such a card.
-
It's less about the number of tunnels and more about throughput. What kind of bandwidth are you dealing with?
Odds are you'll end up saturating the PCI bus of that accelerator card at reasonable speeds. Those cards are meant to offload the task on lower-end hardware, in the several hundred MHz range, nowhere near what you have.
I'd run tests without the card installed and see if you still have trouble.
-
Today im in the process of rebuilding my -now-secondary- system that was running as our Primary with 1.2.3. Its VPN1401 card was working properly running 1.2.x so ill let you know if it appears to work as expected when running 1.2.3. If nothing else it would be nice to know if the vpn1401 card is the problem with the other box or if it might be something else with the other box. Ill report back later with results.
Thanks!
-EIt's less about the number of tunnels and more about throughput. What kind of bandwidth are you dealing with?
Odds are you'll end up saturating the PCI bus of that accelerator card at reasonable speeds. Those cards are meant to offload the task on lower-end hardware, in the several hundred MHz range, nowhere near what you have.
I'd run tests without the card installed and see if you still have trouble.
