OpenVPN Road-warrior client has slow https access when connected



  • Hi,

    I have recently set up pfSense 2.0.2-RELEASE (i386) with a 'Road Warrior' style vpn server.

    I am not forcing "Redirect Gateway - Force all client generated traffic through the tunnel." (Box Unchecked).

    Everything works well, but I have a user complaining about very slow (20 seconds) https traffic when connected to the VPN.

    I had him check:
    http://www.whatismyip.com
    and
    https://www.whatismyip.com

    Both return his local WAN IP, not the remote IP of the VPN's WAN connection, so I conclude that his traffic is not being directed through the VPN in this case.

    He mentioned that the HTTP version loaded almost instantly, while the HTTPS version took 20 seconds, but eventually loaded.  Then, disconnecting from the VPN and trying again, both secure and non-secure pages load quickly again.

    Is there something going on with HTTPS traffic that is handled differently when choosing which network the traffic goes through?

    Also, no traffic shaper or load balancing is in use, it is a pretty stock install other than OpenVPN server.

    Thanks.


Locked