Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Running an open vpn tunnel inside another vpn tunnel?

    Scheduled Pinned Locked Moved OpenVPN
    3 Posts 3 Posters 2.1k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      Mithrondil
      last edited by

      Im a newbie to pfsense and pvpn tunnels.

      But my pfsense firewall is connecting to internet thru the only available default tunnel that PrivateInternetAccess provides for pfsense openvpn, wich is blowfish, and my main computer is connecting  with aes256 in a second tunnel that is going through the first blowfish tunnel.

      Is there any practical use to do this if you want maximal personal integrity to use a vpn tunnel inside another vpn tunnel?

      1 Reply Last reply Reply Quote 0
      • K
        kejianshi
        last edited by

        Well - Its definitely a good way to increase your latency (-:

        1 Reply Last reply Reply Quote 0
        • jimpJ
          jimp Rebel Alliance Developer Netgate
          last edited by

          You'd burn more CPU, be forced to deal with a much lower MTU, and genereally have more overhead, but there isn't any technical reason why that wouldn't work if the traffic is allowed across the 'outer' tunnel. Definitely need to use UDP tunnels, I can't imagine the nightmare you'd have from TCP retransmissions and compounded loss using nested TCP VPN tunnels…
          shudder

          Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

          Need help fast? Netgate Global Support!

          Do not Chat/PM for help!

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.