Site to site performance problem



  • Hello,

    we´re using openvpn site to site connections in our company to connect our offices between each other and have some datacenter locations aswell which have a central position. After we switched to two new datacenters where pfSense 2.2.1 firewalls are located we´re facing massive performance issues through the tunnel connections.

    The performance issues are on the normal Site to site tunnels to the 2.2.1 firewalls and are gettin worse if the traffice have to go through several hops. The site to site connections to one of our old datacenters with a 2.1 pfsense are fine. I got some performance improvements from 6Mbit/s to 50Mbit/s by switching from UDP to TCP but this is still far from optimal (going to the firewall without a túnnel i get around 150Mbit/s)

    One example setup is the following.

    our Hamburg office is connected with our Datacenter in France via a VPN connection. The France Datacenter is connected to our Canadian datacenter via a LAN (using provider tunnelling of our VLAN) connection.

    Speedtest from Hamburg to France:
    Client connecting to 10.96.1.30, TCP port 5001
    TCP window size: 21.9 KByte (default)
    –----------------------------------------------------------
    [  3] local 172.16.30.42 port 37156 connected with 10.96.1.30 port 5001
    [ ID] Interval      Transfer    Bandwidth
    [  3]  0.0-10.0 sec  63.6 MBytes  53.2 Mbits/sec

    Speedtest from Hamburg to Canada:
    Client connecting to 10.97.1.34, TCP port 5001
    TCP window size: 21.9 KByte (default)
    –----------------------------------------------------------
    [  3] local 172.16.30.42 port 43958 connected with 10.97.1.34 port 5001
    [ ID] Interval      Transfer    Bandwidth
    [  3]  0.0-10.2 sec  26.4 MBytes  21.8 Mbits/sec

    Speedtest from France to Canada:
    Client connecting to 10.97.1.34, TCP port 5001
    TCP window size: 23.5 KByte (default)
    –----------------------------------------------------------
    [  3] local 10.96.1.30 port 36068 connected with 10.97.1.34 port 5001
    [ ID] Interval      Transfer    Bandwidth
    [  3]  0.0-10.1 sec  100 MBytes  83.1 Mbits/sec

    Already here i have a massive loss.

    I did not found general openvpn problems related to pfsense 2.2 and tried already several stuff but was not able to solve the problem. But maybe one of you have a idea which causes the problems :)

    regards,
    eno


Log in to reply