Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Multi-WAN SSL latency

    Scheduled Pinned Locked Moved Routing and Multi WAN
    1 Posts 1 Posters 542 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T Offline
      TomVT
      last edited by

      Hi,

      I've just setup a pfSense box that's load-balancing 4 15 Mbit DSL connections (Fairpoint).  I've currently got a default rule directing traffic to a gateway group that includes WAN1 and WAN2.  SSL traffic is directed to WAN3 with WAN4 as a fail-over.  WAN4 is used for other traffic that doesn't like load-balancing, with WAN3 as a fail-over.

      The issue is that whatever interface I direct SSL traffic to develops very high latency, with some packet loss.  Meanwhile all other interfaces are fine.  Throughput for WAN3 is pretty low < 1.5 Mbps.  Usage stats are all very low.  OpenVPN tunnel works great, speed tests over HTTP get 20+ Mbps returns.

      If I direct the SSL traffic to a different interface the symptoms don't immediately change.  However, after about half an hour the new interface develops the lag while the old one returns to normal.

      I've also noticed that the latency is not present between the router and the next hop, it gets introduced at hop after that.  Pinging that hop from one of the other interfaces produces "normal" latency (~20 ms).

      If the SSL traffic drops out (school's out), the latency does vanish.

      Any insight would be much appreciated.

      Thanks,
      Tom

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.