This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

IPSEC Site-To-Site VPN Slow

Hi,

I have an strange issue, When I download a file from internet I get the maximum speed of my ADSL connection (13Mbit) But when I download from my remote site using a IPSEC tunnel i only get 2-4Mbit per stream.
If I download via multiple streams every stream get 2-4Mbit and I can get the maximum speed.

The CPU is never close to maxed. Only 1-2%.

I have Path MTU enabled and also ECN on both sites. I have tried without also but the same result.

Anyone got an idea on what could be the cause of this?

Best Regards
Frank

This thread was automatically locked due to age.

Parents

0 bvj over 8 years ago

Also experiencing poor bandwidth via site-to-site.  My observations should it help:

scp a 1 GB file:
  From: UTM-9.315-2  s/w
  To: UTM-8.310  s/w

Scenario 1
-------------
275 KB/s  over site-to-site IPSec VPN (AES-128 PFS,) no IPS enabled on either end. Destination is metal host on a 1-Gbit network.

Scenario 2
-------------
6.6 MB/s directly to destination firewall where source is behind firewall.

Comment
-----------
The metal host in Scenario 1 pulled the 1 GB file from the destination firewall in Scenario 2 @ 55 MB/s.
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 bvj over 8 years ago

Also experiencing poor bandwidth via site-to-site.  My observations should it help:

scp a 1 GB file:
  From: UTM-9.315-2  s/w
  To: UTM-8.310  s/w

Scenario 1
-------------
275 KB/s  over site-to-site IPSec VPN (AES-128 PFS,) no IPS enabled on either end. Destination is metal host on a 1-Gbit network.

Scenario 2
-------------
6.6 MB/s directly to destination firewall where source is behind firewall.

Comment
-----------
The metal host in Scenario 1 pulled the 1 GB file from the destination firewall in Scenario 2 @ 55 MB/s.
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data