Hi.
This is my first post on this forum, so sory for my mistakes.
I create a openvpn tunnel with bridge between our two localizations. Both servers has one 100 Mbps NIC, so i create vlanto make a bridge between networks. Everything works fine, but speed it's strange - iperf shows only 25 Mbps - looks like NIC's speed divided by 4. I read carefuly all manuals about vpn and bridge, and didn't find solutions or explanations.
Here's my config:
Server interfaces:
eth0.3 Link encap:Ethernet HWaddr 00:14:38:bb:bb:e4
inet addr:SOMEPUBLICADDRESS Bcast:SOMEBROADCAST Mask:255.255.255.224
inet6 addr: fe80::214:38ff:febb:bbe4/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:516033 errors:0 dropped:0 overruns:0 frame:0
TX packets:1078055 errors:0 dropped:2 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:270359244 (257.8 MiB) TX bytes:642265728 (612.5 MiB)
eth0.10 Link encap:Ethernet HWaddr 00:14:38:bb:bb:e4
inet6 addr: fe80::214:38ff:febb:bbe4/64 Scope:Link
UP BROADCAST RUNNING PROMISC MULTICAST MTU:1500 Metric:1
RX packets:278401 errors:0 dropped:0 overruns:0 frame:0
TX packets:1230 errors:0 dropped:3 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:26260320 (25.0 MiB) TX bytes:240352 (234.7 KiB)
tap0 Link encap:Ethernet HWaddr 92:3a:93:a6:b9:c8
inet6 addr: fe80::903a:93ff:fea6:b9c8/64 Scope:Link
UP BROADCAST RUNNING PROMISC MULTICAST MTU:60000 Metric:1
RX packets:84595 errors:0 dropped:0 overruns:0 frame:0
TX packets:264246 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:4785500 (4.5 MiB) TX bytes:232851242 (222.0 MiB)
vpn0 Link encap:Ethernet HWaddr 00:14:38:bb:bb:e4
inet addr:10.10.80.96 Bcast:10.10.87.255 Mask:255.255.248.0
inet6 addr: fe80::214:38ff:febb:bbe4/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:255282 errors:0 dropped:0 overruns:0 frame:0
TX packets:148836 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:18690354 (17.8 MiB) TX bytes:223197862 (212.8 MiB)
tap, and eth0.10 are in bridge (vpn0)
Server config:
local SOMEADDRESS
port 7000
proto udp
dev tap
ca /etc/openvpn/sloneczko/cacert.pem
cert /etc/openvpn/sloneczko/gwcert.pem
key /etc/openvpn/sloneczko/gwkey.pem
dh /etc/openvpn/sloneczko/dh1024.pem
client-to-client
push "dhcp-option DNS 8.8.8.8"
push "dhcp-option DNS 10.10.81.250"
push "route-gateway 10.10.81.250"
keepalive 10 120
user nobody
group nogroup
persist-key
persist-tun
status openvpn-pijarska.log
verb 3
duplicate-cn
server-bridge
push "explicit-exit-notify 3"
script-security 2
cipher none
up /etc/openvpn/br-pijarska.up
down /etc/openvpn/br-pijarska.down
sndbuf 655360
rcvbuf 655360
txqueuelen 1000
fragment 0
mssfix 0
Client interfaces
eth0.10 Link encap:Ethernet HWaddr 00:21:70:48:87:d8
inet addr:192.168.4.200 Bcast:192.168.4.255 Mask:255.255.255.0
inet6 addr: fe80::221:70ff:fe48:87d8/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:2397150 errors:0 dropped:0 overruns:0 frame:0
TX packets:1139020 errors:0 dropped:4 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:1632802328 (1.5 GiB) TX bytes:356161141 (339.6 MiB)
eth0.40 Link encap:Ethernet HWaddr 00:21:70:48:87:d8
inet6 addr: fe80::221:70ff:fe48:87d8/64 Scope:Link
UP BROADCAST RUNNING PROMISC MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:295987 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:0 (0.0 B) TX bytes:25916531 (24.7 MiB)
tap0 Link encap:Ethernet HWaddr 9e:8e:89:f1:0f:8c
inet6 addr: fe80::9c8e:89ff:fef1:f8c/64 Scope:Link
UP BROADCAST RUNNING PROMISC MULTICAST MTU:60000 Metric:1
RX packets:280868 errors:0 dropped:0 overruns:0 frame:0
TX packets:84715 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:233918675 (223.0 MiB) TX bytes:4793240 (4.5 MiB)
vpn0 Link encap:Ethernet HWaddr 00:21:70:48:87:d8
inet addr:10.10.80.167 Bcast:10.10.87.255 Mask:255.255.248.0
inet6 addr: fe80::221:70ff:fe48:87d8/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:279545 errors:0 dropped:0 overruns:0 frame:0
TX packets:84715 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:229911663 (219.2 MiB) TX bytes:4793240 (4.5 MiB)
Client config
client
dev tap
proto udp
remote SOMEADDRESS 7000
resolv-retry infinite
ca /etc/openvpn/sloneczko/cacert.pem
cert /etc/openvpn/sloneczko/sloneczko-cert.pem
key /etc/openvpn/sloneczko/sloneczko-key.pem
nobind
user nobody
group nogroup
persist-key
persist-tun
mute-replay-warnings
verb 3
up /etc/openvpn/bridge-up.sh
down /etc/openvpn/bridge-down.sh
script-security 2
route-nopull
cipher none
sndbuf 655360
rcvbuf 655360
txqueuelen 1000
fragment 0
mssfix 0
I try diffrent values of MTU/cipher, and other options, but i didn't find a solution. Thanks for any help, or explanation why i have only 1/4 speed of NIC.
openvpn bridge on vlans - speed
Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech
Forum rules
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
-
miq
- OpenVpn Newbie
- Posts: 2
- Joined: Sat Jul 13, 2013 3:06 pm
Re: openvpn bridge on vlans - speed
Hi everyone.
I remove vlans, but speed it's still low - I have only 25 mbps on stations connected throught vpn. Any ideas?
I remove vlans, but speed it's still low - I have only 25 mbps on stations connected throught vpn. Any ideas?