I am checking connection via OpenVPN for different modem types and after few days of testing I encountered following issue.
While running UDP traffic only, 900Mb/s downstream combined with 50Mb/s upstream after a few seconds connection speed dramatically drops to 600Mb/s for downstream and 0-20Mb/s upstream.
Checking in the logs i've notice following messages
Code: Select all
Aug 5 09:41:30 vsrv-bicab-3u ovpn-client[3670]: AEAD Decrypt error: bad packet ID (may be a replay): [ #97654 ] -- see the man page entry for --no-replay and --replay-window for more info or silence this warning with --mute-replay-warnings
Aug 5 09:41:31 vsrv-bicab-3u ovpn-client[3670]: AEAD Decrypt error: bad packet ID (may be a replay): [ #163190 ] -- see the man page entry for --no-replay and --replay-window for more info or silence this warning with --mute-replay-warnings
Aug 5 09:41:32 vsrv-bicab-3u ovpn-client[3670]: AEAD Decrypt error: bad packet ID (may be a replay): [ #228726 ] -- see the man page entry for --no-replay and --replay-window for more info or silence this warning with --mute-replay-warnings
I am generating traffic with a ByteBlower server and frame length without CRC of UDP packets is set to 1280.
Server config
1
local 100.80.1.252
2
port 1194
3
proto udp
4
dev tun
5
ca ca.crt
6
cert server.crt
7
key server.key
8
dh dh2048.pem
9
topology subnet
10
server 10.10.100.0 255.255.255.0
11
ifconfig-pool-persist /var/log/openvpn/ipp.txt
12
push "route 192.168.219.0 255.255.255.252"
13
client-config-dir ccd
14
route 192.168.219.8 255.255.255.248
15
keepalive 10 120
16
tls-auth ta.key 0
17
cipher AES-256-CBC
18
user nobody
19
group nogroup
20
persist-key
21
persist-tun
22
status /var/log/openvpn/openvpn-status.log
23
verb 3
24
explicit-exit-notify 1
I tried switching to TCP protocol but the behavior is the same only that i do not have error messages in syslog.