I am using an OpenVPN 2.5.7 on Windows Server 2016.
My Client is using OpenVPN 2.5.7 on a Windows 10 Pro.
I am having some network issue when a lot of traffic appears on the OpenVPN interface.
In order to reproduce, I used iperf3 and did some tests.
Quite often the transfer litterally stop on the vpn interface.
I can see a lot of TCP errors (TCP DUP ACK, TCP Fast Retransmission, TCP Out-Of-Order) on the VPN interface.
Errors actually happen not only during the interval where the transfer stop but during the whole 20 seconds...
What could cause the transfer to stop ? Any idea how to resolve this issue ?
On the Server I started iperf3 with the the following command: iperf3 -s
Here are the result I obtain on the client.
Code: Select all
C:\iperf-3.1.3-win64>iperf3 -c xxx.xxx.xxx.xxx -p 5201 -t 20
Connecting to host xxx.xxx.xxx.xxx, port 5201
[ 4] local xxx.xxx.xxx.xxx port 1041 connected to xxx.xxx.xxx.xxx port 5201
[ ID] Interval Transfer Bandwidth
[ 4] 0.00-1.00 sec 7.25 MBytes 60.6 Mbits/sec
[ 4] 1.00-2.00 sec 9.75 MBytes 81.7 Mbits/sec
[ 4] 2.00-3.01 sec 10.9 MBytes 91.1 Mbits/sec
[ 4] 3.01-4.00 sec 10.1 MBytes 85.2 Mbits/sec
[ 4] 4.00-5.01 sec 4.50 MBytes 37.4 Mbits/sec
[ 4] 5.01-6.01 sec 0.00 Bytes 0.00 bits/sec
[ 4] 6.01-7.00 sec 9.12 MBytes 77.3 Mbits/sec
[ 4] 7.00-8.01 sec 2.25 MBytes 18.7 Mbits/sec
[ 4] 8.01-9.01 sec 0.00 Bytes 0.00 bits/sec
[ 4] 9.01-10.01 sec 8.12 MBytes 68.6 Mbits/sec
[ 4] 10.01-11.00 sec 6.50 MBytes 54.9 Mbits/sec
[ 4] 11.00-12.00 sec 9.12 MBytes 76.5 Mbits/sec
[ 4] 12.00-13.00 sec 9.12 MBytes 76.3 Mbits/sec
[ 4] 13.00-14.01 sec 9.62 MBytes 80.0 Mbits/sec
[ 4] 14.01-15.00 sec 9.00 MBytes 76.1 Mbits/sec
[ 4] 15.00-16.00 sec 9.88 MBytes 82.9 Mbits/sec
[ 4] 16.00-17.00 sec 10.6 MBytes 89.1 Mbits/sec
[ 4] 17.00-18.01 sec 10.5 MBytes 87.8 Mbits/sec
[ 4] 18.01-19.00 sec 10.2 MBytes 86.5 Mbits/sec
[ 4] 19.00-20.00 sec 5.88 MBytes 49.3 Mbits/sec
- - - - - - - - - - - - - - - - - - - - - - - - -
[ ID] Interval Transfer Bandwidth
[ 4] 0.00-20.00 sec 152 MBytes 64.0 Mbits/sec sender
[ 4] 0.00-20.00 sec 152 MBytes 63.9 Mbits/sec receiver
Server Config:
Code: Select all
proto udp
port 1194
dev tun
server xxx.xxx.xxx.xxx xxx.xxx.xxx.xxx
keepalive 10 120
reneg-sec 86400
client-to-client
data-ciphers AES-256-GCM
verb 3
suppress-timestamps
explicit-exit-notify 2
push "explicit-exit-notify 2"
persist-key
persist-tun
max-clients 510
topology subnet
remote-cert-tls client
script-security 2
client-connect "[...]\\client_connect_script.bat"
ifconfig-pool-persist "[...]\\client_ips.txt" 0
crl-verify "[...]\\crl.crl"
ca "[...]\\ca.crt"
cert "[...]\\server.crt"
key "[...]\\server.key"
dh "[...]\\dh.pem"
tls-auth "[...]\\ta.key" 0
client-config-dir "[...]\\ccd"
Code: Select all
client
server-poll-timeout 4
nobind
remote xxxxxxxxxxxxxxx 1194 udp
dev tun
cipher AES-256-CBC
remote-cert-tls server
connect-retry 10 90
reneg-sec 604800
auth-nocache
verb 3
setenv PUSH_PEER_INFO
key-direction 1
ca "[...]\\ca.crt"
cert "[...]\\client.crt"
key "[...]\\client.key"
tls-auth "[...]\\ta.key"