Daily slow downs
Posted: Thu Jul 14, 2011 2:46 pm
Hello,
We have been using OpenVPN for several months now and have had no problems until recently. Over the past week and a half every day, in the mid afternoon, traffic over the VPN comes to a crawl. We have been over the config which seems fine, and the server doesn't seem to be overloaded. We're just looking for some outside ideas on why the problem would be occurring all of the sudden.
Server Version info:
OpenVPN 2.1_rc2 i386-redhat-linux-gnu [SSL] [LZO2] [EPOLL] built on Mar 3 2007
Developed by James Yonan
Copyright (C) 2002-2005 OpenVPN Solutions LLC <info@openvpn.net>
Config:
local x.x.x.x
port 1194
# TCP or UDP server?
proto udp
dev tap
mssfix 1300
txqueuelen 900
reneg-sec 0
;dev-node MyTap
ca /usr/share/openvpn/easy-rsa/2.0/keys/ca.crt
cert /etc/openvpn/keys/server.crt
key /etc/openvpn/keys/server.key
dh /etc/openvpn/keys/dh1024.pem
server 10.250.0.0 255.255.0.0
ifconfig-pool-persist ipp.txt
;server-bridge 10.253.0.1 255.255.255.0 10.253.0.50 10.253.0.100
;server-bridge
;push "route 192.168.20.0 255.255.255.0"
client-config-dir /etc/openvpn/ccd
;route 192.168.40.128 255.255.255.248
client-config-dir ccd
;route 10.253.0.0 255.255.0.0
;learn-address ./scrip
;push "redirect-gateway def1 bypass-dhcp"
;push "dhcp-option DNS 208.67.222.222"
;push "dhcp-option DNS 208.67.220.220"
push "dhcp-option DNS 10.250.0.1"
push "dhcp-option DNS 192.168.245.22"
client-to-client
;duplicate-cn
keepalive 10 120
;tls-auth ta.key 0 # This file is secret
;cipher BF-CBC # Blowfish (default)
;cipher AES-128-CBC # AES
;cipher DES-EDE3-CBC # Triple-DES
;comp-lzo
;max-clients 100
;user nobody
;group nobody
persist-key
persist-tun
status openvpn-status.log
;log openvpn.log
;log-append openvpn.log
verb 6
;mute 20
We have been using OpenVPN for several months now and have had no problems until recently. Over the past week and a half every day, in the mid afternoon, traffic over the VPN comes to a crawl. We have been over the config which seems fine, and the server doesn't seem to be overloaded. We're just looking for some outside ideas on why the problem would be occurring all of the sudden.
Server Version info:
OpenVPN 2.1_rc2 i386-redhat-linux-gnu [SSL] [LZO2] [EPOLL] built on Mar 3 2007
Developed by James Yonan
Copyright (C) 2002-2005 OpenVPN Solutions LLC <info@openvpn.net>
Config:
local x.x.x.x
port 1194
# TCP or UDP server?
proto udp
dev tap
mssfix 1300
txqueuelen 900
reneg-sec 0
;dev-node MyTap
ca /usr/share/openvpn/easy-rsa/2.0/keys/ca.crt
cert /etc/openvpn/keys/server.crt
key /etc/openvpn/keys/server.key
dh /etc/openvpn/keys/dh1024.pem
server 10.250.0.0 255.255.0.0
ifconfig-pool-persist ipp.txt
;server-bridge 10.253.0.1 255.255.255.0 10.253.0.50 10.253.0.100
;server-bridge
;push "route 192.168.20.0 255.255.255.0"
client-config-dir /etc/openvpn/ccd
;route 192.168.40.128 255.255.255.248
client-config-dir ccd
;route 10.253.0.0 255.255.0.0
;learn-address ./scrip
;push "redirect-gateway def1 bypass-dhcp"
;push "dhcp-option DNS 208.67.222.222"
;push "dhcp-option DNS 208.67.220.220"
push "dhcp-option DNS 10.250.0.1"
push "dhcp-option DNS 192.168.245.22"
client-to-client
;duplicate-cn
keepalive 10 120
;tls-auth ta.key 0 # This file is secret
;cipher BF-CBC # Blowfish (default)
;cipher AES-128-CBC # AES
;cipher DES-EDE3-CBC # Triple-DES
;comp-lzo
;max-clients 100
;user nobody
;group nobody
persist-key
persist-tun
status openvpn-status.log
;log openvpn.log
;log-append openvpn.log
verb 6
;mute 20