1
22.1 Legacy Series / [SOLVED] NAT VIP - Bandwidth issues after upgrade
« on: July 04, 2022, 09:29:36 pm »
Hi Guys!
I'm experiencing some NAT VIP bandwidth issues after updating my opnsense cluster from 20.7 to 22.1.
In simple terms, the outbound NAT traffic is "capping" at about ~2 Mbps.
Doing simple iperf tests:
- before (20.7 ): 520Mbps
- after (22.1.8 ): 2.6Mbps
I've just reverted a node to double check, and I'm getting the same values.
My setup is similar to this one: https://docs.opnsense.org/manual/how-tos/carp.html .
In the meantime I'm testing the bandwidth of the firewall itself:
- from a desktop in the LAN to the firewall: 1 Gbps (normal LAN)
- from the firewall to the internet: 1 Gbps (normal ISP)
- from a desktop in the LAN, using firewall proxy (squid): 1Gbps (normal ISP)
The issue seems to be related with the NAT. In our setup, we have Manual NAT with the WAN VIP address.
Has anyone experienced a similar issue?
Thank you guys!
I'm experiencing some NAT VIP bandwidth issues after updating my opnsense cluster from 20.7 to 22.1.
In simple terms, the outbound NAT traffic is "capping" at about ~2 Mbps.
Doing simple iperf tests:
- before (20.7 ): 520Mbps
- after (22.1.8 ): 2.6Mbps
I've just reverted a node to double check, and I'm getting the same values.
My setup is similar to this one: https://docs.opnsense.org/manual/how-tos/carp.html .
In the meantime I'm testing the bandwidth of the firewall itself:
- from a desktop in the LAN to the firewall: 1 Gbps (normal LAN)
- from the firewall to the internet: 1 Gbps (normal ISP)
- from a desktop in the LAN, using firewall proxy (squid): 1Gbps (normal ISP)
The issue seems to be related with the NAT. In our setup, we have Manual NAT with the WAN VIP address.
Has anyone experienced a similar issue?
Thank you guys!