Show posts

Main Menu

Welcome to OPNsense Forum.
Log in
Sign up

Profile Info
- Summary
- Show stats
- Show posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Show posts Menu

Messages - lukas.liechti

Pages1

Hardware and Performance / Re: DEC697 vs virtual build / Inbound Performance difference

December 15, 2025, 07:10:08 PM

after some more research i found the problem. There is still one question about.

Offical Docs Opnsense:
https://docs.opnsense.org/troubleshooting/performance.html

Code Select

net.isr.maxthreads = -1
net.isr.bindthreads = 1

Add another tunable. This time, we're allowing NIC drivers to use ISR queues.

Code Select

net.isr.dispatch = deferredNext up is to add tunables enabling RSS. (Note that net.inet.rss.bits should be set to the square root of how many cores you have.)

Code Select

net.inet.rss.enabled = 1
net.inet.rss.bits = 2

for other systems (DEC697 has 4-cores):

Code Select

net.inet.rss.bits = x

Code Select

for 4-core systems, use '2'
for 8-core systems, use '3'
for 16-core systems, use '4'
Etc.

next is working on latency but that has now a bit time.
can be closed :)

Hardware and Performance / DEC697 vs virtual build / Inbound Performance difference

December 13, 2025, 02:46:44 PM

Shortly some information what i had and what happends.

Befor i bought the DEC697 i was running opnsense on a VM (4 Cores and 4 Gig RAM) with a NIC (you can find it in the link).
NIC: 2-Port- Gigabit Ethernet-Networkcard

The VM runs on Proxmox and i was getting 1 Giga IN and OUT without any problems. I only had low VPN-Connections (aprox. 10Mbit).
I thought it would be about the encrypting and so on which is no well possible in a VM.
This was running now around 1 year and i wanted to get better VPN Performance and also get the Firewall out oft he virtualisation.
The VM-Firewall was also running on 25.7 the lasts months.

Now i got the DEC697, with ist 5 Gbit of Firewall and 600 Mbit of VPN (IPSec).
I did the following:

2 days ago i installed and update the firmware (also to 25.7 over serial-interface).
Imported the Backup from the old Firewall (VM-Version Community) also into the Community (DEC697)
Reasigned the Interfaces, changed the rules.
Confirmed the changes and was after a few minutes back online
I did a speedtest and had seen the following results

Traffic Inbound / Outbound / First 600Mbit download / Second 950Mbit Upload ??

Virtual Machine / Performance

DEC679 / Performance

How to finde the bottelneck of the probleme here?

Pages1