Home
Help
Search
Login
Register
OPNsense Forum
»
Archive
»
20.7 Legacy Series
»
strange behavior about VPNs with MultiWAN
« previous
next »
Print
Pages: [
1
]
Author
Topic: strange behavior about VPNs with MultiWAN (Read 1870 times)
snoopy78
Newbie
Posts: 15
Karma: 0
strange behavior about VPNs with MultiWAN
«
on:
December 05, 2020, 10:32:42 am »
hello @all,
i'm using since quite some time opnsense in following setup
WAN 1 = VDSL 100MBit/ + WAN 2 = LTE 70 MBit/s
For my WAN1+WAN2 i use a GW group to do loadbalancing which works, because i get the combined speed in speedtest
Additionally i also have outgoing VPNs bound each on a WAN Interfaces (f.e. zurich = WAN 1+ zurich LTE = WAN 2), for this i also have a GW group and all the bound clients did get the full speed of up to 170MBit via VPN
since latest update 20.7.5 i was wondering why the VPN traffic always was stuck at 100Mbit, while my normal clients (not passing the vpn gw group) still could get full speed of 170Mbit.
Within the opnsense the interface counter for VPN Zurich and VPN Zurich LTE always showed ~ 50Mbit traffic. Today i checked the counters of the LTE Router and did some speedtests. Then i can see clearly, that the VPN Traffic which should pass trough the WAN2 is passing trough WAN1, because i see the counters rising within the opnsense, but not a single packet is beeing counted on my LTE router. When doing the same test without the VPN, then the counters on the LTE router increase accodingly.
Is this a bug within the 20.7.5? Can i safely revert to 20.7.4, because it was working there without any issue.
If you could help mit, it would be great, because i am currently planning to spent a lot of money on a new 5G outdoor CPE so that i can increase my LTE/5G WAN speed.
Thank you in advance.
snoopy78
Logged
igpit
Newbie
Posts: 5
Karma: 2
Re: strange behavior about VPNs with MultiWAN
«
Reply #1 on:
February 12, 2021, 12:28:03 pm »
loadbalancing is session-based. i single connection is usually kept on a single link. thus you cannot exceed thatlinks speed.
what kind of speedtest do you run? if this is a multiconnection test, of course then you can utilize the sum of available bandwidths.
you created a GW group on top of the VPN? dont you need VTI for that?
i am currently thinking about a load-balance/failover setup for VPNs, like bonding several VPNs. haven't found the perfect setup, yet.
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Archive
»
20.7 Legacy Series
»
strange behavior about VPNs with MultiWAN