Wireguard performance OPNSense?

Started by user239324, August 11, 2020, 06:38:17 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
August 11, 2020, 06:38:17 PM
So im asking because im looking for a routeros that handles gbit/gbit at the same time, bidirectional.
Im currently using the Windows client and it cant, because its user-space and written in go ive been reading.

So assuming the hardware isnt the limit, is this possible?
Im also reading freeBSD will be getting wireguard in the kernel at some point, any news on this?
Excellent firewall btw

Thanks
August 14, 2020, 12:02:00 PM #1
Well hardware can be a limit.
Choose well supported NICs and a fast enough CPU with high clock to be on the safe side.

The current Wireguard implementation has it's limits but since it becomes a very popular solution lately, situation will change. I have no news on the kernel implementation, but I didn't check on it for some month ;-)

Site-to-Site I have some 1G/1G Tunnels running and performing o.k for me with IPsec.
Will try to test one of those in the near future.
My experiences are that >500Mbit VPN for some devices and connections are hard to handle for different reasons.

If I have controll over both sides for S2S VPN it is possible to achive very good results.

Normal Clients / PCs my experiences are very different.
Twitter: banym
Mastodon: banym@bsd.network
Blog: https://www.banym.de
Print
Go Up Pages1
User actions