MTU/MSS config for wireguard/VXLAN/bridge/vlan

Started by skydiablo, March 16, 2021, 02:37:14 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
March 16, 2021, 02:37:14 PM
hi, this is my current site-site layer 2 setup:

Code Select

                             xxxxxxxxxxxx
                ┌──────┐     x          x       WAN via PPPoE
                │Router├─────x INTERNET x─────────────┐
                └──┬───┘     x          x             │
                   │         xxxxxxxxxxxx             │
                WAN│                                  │
┌──────────────────┴─┐                ┌───────────────┴──────┐
│OpnSense I          │                │OpnSense II           │
│                    │ WireGuard VPN  │                      │
│ ┌────────┐         │================│         ┌────────┐   │
│ │ BRIDGE ├─────────┼────────────────┼─────────┤ BRIDGE │   │
│ └┬───────┘  VXLAN  │================│  VXLAN  └────┬───┘   │
│  │                 │                │              │       │
│  │                 │                │          │   │VLAN100│
│  │                 │                │          ├───┘       │
└──┼─────────────────┘                │          │           │
   │                                  └──────────┼───────────┘
   │LAN                                       LAN│
                                                 ├───┐
                                                 │   │VLAN100


current speedtests (iperf) between bridge-to-bridge or vxlan-to-vxlan interfaces are round about 40MBit/s (up-/download), but my WAN-uplink supports 100/100MBit/s.
so, i think this problems relies on MTU/MSS miss configuration. all external links are default 1500 MTU values and can or should not change. i'm a bit confused about the "tunell in tunnel" (wireguard/vxlan) config and on the right hand side the PPPoE tunnel too :S
maybe someone can help me to define the right MTU/MSS values to bring mit layer2 site-to-site config in full speed!

thx, volker.
March 16, 2021, 03:37:17 PM #1
kind regards
chemlud
____
"The price of reliability is the pursuit of the utmost simplicity."
C.A.R. Hoare

felix eichhorns premium katzenfutter mit der extraportion energie

A router is not a switch - A router is not a switch - A router is not a switch - A rou....
March 17, 2021, 05:17:52 PM #2
Set MSS to 1300 on your internal for testing
April 28, 2021, 04:05:53 PM #3
which internal interface should i select to set the MSS to 1300?
April 28, 2021, 04:56:42 PM #4
LAN
Print
Go Up Pages1
User actions