Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
24.7 Production Series
»
Is there a practical limitation on the number of ipsec tunnels?
« previous
next »
Print
Pages: [
1
]
Author
Topic: Is there a practical limitation on the number of ipsec tunnels? (Read 196 times)
bimbar
Sr. Member
Posts: 435
Karma: 25
Is there a practical limitation on the number of ipsec tunnels?
«
on:
November 06, 2024, 06:52:25 pm »
What the subject says, does an excessive number of ipsec tunnels slow down the firewall, does it lead to memory problems or something similar?
What would the recommended maximum number of ipsec tunnels be?
Logged
Monviech (Cedrik)
Global Moderator
Hero Member
Posts: 1595
Karma: 176
Re: Is there a practical limitation on the number of ipsec tunnels?
«
Reply #1 on:
November 06, 2024, 07:14:18 pm »
I guess it depends on the hardware since it uses resources. So the better hardware the higher the number of possible tunnels.
https://wiki.strongswan.org/issues/2911
Logged
Hardware:
DEC740
franco
Administrator
Hero Member
Posts: 17656
Karma: 1610
Re: Is there a practical limitation on the number of ipsec tunnels?
«
Reply #2 on:
November 06, 2024, 07:46:31 pm »
From experience three digit situations should be more than workable. In practice... it depends like Cedrik mentions.
Cheers,
Franco
Logged
bimbar
Sr. Member
Posts: 435
Karma: 25
Re: Is there a practical limitation on the number of ipsec tunnels?
«
Reply #3 on:
November 06, 2024, 10:20:34 pm »
The customer has 60 IPSec tunnels and reports that performance gets worse over time and recovers after a reboot.
Logged
franco
Administrator
Hero Member
Posts: 17656
Karma: 1610
Re: Is there a practical limitation on the number of ipsec tunnels?
«
Reply #4 on:
November 07, 2024, 08:07:51 am »
Which version? How much IPsec traffic on average?
Cheers,
Franco
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
24.7 Production Series
»
Is there a practical limitation on the number of ipsec tunnels?