Performance drops when enabling OpenVPN and IDS/IPS simultaneously on OPNsense

Started by willsmith, September 29, 2025, 10:26:40 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
September 29, 2025, 10:26:40 AM
Hi everyone,

I am running OPNsense on x86_64 hardware (i5, 8GB RAM). When OpenVPN site-to-site and IDS/IPS (Suricata inline) are enabled at the same time, the network performance drops quite significantly:

VPN throughput drops about 20–30% compared to when IDS/IPS is disabled.

CPU load increases sharply during peak hours.

I have tried:

Enable AES-NI and hardware offloading.
Reduce Suricata rule set.

But the situation has not improved much.

Question:

Is there any way to optimize the configuration to reduce the impact between VPN and IDS/IPS?
Does upgrading hardware (CPU/RAM) really solve this problem?

Looking forward to receiving comments from those with experience.
Thanks!
September 29, 2025, 11:51:39 AM #1
This is the German language subforum, please write in German or pick the matching English language one. Thanks.
Deciso DEC750
People who think they know everything are a great annoyance to those of us who do. (Isaac Asimov)
Print
Go Up Pages1
User actions