Tweet
I am using OpenVPN 2.6.0 site to site on custom hardware. I have ixia tester connected on both ends on LAN ports pumping TCP traffic to the other end. The setup is something like this:
Ixia <= LAN => Machine 1 (Server) <== WAN ==> Machine 2 (Client) <== LAN ==> Ixia
It is giving me ~800 Mbps bidirectional (so ~400 Mbps) where all links are 1G links. On this same setup, I earlier had OpenVPN 2.4.7 running on both ends and it was giving ~1.2 Gbps bidirectional (so ~600 Mbps). I am using OpenSSL 3.0 with OpenVPN 2.6.0 but even if I use OpenSSL 1.1.1v with OpenVPN 2.6.0, the throughput degradation is same. AES-256-GCM is the chosen cipher in both cases.
Can someone explain what could be the reason for the degradation when everything else is constant ? I can send the server and client configs, if needed, but they are the same except that in OpenVPN 2.6.0, we are using "compress migrate" option.
Ixia <= LAN => Machine 1 (Server) <== WAN ==> Machine 2 (Client) <== LAN ==> Ixia
It is giving me ~800 Mbps bidirectional (so ~400 Mbps) where all links are 1G links. On this same setup, I earlier had OpenVPN 2.4.7 running on both ends and it was giving ~1.2 Gbps bidirectional (so ~600 Mbps). I am using OpenSSL 3.0 with OpenVPN 2.6.0 but even if I use OpenSSL 1.1.1v with OpenVPN 2.6.0, the throughput degradation is same. AES-256-GCM is the chosen cipher in both cases.
Can someone explain what could be the reason for the degradation when everything else is constant ? I can send the server and client configs, if needed, but they are the same except that in OpenVPN 2.6.0, we are using "compress migrate" option.
Comment