|
|
Mario Gonzalez wrote: > The application is more like telnet than gigabyte file transfers. > Something like 5k/hour/client. There are no serious peaks except for > restart scenarios, where all the clients are re-connecting. > > What initially concerns us are the requirements for handling all the > certificates. That concerns me too (I have a similar situation but only 500 clients, and no I haven't tested it yet). With 10^4 clients, if you have a 30 second keepalive than that's 6000 packets/sec just for keepalive (3000 in, 3000 out). Re-keying 10000 clients every hour is one every 2 seconds, which should be fine on a modern server provided they're spread out. (But: I haven't tried it; that's a _guess_). If they all try to connect at the same time...? -- Jamie ____________________________________________ Openvpn-users mailing list Openvpn-users@xxxxxxxxxxxxxxxxxxxxx https://lists.sourceforge.net/lists/listinfo/openvpn-users |