[OpenVPN home]	[Date Prev]	[Date Index]	[Date Next]
[OpenVPN mailing lists]	[Thread Prev]	[Thread Index]	[Thread Next]

[Err] Re: [Openvpn-users] Performance problem

Subject: [Err] Re: [Openvpn-users] Performance problem
From: postmaster@xxxxxxxx
Date: Tue, 04 Apr 2006 05:23:10 +0900
Auto-submitted: auto-generated

Transmit Report:

iryna7@xxxxxxxx¿¡°Ô ¸ÞÀÏ ¹ß¼ÛÀ» 3¹ø ½ÃµµÇßÁö¸¸ ½ÇÆÐÇÏ¿´½À´Ï´Ù.
(½ÇÆÐ ÀÌÀ¯ : 550 <iryna7@xxxxxxxx>: Recipient address rejected: User unknown in local recipient table(211.232.190.7))

<Âü°í> ½ÇÆÐ ÀÌÀ¯¿¡ ´ëÇÑ ¼³¸í
User unknown       :¸ÞÀÏÀ» ¼ö½ÅÇÒ »ç¿ëÀÚ°¡ Á¸ÀçÇÏÁö ¾ÊÀ½
Socket connect fail:¼ö½Å ¸ÞÀÏ ¼¹ö¿Í ¿¬°á ½ÇÆÐ
DATA write fail    :¼ö½Å ¸ÞÀÏ ¼¹ö·Î ¸Þ¼¼Áö ¼Û½Å ½ÇÆÐ
DATA reponse fail  :¼ö½Å ¸ÞÀÏ ¼¹ö·ÎºÎÅÍ ¸Þ¼¼Áö ¼ö½Å ½ÇÆÐ

Reporting-MTA: dns; nexg.net

Final-Recipient: rfc822;iryna7@nexg.net
Diagnostic-Code: smtp; 550 error - <iryna7@nexg.net>: Recipient address rejected: User unknown in local recipient table(211.232.190.7)
Action: failed
Status: 5.0.0

--- Begin Message ---

Subject: Re: [Openvpn-users] Performance problem
From: Jon Bendtsen <jon.bendtsen@xxxxxxxxxx>
Date: Mon, 3 Apr 2006 22:09:31 +0200

Den torsdag 30.mar kl. 22:00 skrev Andre Tann:

Hello everyone.

I have just set up my open vpn tunnel successfully. I can reach all
the LAN machines from the outside. The firewall forwards port 1194
to the open vpn server, and this server routes the traffic from out
of the vpn tunnel into the lan.

Alternatively, I can access the LAN also through an ipsec tunnel. In
this case, the firewall (=sonicwall) itself does all the vpn stuff,
and on the notebook I use VPNTracker as the client. I want to
replace this ipsec construction with open vpn.

Now there is a performance problem: inside the LAN is a database
server running, and on my notebook the database client is
installed.
It now takes about 40 seconds to fire up the database client when
being connected through ipsec.
But it takes more than three minutes to start the database client
when being connected through the open vpn tunnel.

I cannot see the reason: it is the same internet connection, and the
vpn server is sleeping: the load stays below 0.1 all the time.

Pinging the LAN gives the following results:

~8 ms ipsec <=> ~12 ms open vpn, with no load on the tunnel

but:

~10-15 ms ipsec <=> 300-700 ms open vpn while starting the database
client

How come? How can I find the bottle neck?


Which openvpn setup do you use? tun or tap? bridging or routing?
UDP or TCP ? Did you enable compression? Do you have alot of
When you ping, do you have alot of packet loss?

What about MTU issues? fragmentation?

Start using a network sniffer and notice how the traffic is different between IPSEC and OpenVPN.

JonB

____________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users

--- End Message ---

____________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users

Warning: require_once(../../../archive_common.php) [function.require-once]: failed to open stream: No such file or directory in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2006-04/msg00028.html on line 234

Fatal error: require_once() [function.require]: Failed opening required '../../../archive_common.php' (include_path='/usr/local/lib/php') in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2006-04/msg00028.html on line 234