|
|
PKI and user certificates relate to the same thing. The amount of certificates has no effect on the performance: The server doesn't keep track of all files. It simply checks the signature of the certificate of connecting clients (at connection time). Whether 1 or 1 million certificates were emitted doesn't make any difference. Actually, according to your setup, the number of certificate might have one indirect effect on performance: CRLs. If you use a CRL (black list of revoked certificates), chances are your CRL is longer when you have more clients. Then again, I don't thing the impact would be meaningful since it should be compared to the total workload (including SSL encryption of tunnels) which can also be expected to grow with the number of clients. HTH, Serge. http://www.apptranslator.com > -----Original Message----- > From: openvpn-users-bounces@xxxxxxxxxxxxxxxxxxxxx > [mailto:openvpn-users-bounces@xxxxxxxxxxxxxxxxxxxxx] On > Behalf Of Antonio Forster > Sent: mercredi 7 mars 2007 22:09 > To: openvpn-users@xxxxxxxxxxxxxxxxxxxxx > Subject: [Openvpn-users] (no subject) > > Hello all, > > I'm quite new to openvpn and really liked its features I've > seen working in the last days I'm using it. I was looking for > some information on capacity limitations of openvpn in the > list archives and openvpn homepage but didnt find what I was > looking for... > > One of my questions refers to the amount of certificates > openvpn can handle locally (for instance, created using the > scripts in openvpn package, or if there is any recommended > PKI infrastructure for it). > Can it handle, lets say, 10.000 user certificates? I suspect > that would cause a huge seek time for the correct file, so I > assume PKI would be required. Maybe I'm wrong.. > > Also, I was looking for some info on any experienced high > throughput installation and amount of concurrent users. > > Thanks in advance for any help. > > -- > Antonio > > -------------------------------------------------------------- > ----------- > Take Surveys. Earn Cash. Influence the Future of IT Join > SourceForge.net's Techsay panel and you'll get the chance to > share your opinions on IT & business topics through brief > surveys-and earn cash > http://www.techsay.com/default.php?page=join.php&p=sourceforge > &CID=DEVDEV > _______________________________________________ > Openvpn-users mailing list > Openvpn-users@xxxxxxxxxxxxxxxxxxxxx > https://lists.sourceforge.net/lists/listinfo/openvpn-users > ______________________ OpenVPN mailing lists https://lists.sourceforge.net/lists/listinfo/openvpn-users |