This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Poor IPSec Site to Site Speed

I have an Problem with poor throughput within an IPSEC Site to Site.

ASG1 v8.300 ASG2 v7.511
16Mbit ADSL 20Mbit up/down

Ipsec Site to Site with PSK and AES 256bit Encryption.

Throughput only 2Mbit per second. [:@]

ASG1=D525MW, 4GB Ram with all Hardware in HCL certified.
ASG2=DL380G4, 4GB Ram with all Hardware in HCL certified.

Now the strange thing which I can not understand:

- If I use my Cisco 870 Router instead of the ASG1 i get the full throughput with no limit. [:S]

- If I install the ASG1 in an virtual machine on my Vmware Workstation i get also unlimited throughput. [:S]

That isolates the problem for me into the ASG1 with D525MW, Board.
In the config is no QOS with Bandwidth Limit configured.
The Internet Lines are everytime the same.

Any Ideas?

Thanks in advance.

This thread was automatically locked due to age.

0 BAlfson over 13 years ago

If you watch the traffic with a protocol analyzer, do you see a problem? Do you have 'Support Path MTU discovery' checked in the 'Advanced' section of the 'Remote Gateway' definiton?

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel
0 Monstahund over 13 years ago in reply to BAlfson

OK, i have tracked down the Problem.

The ASG1 residents beyound a Box from ISP because this Box is serving my Media Center via Vodafone TV.

In order to have an Cisco VPN Access for my Iphone i have had an port mapping for IPSec to ASG1. Also the Nat Traversal was running at the ASG1.

If I disable the NAT Traversal on the ASG1 and restart the IPSec Site to Site I get the full throughput over the IPSec Site to Site.

So it is sad because i have no VPN Access for the Iphone anymore.

Solution would be to run to Vodafone TV over the Astaro but I have no technical details about it.
Cancel
Vote Up 0 Vote Down

Cancel