hi to ya all..
i have a little problem with vpn speed.
on my mikrotik rb3011(point1) i have set-up a 200mbps internet conection and a running PPTP server (i dont have pppoe because i can’t run it on my other points because i share my network with my buddies)
point1 <wireless 400mbps link> point2 <wireless 400mbps link> point3
on point1 i have a cable that is connected with 200mbps internet
so the problem is:
if i connect point2 vpn client to point1 where my 200mbps net is, the speed is 200mbps
but when i connect point3 to point2 that is connected to point1 i get only around 60mbps and if i try ftp download localy from point3 to point1 i get like 400mbps
nobody on point2 is using anything and also the same RB3011 on all 3 sides
question no2.
is it possible to configure that maybe 5 secrets on my pptp server have combined limit speed
example…now i have 5 secrets and everyone is limited to 10mbps so when they download they take 50mbps,and now i wanna set 10mbps limit to each secret but if they all together download they will be limited to 10mbps (so 2mbps each or similar doesent matter)
tnx
Hello
Did you test the link upload? You saw the use of bandwidth when you were testing;
i have 200/200mbps internet and the upload and download are the same 60/65 or 70/70.
try’d to set encryption NO and now i get like 90/90 but still no 200
what is the actual throughput without VPN between point 2 and point 3?
when i connect point3 to point2 that is connected to point1
do you mean a client from Point 3, connect to the VPN server at Point 1, but the link is via point 2? if yes, is Point 2 just a bridge? do you have fast forward enabled?
point1 to point3 it’s wireless link with 300mbps TCP speed and little more like 330mbps TCP and UDP is like 400-500Mbps.
Client that connects to Point3 where Point3 is connected via VPN to Point2 wich is connected via VPN to point1 get’s only like 60Mbps, but if the same client connect VPN to Point1 it get’s full speed so 200Mbps.
I have on all my devices FAsttrack configured
ps.
If client connect to Point2 or Point3 the speed is 60Mbps,but if he connects to the 1.hop so Point1 that i directly connected to the source internet, then he gets 200Mbps.
try’d another cloud RB and the problem the same
I would not think the CPU usage on any of the router would be too high? RB3011 should be able to handle 200Mbps VPN with ease.
sorry I am not sure what the problem might be so the following is pure guess work:
check for MTU isue so make sure, on both point 2 and point 3, MTU is correct and change MSS to “clamp-to-pmtu” is set on traffic leaving the uplink interface.
as for question 2, you can do this :
either
set up an simple queue which the target is the IP scope of your VPN clients (so to apply to the group of IP address as a whole)
/queue simple
add max-limit=10M/10M name=wlan target=192.168.90.128/25
or set up an simple queue which the target is the interface where these VPN clients could connect to
/queue simple
add max-limit=10M/10M name=wlan target=WLAN
edit:
I’ve been reading, and trying to understand, http://forum.mikrotik.com/t/vpn-mtu-change-mss-wiki/126853/1 and http://forum.mikrotik.com/t/packet-fragmentation-mtu-issue-with-site-to-site-vpn-tunnel/112165/1
would sugges to play with MTU and MSS and see if you can improvem your throughput.
thank you all for the replay i have tryd everything but didn’t solve it so i just connect to the main RB and waiting for someone to come around and to see where is the problem.