slower than expected speeds between two ccr1072

timorganmk · July 28, 2022, 9:51pm

Hi,

I have three ccr1072s. two are in production and the other is connected to one of the production units via a 10G fiber. I have a 2gig uplink from the production router. The issue I have is I cannot get over about 500mbps when I run a speedtest at speedtest.net.

Let me give a little background to understand my situation. I work for a small wisp and we have fiber in a building. There are other tenants in this building and we would like to sell gig service, but have been unable at this point due to this problem. We currently have two fiber providers for uplinks and each has a ccr1072 connected to it. We utilize vrrp as a failover for our service.

in order to test the system, I set up the third ccr1072(spare) on a workbench and ran a fiber between it and one of the production units. I ran a bandwidth test between the units and get 9 Gbps using UDP but only 500 Mbps using TCP. I am unable to figure out why I have this limitation. Neither router gets anywhere close to maxing the CPU.

I would appreciate any ideas or thoughts.

Thanks,

Adding the config now. Sorry I did not post that immediately. This is the production unit. The other unit has only an ip address, dns and nat rule. I will upload that as well here shortly.

Removing everything for now. I was in too much of a hurry and may have posted too much.

rextended · July 28, 2022, 10:12pm

If it was my peripheral, first of all,
apart from remembering the configuration and being convinced that it is without errors because I made it myself,
I would do an export of the configuration and see if I made any mistakes, on the other hand I am not so perfect…

But it’s not mine and I don’t see any configuration,

so?

timorganmk · July 28, 2022, 10:31pm

I just added the config of the main unit. will add the other soon. it is extremely basic. set up just for testing.

Thanks,

rextended · July 28, 2022, 10:44pm

Oh, probably I understand… you have all “virtual” VLAN managed by CPU instead of Hardware VLAN directly inside the Switch Chip.

Oki, is the same chip the cpu and the switch, but “virtual LAN” are not accellerated by hardware offloading…
I know that only using vlan on bridge or on switch (hardware matter) use hardware accelleration.
Or better, no one of your interface are hardware offloaded.

But I can fail, and what all I write is wrong, I hope someone with experiences with all this “virtual VLAN” drop in and give some ligth.

Sorry but now I’m going away. It’s time to sleep…

rextended · July 28, 2022, 10:52pm

Pleas do not post again export without removing all first the private parts…

This is the start of your firewall…

/ip firewall filter
add action=accept chain=input comment="input - winbox - accept" dst-port=8291 protocol=tcp

Seriously???..