Hello guys.

I have connected two CloudCore 1009 over a 1Gbps link using SSTP.

A bandwidth test between the CloudCores is around 840Mbps in TCP and 1 Gbps in UDP.

But when doing the bandwidth test over the SSTP tunnel I am getting 40 Mbps or little more and I do not know the reason.

Both CloudCores support hardware AES256 coding and the CPU are not high at all.

Any of you have suffered this issue before??

probably related to fragmentation, you'll need to adjust the MTU to max allowed by tunnel.

Unless something has changed recently, only IPsec can make use of hardware encryption on Mikrotik.

Also running tunnels over TCP is bad for performance and latency. Try IPSEC and results should be much better... hardware crypto offload will work and there will be no TCP to cause issues.

Unless something has changed recently, only IPsec can make use of hardware encryption on Mikrotik.

Opsss I expect the CloudCore 1009 to use the hardware crypto because the cypher is AES256 as in IPsec...

If I am wrong I need to redesign my solution because of this.

In the hardware crypto page, they state that CloudCore support AES256 hardware crypto but they do not specify that only using IPsec.