Menu
What's new
By:
Filters Better Search

VPN Server Performance

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

J

jrmtz85

Regular Contributor
Hi there,

I tried searching for this, but the word "VPN" is too short and gets omitted from searches here.
Trying to figure how enabling VPN server may impact performance on my network.

Internet
1000/50 over DOCSIS 3.1

Router:
86U on 384.7_2
AI Protect enabled
QOS enabled
Diversion
Skynet
typical RAM usage is 93-95%

So, with this little amount of RM available, will enabling the VPN server impact performance.
I frequently do max the gigabit down, so I don't want to lose that. Primarily looking to remote in to connect to my Synology.

Thoughts?

Thanks!
 
jrmtz85 said:
Hi there,

I tried searching for this, but the word "VPN" is too short and gets omitted from searches here.
Trying to figure how enabling VPN server may impact performance on my network.

Internet
1000/50 over DOCSIS 3.1

Router:
86U on 384.7_2
AI Protect enabled
QOS enabled
Diversion
Skynet
typical RAM usage is 93-95%

So, with this little amount of RM available, will enabling the VPN server impact performance.
I frequently do max the gigabit down, so I don't want to lose that. Primarily looking to remote in to connect to my Synology.

Thoughts?

Thanks!
Click to expand...
I run OpenVPN Server on three routers I support remotely and no one complained about impact on their LAN performance. 2 x RT-AC88U and 1 RT-AC86U. But I have never tested when doing gigabit download.
 
Xentrk said:
I run OpenVPN Server on three routers I support remotely and no one complained about impact on their LAN performance. 2 x RT-AC88U and 1 RT-AC86U. But I have never tested when doing gigabit download.
Click to expand...

I suppose I could activate then run tests to see how its working. Any advice on best server settings? Once again, having a hard time searching for VPN here.
 
Odkrys said:
Your upload throughput is client download throughput.
So it will consume 20% of 2nd core.
Click to expand...

Oh yeah, I know I'd be limited to my upload for the client. I meant the impact to local connections from having the server running in the background on the router.
 
jrmtz85 said:
I suppose I could activate then run tests to see how its working. Any advice on best server settings? Once again, having a hard time searching for VPN here.
Click to expand...
Here is the link to the tutorial I wrote: https://x3mtek.com/openvpn-server-setup-instructions-for-asuswrt-merlin/

Just as with OpenVPN clients, the primary setting that impacts performance on the server side is the cipher. The GCM ciphers perform the best from my testing. The higher the number the harder the CPU has to work.
 
Xentrk said:
Here is the link to the tutorial I wrote: https://x3mtek.com/openvpn-server-setup-instructions-for-asuswrt-merlin/

Just as with OpenVPN clients, the primary setting that impacts performance on the server side is the cipher. The GCM ciphers perform the best from my testing. The higher the number the harder the CPU has to work.
Click to expand...

Thank you. Interestingly, I don't see Push LAN to Clients, Direct Clients to Redirect Internet Traffic, nor Respond to DNS as options. Have they been removed??
 
jrmtz85 said:
Thank you. Interestingly, I don't see Push LAN to Clients, Direct Clients to Redirect Internet Traffic, nor Respond to DNS as options. Have they been removed??
Click to expand...
Looks like you are right. I failed to notice the update.

384.5 (13-May-2018)

- CHANGED: Revised OpenVPN server options:
o Removed "TLS Reneg time" (rarely used, can manually
be set as a custom option)
o Removed "Server Poll" (which didn't work
properly), and reimplemented watchdog service,
hardcoded to 2 mins frequency.
o Removed "Push LAN" and "Redirect Gateway",
replaced with new Client Access setting
o Removed Firewall setting (firewall rules are now
always created, and the broken External mode
was fixed and integrated into the new Client
Access setting). You can now use the postconf
script to override it.
o Removed option to respond to DNS queries - enabling
the option to Push DNS will also handle it
o Added new Client Access setting to select between
three types of access: LAN only, WAN only (will
block access to the LAN, including the router
itself) and LAN + WAN.
o Keys and certificates can now be up to 7999
characters long.
Click to expand...

I will need to update the blog post. One more thing on my to-do list. Ugh.
 
I don't think available RAM has much to do with your WAN<>LAN speeds. I run Diversion and a VPN server and still achieve full WAN<>LAN speeds.
 
You must log in or register to reply here.

Similar threads

A
Google maps on Android can't access internet when connected to my router's VPN server with "LAN only" enabled
Replies
5
Views
859
Aerandir14
A
T
VPN Director and Merlin Firmware RT-AC86U_386.7_2 - Slow Wifi Performance
Replies
5
Views
2K
128bit
128bit
Trebuin
VPN server with blocked ipv4
Replies
2
Views
929
Trebuin
Trebuin
RMerlin
Release Asuswrt-Merlin 388.1 is now available for all supported Wifi 6 models
43 44 45
Replies
886
Views
193K
BliteKnight
BliteKnight
RMerlin
  • Locked
Beta Asuswrt-Merlin 388.1 Beta is available for select models
44 45 46
Replies
903
Views
189K
RMerlin
RMerlin
Similar threads
Thread starter Title Forum Replies Date
C How can I do this.. Router VPN Client to Server 2 Asuswrt-Merlin 3
G VPN Client with Public IP, split tunnel web server over VPN and other traffic not on the VPN Asuswrt-Merlin 4
A Cheapest device to run VPN server Asuswrt-Merlin 6
N Solved Unable to connect to VPN server with self-signed certificate Asuswrt-Merlin 0
G [Help] Routing VPN server through VPN client (external VPN Provider) Asuswrt-Merlin 14
B Cannot connect to Wireguard VPN Server Asuswrt-Merlin 5
Z VPN Server on port 53/443? Asuswrt-Merlin 26
Tom Jo-Jo Junior Shabadoo VPN as server - ipv4 over ipv6 Asuswrt-Merlin 0
P VPN Server Problem (wireguard and openvpn) Asuswrt-Merlin 7
H Get VPN DNS Server(s) In Script? Asuswrt-Merlin 0

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 774 (members: 20, guests: 754)
Top