Hi, I have a AC66U with 380.70 running a openvpn server.
In the same location network there is a raspberry pi with another openvpn server.
On the router I'm getting speeds of 10Mbit/s on the raspberry 30Mbit/s
I think the problem must be the router configuration.
Here is the config
#
daemon
topology subnet
server 10.8.10.0 255.255.255.0
proto udp
port 1195
dev tun21
ncp-disable
cipher AES-128-CBC
comp-lzo adaptive
keepalive 15 60
verb 3
push "route 192.168.0.0 255.255.255.0 vpn_gateway 500"
duplicate-cn
push "redirect-gateway def1"
plugin /usr/lib/openvpn-plugin-auth-pam.so openvpn
verify-client-cert none
username-as-common-name
ca ca.crt
dh dh.pem
cert server.crt
key server.key
status-version 2
status status 5
and this is the Raspberry Pi config
dev tun
proto udp
port 1194
ca /etc/openvpn/easy-rsa/pki/ca.crt
cert /etc/openvpn/easy-rsa/pki/issued/server_tbH4aPOnsmMEThQO.crt
key /etc/openvpn/easy-rsa/pki/private/server_tbH4aPOnsmMEThQO.key
dh /etc/openvpn/easy-rsa/pki/dh2048.pem
topology subnet
server 10.8.0.0 255.255.255.0
# Set your primary domain name server address for clients
push "dhcp-option DNS 8.8.8.8"
push "dhcp-option DNS 8.8.4.4"
# Prevent DNS leaks on Windows
push "block-outside-dns"
# Override the Client default gateway by using 0.0.0.0/1 and
# 128.0.0.0/1 rather than 0.0.0.0/0. This has the benefit of
# overriding but not wiping out the original default gateway.
push "redirect-gateway def1"
sndbuf 0
rcvbuf 0
push "sndbuf 393216"
push "rcvbuf 393216"
client-to-client
keepalive 1800 3600
remote-cert-tls client
tls-version-min 1.2
tls-auth /etc/openvpn/easy-rsa/pki/ta.key 0
cipher AES-256-CBC
auth SHA256
user nobody
group nogroup
persist-key
persist-tun
crl-verify /etc/openvpn/crl.pem
status /var/log/openvpn-status.log 20
status-version 3
syslog
verb 3
Can anyone give a hint how to speed up the router?
Thanks
In the same location network there is a raspberry pi with another openvpn server.
On the router I'm getting speeds of 10Mbit/s on the raspberry 30Mbit/s
I think the problem must be the router configuration.
Here is the config
#
daemon
topology subnet
server 10.8.10.0 255.255.255.0
proto udp
port 1195
dev tun21
ncp-disable
cipher AES-128-CBC
comp-lzo adaptive
keepalive 15 60
verb 3
push "route 192.168.0.0 255.255.255.0 vpn_gateway 500"
duplicate-cn
push "redirect-gateway def1"
plugin /usr/lib/openvpn-plugin-auth-pam.so openvpn
verify-client-cert none
username-as-common-name
ca ca.crt
dh dh.pem
cert server.crt
key server.key
status-version 2
status status 5
and this is the Raspberry Pi config
dev tun
proto udp
port 1194
ca /etc/openvpn/easy-rsa/pki/ca.crt
cert /etc/openvpn/easy-rsa/pki/issued/server_tbH4aPOnsmMEThQO.crt
key /etc/openvpn/easy-rsa/pki/private/server_tbH4aPOnsmMEThQO.key
dh /etc/openvpn/easy-rsa/pki/dh2048.pem
topology subnet
server 10.8.0.0 255.255.255.0
# Set your primary domain name server address for clients
push "dhcp-option DNS 8.8.8.8"
push "dhcp-option DNS 8.8.4.4"
# Prevent DNS leaks on Windows
push "block-outside-dns"
# Override the Client default gateway by using 0.0.0.0/1 and
# 128.0.0.0/1 rather than 0.0.0.0/0. This has the benefit of
# overriding but not wiping out the original default gateway.
push "redirect-gateway def1"
sndbuf 0
rcvbuf 0
push "sndbuf 393216"
push "rcvbuf 393216"
client-to-client
keepalive 1800 3600
remote-cert-tls client
tls-version-min 1.2
tls-auth /etc/openvpn/easy-rsa/pki/ta.key 0
cipher AES-256-CBC
auth SHA256
user nobody
group nogroup
persist-key
persist-tun
crl-verify /etc/openvpn/crl.pem
status /var/log/openvpn-status.log 20
status-version 3
syslog
verb 3
Can anyone give a hint how to speed up the router?
Thanks