Poor speed on ER605 site2site VPN
Hi, I've set up a IPsec site to site VPN from my ER605v2 to a Meraki Z4.
ER605 side - 1Gbps service
Meraki Z4 side - 500 service
This is what I see for ER605v2 specs from this post: https://community.tp-link.com/en/business/forum/topic/709696
Althogh originally not the case, I've made changes so the site to site VPN uses ESP-SHA1/SHA256-AES256 but most I can get is 40Mbps, TOPS.
My settings
and
I assumed my site to site speed would improve, but noting, still max 40Mbps; tested with iperf3
.
The Meraki Z4 is capable
Stateful Firewall Throughput 500 Mbps
Maximum VPN Throughput 250 Mbps
Security Throughput 500 Mbps
Not sure what else I can try here, and not sure what is the issue.
Is anyone getting close to those 200MBps+ speeds on an IPsec site2site VPN on the ER605, as in that tablre??
TY
@words try AES-128 instead of AES-256, you'll get some more speed.
I have an IPSEC Tunnel in AES-128 against one Fortinet and I could reach about 150 Mbps.
EDIT: I'm using IKEv1 not IKEv2
the router can handle 200-250Mbps with IPsec,
use encryption like this for best performance
If you don't get 200Mbps or more, you need to look at your Cisco router.
here is my speed when copying a file to an ER605 router via Omada SD-WAN. it is about the same speed as Ipsec site to site
