openvpn home network access latency issues
Hi,
I configured an openvpn server on my c2300 router with home network only access.
I have a remote device acting as an openvpn client and running some http services on it.
I'm able to access these services without an issue when I'm using another remote openvpn client.
The problem appears when I try to access the services from a home network client.
I started to diagnose the problem with ping from the openvpn client:
- ping to local ip 192.168.123.254 of the c2300 from the remote openvpn client- OK
PING 192.168.123.254 (192.168.123.254) 500(528) bytes of data.
508 bytes from 192.168.123.254: icmp_seq=1 ttl=64 time=16.7 ms
508 bytes from 192.168.123.254: icmp_seq=2 ttl=64 time=16.9 ms
508 bytes from 192.168.123.254: icmp_seq=3 ttl=64 time=16.6 ms
508 bytes from 192.168.123.254: icmp_seq=4 ttl=64 time=16.4 ms
508 bytes from 192.168.123.254: icmp_seq=5 ttl=64 time=16.5 ms
508 bytes from 192.168.123.254: icmp_seq=6 ttl=64 time=16.3 ms
508 bytes from 192.168.123.254: icmp_seq=7 ttl=64 time=16.8 ms
508 bytes from 192.168.123.254: icmp_seq=8 ttl=64 time=16.6 ms
508 bytes from 192.168.123.254: icmp_seq=9 ttl=64 time=16.8 ms
508 bytes from 192.168.123.254: icmp_seq=10 ttl=64 time=16.7 ms
508 bytes from 192.168.123.254: icmp_seq=11 ttl=64 time=16.5 ms
508 bytes from 192.168.123.254: icmp_seq=12 ttl=64 time=16.5 ms
508 bytes from 192.168.123.254: icmp_seq=13 ttl=64 time=17.3 ms
508 bytes from 192.168.123.254: icmp_seq=14 ttl=64 time=16.8 ms
508 bytes from 192.168.123.254: icmp_seq=15 ttl=64 time=17.1 ms
508 bytes from 192.168.123.254: icmp_seq=16 ttl=64 time=16.5 ms
508 bytes from 192.168.123.254: icmp_seq=17 ttl=64 time=16.2 ms
508 bytes from 192.168.123.254: icmp_seq=18 ttl=64 time=16.3 ms
508 bytes from 192.168.123.254: icmp_seq=19 ttl=64 time=16.1 ms
508 bytes from 192.168.123.254: icmp_seq=20 ttl=64 time=16.4 ms
- ping to local ip 192.168.123.156 of PC from the remote openvpn client - NOT OK (increasing latency)
PING 192.168.123.156 (192.168.123.156) 500(528) bytes of data.
508 bytes from 192.168.123.156: icmp_seq=1 ttl=63 time=24.6 ms
508 bytes from 192.168.123.156: icmp_seq=2 ttl=63 time=24.6 ms
508 bytes from 192.168.123.156: icmp_seq=3 ttl=63 time=24.7 ms
508 bytes from 192.168.123.156: icmp_seq=4 ttl=63 time=25.2 ms
508 bytes from 192.168.123.156: icmp_seq=5 ttl=63 time=25.0 ms
508 bytes from 192.168.123.156: icmp_seq=6 ttl=63 time=24.7 ms
508 bytes from 192.168.123.156: icmp_seq=7 ttl=63 time=25.0 ms
508 bytes from 192.168.123.156: icmp_seq=8 ttl=63 time=25.3 ms
508 bytes from 192.168.123.156: icmp_seq=9 ttl=63 time=24.8 ms
508 bytes from 192.168.123.156: icmp_seq=10 ttl=63 time=24.6 ms
508 bytes from 192.168.123.156: icmp_seq=11 ttl=63 time=31.0 ms
508 bytes from 192.168.123.156: icmp_seq=12 ttl=63 time=127 ms
508 bytes from 192.168.123.156: icmp_seq=13 ttl=63 time=230 ms
508 bytes from 192.168.123.156: icmp_seq=14 ttl=63 time=176 ms
508 bytes from 192.168.123.156: icmp_seq=15 ttl=63 time=224 ms
508 bytes from 192.168.123.156: icmp_seq=16 ttl=63 time=637 ms
508 bytes from 192.168.123.156: icmp_seq=17 ttl=63 time=605 ms
- ping to any other openvpn client is OK
I tried changing security and openvpn configuration of the c2300 but nothing helped.
I was also able to replicate the issue with different devices acting as home network clients and openvpn clients.
This issue affects everything not only http and ping. With the current state, the openvpn server on the c2300 can only be used for:
* openvpn client to openvpn client communication
* openvpn client to c2300 communication
but it cannot handle openvpn client to home network client communication.
Any ideas how to fix this?
Thank you.