This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
RUCKUS Self Help |   ASK the Pack
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Slow AP<=>ZD tunnel WAN performance.

ms264556
Contributor II

‎11-12-2020 07:53 PM

I have a couple of cross-town WAN links which currently use an OpenVPN tunnel.

LAN <=> OpenVPN <==== 35ms ====> OpenVPN <=> R600

I get basically full wire speed from this setup (>200Mbps).

I'd like to replace the OpenVPN boxes with an LWAPP tunnel from the R600 to my ZD1100.

I did some testing locally...

LAN <=> ZD1100 <=> R600(Tunnel)

...and I get 39 Mbps. This is fine. I only need maybe 16Mbps.

But when I put the R600 at the remote sites...

LAN <=> ZD1100 <=> NAT <==== 35ms ====> NAT <=> R600(Tunnel)

...I get 7.5 Mbps. 

Is there any setting I can tweak to improve throughput? I have ZD1200s and R610s I can swap in if that would help, but obviously don't want to go through the upgrade pain if the root cause is that LWAPP just doesn't like any latency. I don't want to subscribe to SmartZone - I'd rather just keep the OpenVPN boxes.

0 Kudos
8 REPLIES 8

eizens_putnins
Valued Contributor II
In response to syamantakomer

‎11-15-2020 05:29 AM

Hi,

Also it is  a question what kind of traffic you have -- stated number of 300 Mbps is probably the absolute max, which can be achieved in ideal conditions with optimal (max) packet size. By the way are you sure you use unencrypted tunnel?If you actually use encrypted tunnel, getting 30% of max stated performance is quit normal.

  If you have traffic with short packets, you have a lot of overheads and may be much lower number than with long packets, and efficiency drops again for the same reason, when packets are fragmented. Also -- as much as I understand, you currently have OpenVPN boxes, running encrypted tunnel. This tunnel probably uses different ports -- so make sense to check if there is some firewall or router in between, which  have some rules limiting LWAPP tunnel, but not OpenVPN, or even using different route?

0 Kudos

ms264556
Contributor II

‎11-17-2020 03:31 AM

Thanks for you helpful comments everyone!

Over the weekend, I did a sweep of MTUs from 1500 to 900, testing local performance through the tunnel. Performance increased from ~40 Mpbs at 1500 MTU to ~210 Mbps at 1050 MTU, then started decreasing again.

So I left tunnel MTU at 1050, and went back to the remote site today. Without any further tweaking, I'm now getting 80 Mbps up and down the tunnel.

This is far in excess of what I was expecting/needing, so I'm happy to call it a day.

eizens_putnins
Valued Contributor II
In response to ms264556

‎11-17-2020 04:06 AM

Good. So it was mtu, as it often is... Enjoy!

0 Kudos

syamantakomer
Community Admin
Community Admin
In response to ms264556

‎11-18-2020 05:06 AM

@anthony_rielly glad to hear that performance improved after setting the correct MTU value.


Syamantak Omer
Sr.Staff TSE | CWNA | CCNA | RCWA | RASZA | RICXI
RUCKUS Networks, CommScope!
Follow me on LinkedIn
Copyright © 2024 Khoros, LLC