IPSec VPN Site to Site low speed

HPU

Good evening,

what is the expected file transfer speeds between two USG Flex 100 firewalls both without UTM Filters active? Are there any recommended encryption settings to change in order to speed up the transfer rates? Currently I am only able to transfer at 2.5Mbps on a 100/100 fiber connection.

Internet file transfer is according to fiber speed.

Kind regards

Hanspeter Umilietti

mMontana

HPU said:

Currently I am only able to transfer at 2.5Mbps on a 100/100 fiber connection.

Using which file transfer application?

HPU

Using Windows explorer, accessing a windows Server File share...

mMontana

So SMB.

Did you enabled jumbo frames on ethernet for increase transfer speed?

HPU

Thank you for the quick answer,

but where do I have to do that? In the Firewall or the MS Windows OS?

HPU

Dear mMontana,

I adjusted the MSS Adjustment in the VPN conf to 1379 in both firewalls with no effect....

Was that the right configuration adjustment?

Thank you

mMontana

HPU currently i don't know why you're having such issues in file transfers. For that, no suggestion was made for adjusting configuration.

If you don't know if jumbo frames are enabled, the answer is "probably not", because it's an optional setting and it has to be enabled on switches and SMB endpoints like computer, NASes, and so on.

Why did you change MSS Adjustment to 1379?

USG_User

You also should check your LAN speed at both sites. May be there is the bottleneck. Further you could test shortly switching-off the security policy rules at the USG and switching-off any additional installed local A/V scanner on Windows PCs.

On the other hand I take for granted that you've already made a speedtest from both sites (from the affected Windows client computer) to the internet, using e.g. speedtest.net, isn't it?

Zyxel_Kevin

Hi @HPU,
Please kindly find the following command and check the speed agian.

Router(config)# crypto boost-tcp

Kevin