Slow BOVPN between fireboxes, watchguard

Posted on 2009-05-18
Medium Priority
Last Modified: 2013-11-16
Hi -

I've recently set up a BOVPN between an Watchguard Firebox X1250e (Site A) and X550e (Site B). Performance between the two sites is very poor now. This is at University, site A has a 100mb connection, site B has a 10mb connection. FTP'ing 100mb dummy file from Site A to Site B runs at 100kb/s which I think is way too slow.

When I do a speed test to the internet from Site B (using DSL reports) I get about 250kb/s for up/down. Site A does 7500kb/s down 1000kb/s up.

Does anyone have ideas for ways to speed up the connection?
Question by:futureman0
  • 2
LVL 32

Expert Comment

ID: 24414494
Slowest speed among devices would determine the overall transfer speed on the tunnel; as you get 250 kbps @ site B; getting 100kbps using VPN, i would say, is a good speed.

When you configure VPN, you configure encryption and this slows down things, higher the encryption-bit lower the speed. With lower strength cipher, the speed would be better, but the security would be less.

Thank you.

Accepted Solution

futureman0 earned 0 total points
ID: 24414711

Well it turns out it was a pretty quick fix. The firebox at Site B needed to have 10mb full duplex set manually on the external interface. Once the change was made, the massive amount of packet loss ended and traffic from Site B to A increased from 100kb/s to 8.5mbits/s :)
LVL 32

Expert Comment

ID: 24420483
Good to know that problem is solved; thank you for the update! :)

Featured Post

Managing Security Policy in a Changing Environment

The enterprise network environment is evolving rapidly as companies extend their physical data centers to embrace cloud computing and software-defined networking. This new reality means that the challenge of managing the security policy is much more dynamic and complex.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Like many others, when I created a Windows 2008 RRAS VPN server, I connected via PPTP, and still do, but there are problems that can arise from solely using PPTP.  One particular problem was that the CFO of the company used a Virgin Broadband Wirele…
For a while, I have wanted to connect my HTC Incredible to my corporate network to take advantage of the phone's powerful capabilities. I searched online and came up with varied answers from "it won't work" to super complicated statements that I did…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…
Suggested Courses

571 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question