• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 515
  • Last Modified:

Site to Site VPN True Connection Speed

Dear Experts,

I have a new project where i was ask to create a site to site vpn for offsite backups purpose (we already check online services and decided to go with the vpn choice)

I would like to know what will be my actual speed between the two sites,.and the benefits of choosing between two different types of connections.

On the main office i can have a 10Mbs Fiber or HSD TWC 50x5 and in the offsite location i will only have the 50x5 TWC connection option.

Would i benefit, or take adavantage of the fiber connection 10x10 even though the offsite connection is only 50x5 in other words when I am uploading data to the offsite connection will i see a troughout output of 10Mbs or it is going to be limited to the 5mbs in the 50x5 TWC connection.

The price difference between the Fiber and TWC is justify only if we can upload to the offsite at the 10Mbs throught output.

I thank you in advance for your expert opinion.

Best

WilsonJ


0
WilsonJ
Asked:
WilsonJ
  • 3
  • 3
  • 2
  • +1
3 Solutions
 
blakogreCommented:
For what it's worth: VPNs create a lot of overhead.  Have you considered setting up an SFTP server at the remote site for backups instead?  Secure FTP has less overhead, and my improve your speed if that's an issue.  That's what we've implemented.

Good luck.
0
 
WilsonJAuthor Commented:
Thank you blakogre i will look into that solution. Do you happen to have more info on that, sounds interesting
0
 
blakogreCommented:
There are many solutions out there, some free.  Here's one commercial solution:
http://www.cuteftp.com/gsftps/

You'll also want a client that supports secure FTP.  Filezilla is free and supports SFTP.

SFTP, unlike FTP, encrypts the username/password and traffic -- so much of the same protection you get with a VPN, however, in my experience, it's faster due to less overhead.

You'd set up an SFTP server at one location -- remote, I presume, and with an SFTP client, upload the backup files.  You'll likely want to find a client that can schedule these jobs if you want to automate it.  My experience with free clients in that area is slim, as I didn't find any suitable in my research for one a year or so ago.

Instead of arranging a VPN tunnel between the two, you'd set up FWs appropriate on both sides to allow the SFTP client to talk to the SFTP server.  I'd suggest, also, limiting the IPs that can talk to the SFTP server for an added measure of security.l

So, it's pretty much just like using FTP, but secure instead of sending traffic in clear text.  Let me know if you have any other questions.
0
Will You Be GDPR Compliant by 5/28/2018?

GDPR? That's a regulation for the European Union. But, if you collect data from customers or employees within the EU, then you need to know about GDPR and make sure your organization is compliant by May 2018. Check out our preparation checklist to make sure you're on track today!

 
lrmooreCommented:
To answer the original question, from the remote site with 50/5 connection, that site will be "uploading" to the main office, so the transfer will be limited to max of 5Mb no matter how much bandwidth is available at the main office.
As blakagore pointed out, there is some overhead in the encryption over a VPN tunnel, so throughput will be less than that.
0
 
WilsonJAuthor Commented:
I know that the two sites will transmit data back and forth, and this logic  might just be wishful thinking, but I was just hoping that when the main office with 10/10 will be transferring or uploading to the offsite location with 50/5 the transfer rate will be somewhere closed to the 10's. Since technically the 50/5 is downloading from the 10/10.
0
 
lrmooreCommented:
If the 50/5 site is actually downloading from the 10/10 site, then the potential throughput is better than the 5. I thought it was the other way 'round.
0
 
rfc1180Commented:
VPN overhead is negliable; depending on the encryption used, calculating the precise overhead added to user packets when they are transmitted over an IPsec VPN is complicated, particularly in relation to the overhead added by AH and ESP which can be between 1500 and 1600 bytes, considering the overhead of TCP/IP (40Bytes) this can put you at around 1360 of actual data payload assuming mss original mss is 1460. 5-10 percent of overhead, so you should see roughly around 9 Mbps (Worst case) on the 10/10 for upload, and 4.5Mbps on the 50/5 for upload. So as you can see, there is not much loss of available bandwidth (You also have to take into consideration, of normal network utilization too, so consider that.).

Billy
0
 
blakogreCommented:
For whatever reason: our VPN tunnel to our remote site xfers data about 50% slower than our SFTP.  Try both.  Do what works for you.
0
 
WilsonJAuthor Commented:
Thank you all for your help and time,

I will go with the 10/10 in the main office and the 50/5 at the offsite location, i will also look into both solutions VPN and SFTP and pick the best one.

Best to all

WilsonJ
0

Featured Post

Take Control of Web Hosting For Your Clients

As a web developer or IT admin, successfully managing multiple client accounts can be challenging. In this webinar we will look at the tools provided by Media Temple and Plesk to make managing your clients’ hosting easier.

  • 3
  • 3
  • 2
  • +1
Tackle projects and never again get stuck behind a technical roadblock.
Join Now