increasing performance of IPSEC L2L vpn

Posted on 2011-09-12
Last Modified: 2012-06-22
I have a remote site in the UK that is getting slow speeds through our L2L IPSEC VPN. We have a 50 mb/50mb connection here (in NY) and they have a 10mb/8mb connection on their end.

However with testing, the highest connection speeds that I am seeing are about 1.5 mb/s. Are there any settings that I can change to speed things up?

Currently my interfaces have a 1500 MTU. Is there are way to lower VPN traffic to a MSS of 1420, so large packets wont be split into two packets?
Question by:ryan80
  • 3
LVL 12

Author Comment

ID: 36524567
Forgot to mention that it is between 2 ASA 5510's
LVL 16

Expert Comment

ID: 36528318
is all your internet traffic going through 1 site/router ?
LVL 34

Expert Comment

by:Istvan Kalmar
ID: 36528372

It seems there is delay problem, how many is the average ping time between two ASA endpoints?

Best regards,
LVL 12

Accepted Solution

ryan80 earned 0 total points
ID: 36532241

Yes, all the traffic goes through one router


The ping time is 105 on average.
LVL 12

Author Closing Comment

ID: 36597778
no answer

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Radius setup on a Cisco Switch with Server 2012 23 80
Palo Alto Networks: View Tunnel packet counts? 2 27
2012 r2 branch office DNS 2 35
IPSec/L2TP 25 28
Secure VPN Connection terminated locally by the Client.  Reason 442: Failed to enable Virtual Adapter. If you receive this error on Windows 8 or Windows 8.1 while trying to connect with the Cisco VPN Client then the solution is a simple registry f…
OpenVPN is a great open source VPN server that is capable of providing quick and easy VPN access to your network on the cheap.  By default the software is configured to allow open access to your network.  But what if you want to restrict users to on…
After creating this article (, I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…

809 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question