Solved

Max number of users on a VPN

Posted on 2015-01-08
6
133 Views
Last Modified: 2015-01-08
Hello Experts - I have a Fortinet 90d firewall acting as a VPN endpoint on a 10mb MPLS circuit.  Before we wind up with a snow day I'd like to try and determine how many users I can comfortably get on the VPN.  Could anyone provide an estimate?
0
Comment
Question by:danbrown_
  • 2
  • 2
  • 2
6 Comments
 
LVL 50

Expert Comment

by:Don Johnston
ID: 40538630
The spec sheet says 1,000 client to Gateway IPSec tunnels and 200 Concurrent SSL-VPN Users  (Recommended Maximum).

So I'm going to say 200.

But depending on how fast of a link you have, it be unusable way before you hit 200.
0
 
LVL 11

Expert Comment

by:rharland2009
ID: 40538631
According to Fortigate's own literature, the recommended max is 200.

http://www.fortinet.com/sites/default/files/productdatasheets/FortiGate-90D.pdf
0
 

Author Comment

by:danbrown_
ID: 40538637
I understand the theoretical max, I'm looking for the practical max.  I can assure everyone that there is no way 200 concurrent users are getting on the VPN with a 10mb circuit.
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 
LVL 11

Expert Comment

by:rharland2009
ID: 40538658
Thanks for the assurance. I think we're all in agreement.
IPSEC or SSL?
0
 
LVL 50

Accepted Solution

by:
Don Johnston earned 500 total points
ID: 40538659
There are really too many variables to accurately identify how many functional connections you can have.

What I would do is get a VPN session established with the typical usage for the remote clients (whatever that is).  Then monitor the amount of bandwith that connection is using.  With that factored against the connection speed, you should be able to identify an optimal and max number of connections (assuming no other traffic).
0
 

Author Comment

by:danbrown_
ID: 40538672
Its SSL.  Most users will be coming in over the VPN and using remote desktop to connect to their machines here.  There are also a few laptop users who will work directly from the file shares.  

I'll try adding up average use on one connection and go from there, thanks all.
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Cisco switch replacement sizing based on CPU, PPS, memory utilization, etc. 3 37
VIRTUAL NETWORKING 3 64
ASA configuration 2 30
AnyConnect VPN - No LAN access 1 35
Introduction This article explores the design of a cache system that can improve the performance of a web site or web application.  The assumption is that the web site has many more “read” operations than “write” operations (this is commonly the ca…
Creating an OSPF network that automatically (dynamically) reroutes network traffic over other connections to prevent network downtime.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

831 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question