Jump to content
Not connected, Your IP: 3.145.85.74

framura

Members2
  • Content Count

    11
  • Joined

    ...
  • Last visited

    ...

Everything posted by framura

  1. Hi, I just configured two openvpn connections with AES-256-GCM (with CH server and NL server, I haven't found any server in UK with openvpn 2.4). Now I will try some tests (speed performance and my router CPU consumption).
  2. Thanks, I was hoping in a better (global) search. Anyway, I use my router with three different openvpn connections and I am modifying each of them to switch from AES-256-CBC to AES-256-GCM. I noted that only few servers have openvpn 2.4 and, for example, in UK, there isn't no one. I don't expect to get a speed increase (maybe just a little) but a lower CPU consumption.
  3. Hi, yesterday I upgraded my router (I use opnsense, a pfsense's fork) to openvpn 2.4.3 and I would like to try to use AES-256-GCM. I think I must to connect to a AirVPN's server with openvpn 2.4.x: how can I found which servers have 2.4.x version? TIA
  4. I had the issue with squid, it would always leak no matter what i tried on the same instance, i got around the problem by installing win server 2012 on the machine, then creating 2 X Hyper-V machines one for the VPN using this tutorial and the 2nd handles the DHCP and squid, the author himself said on the old thread of this tutorial that getting both VPN and squid to work together does not work. Thanks for your reply Mufasa, I adopted a similar solution (I used a linux virtual machine with squid proxy) but it seems very strange not being able to run squid proxy on pfsense/opnsense on the same machine: I tried with some firewall rules (both on LAN side and floating rule side) without success. I will try again (I do not give up).
  5. Hi, great guide: I followed it with my opnsense (pfsense's fork) box and all works very well. I would like also to use a forward proxy (squid) on my opnsense box and force it to use vpn connections but until now I dont'be able to get (squid uses always default gateway). I would like to know if you have any suggestions on this argument. Thanks in advance
  6. Hi, I am using from 6 months A1SRi-2758F without any problems. I use OPNSense (PFsense's fork) inside a VMWare virtual Machine (ESXI 6) and it works very good: I have a 500mbit connection and I get line's saturation without VPN (30% CPU of 6 cores) or 300Mbps with VPN (3 simultaneous connections).
  7. Wrong. Kernel and User space context switching takes nano-seconds, this is not a significant performance gain if at all. Regarding the performance gain if multi-core is implemented, I haven't yet seen a benchmark of SoftEther on both sides vs OpenVPN on both sides using the same link. Me neither: I would to try these three case studies (I will use a dedicated server): 1) OpenVPN Server - OpenVPN client 2) Softether Server - Softether Client 3) Softether server - OpenVPN client What do you think? P.S.: another interesting VPN project, www.wireguard.io (not yet ready)
  8. Hi, Resume this (old) thread, adding some considerations. From my point of view, OpenVPN protocol (or better actual implementation) suffers of two limits: 1) Time spent to switch between kernel and user space 2) Mono thread These two problems make it unsuitable to support high performance connections: with Softether I think, or better I hope, these two limits should be eliminated: next week I will create a Softether VPN Server and I will try it with Softether client (protocol SSL-VPN), trying to compare my openvpn connection with SoftEther connection. What do you think?
  9. Hi, I have a problem with (remote) port forwarding. I use nl.vpn.airdns.org as server (to get a different server on each connection, hopefully server with less users and with more bandwidth available. But in this case pfsense get as public IP not the real IP public address but always -1 on the last octet: for example if nl.vpn.airdns.org = 213.152.161.19 the real IP address is 213.152.161.20 In this case port forwarding doesn't works: what do you think? TIA
  10. Thanks Free_Norway, I will try with as you suggested. Before that, I need another info: it's possible to configure a "hole" in VPN setup? With this guide every hosts in LAN net (in my case 192.168.2.0) will be routed to VPN but I need that some specific hosts in this subnet can to use directly WAN and not VPN. Thanks in advance
  11. Hi, thanks for your guide: I will use it for my opnsense (pfsense's fork) setup. Just a question: how to choose dynamically the server to connect to? I think to use NL servers but how can I choose the best NL server each time (for example the server with more bandwidth available)? Thanks in advance
×
×
  • Create New...