[SLL] WRT54GL --> wireless to wired repeater?
Jarod Wilson
jarod at wilsonet.com
Wed Dec 24 20:57:06 PST 2008
On Wed, 2008-12-24 at 20:35 -0800, Derek Simkowiak wrote:
> I 2nd using DD-WRT. I'm using it to sell pre-configured OpenVPN
> appliances to clients.
>
> I take WRT54GL hardware, put the OpenVPN version of DD-WRT, and
> suddenly you have a VPN appliance that includes full Linux firewalling
> capabilities.
Just want to add a data point here...
I'm not particularly familiar with OpenVPN, specifically, what sort of
crypto it does, but one definite down side to using a WRT54G{,L,S} as a
VPN appliance: they SUCK for ipsec throughput. For grins, I set up my
own WRT54GS with openwrt, and tried connecting it to one of the Cisco
VPN concentrators at work. Got it connected just fine with both vpnc and
openswan, passing traffic from boxes behind it and all, but the
throughput was *miserable*.
The main problem is that the lowly cpu simply can't keep up with the
crypto ops. If I'm remembering correctly, vpnc traffic maxed out at
400kbps (yes, kilobits, not kilobytes), due to the processor being
pegged. Openswan fared better (in-kernel crypto vs. pure userspace
implementation), maxing out a 1.2Mbps (3x vpnc). With a
non-cpu-encumbered setup I can routinely max out my incoming bandwidth
(20Mbps).
--jarod
More information about the linux-list
mailing list