[SLL] WRT54GL --> wireless to wired repeater?
Glenn Stone
technoshaman at liawol.org
Wed Dec 24 21:01:47 PST 2008
On Wed, Dec 24, 2008 at 11:57:06PM -0500, Jarod Wilson wrote:
>I'm not particularly familiar with OpenVPN, specifically, what sort of
>crypto it does, but one definite down side to using a WRT54G{,L,S} as a
>VPN appliance: they SUCK for ipsec throughput. For grins, I set up my
>own WRT54GS with openwrt, and tried connecting it to one of the Cisco
>VPN concentrators at work. Got it connected just fine with both vpnc and
>openswan, passing traffic from boxes behind it and all, but the
>throughput was *miserable*.
>The main problem is that the lowly cpu simply can't keep up with the
>crypto ops. If I'm remembering correctly, vpnc traffic maxed out at
>400kbps (yes, kilobits, not kilobytes), due to the processor being
>pegged. Openswan fared better (in-kernel crypto vs. pure userspace
>implementation), maxing out a 1.2Mbps (3x vpnc). With a
>non-cpu-encumbered setup I can routinely max out my incoming bandwidth
>(20Mbps).
*nods* no, I intend to do the encryption at the ends of the connection, not
the poor widdle router, what doesn't even have enough of a CPU to have a
fan... all's I want the GL to do is pass bits. :)
Thanks for the tidbit, though. Somebody else might suggest this... and I'll
know *why* it's a Bad Idea. :)
-- Glenn
More information about the linux-list
mailing list