IPSec Tunnel's bandwidth is slower than IPS's circuit

Forum|Forum|10 months ago
July 30, 2025
1 reply
463 views

Hello, has anyone experienced ipsec tunnel slower than the IPS? I have two sites and a Fortigate 400F with 148e switch and 1GB fiber circuit at each site. There's ipsec tunnel between them. Ran iperf through the tunnel and got about 36-40MBs bandwidth in both directions. Ran the same test from wan to wan (without tunnel) got similar results. Internet speed test shows 1GB symmetrical at both sites. There's no traffic shaping on either of the firewalls. All firewall policies are disabled for testing. The ISP says everything is fine nothing is wrong. Some internet sites say the ISP could have some traffic shaping on the circuits, not sure if that's true. Any troubling suggestions are greatly appreciated.

FortiGate

AEK

SuperUser

Hi JBR

First think I'd try is to connect PC to PC bypassing both firewalls to see the real speed between the two sites.

AEK

jbr7195Author

New Member

Thank you AEK, I'll try that the first chance I get. If the results are unsatisfactory, do you recommend another test that could be done to confirm the ISP is packet shaping the data?

Thanks

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded