Then why do you need a VPN over a point-to-point dedicated/private circuit?
That wasn't my original question and might be a good discussion in another thread.
I've read other threads on the subject and done some diagnostics, and it seems the 100D is the bottleneck. I thank you for your answers and we're going to have internal discussions how to proceed from this. The cheapest solutions is probably to add another 60E :)
We are experiencing similar issues with a 100E connecting to ISP @ 400MBs broadband back to HQ-a 1500D with 500MPS fiber circuit. We have multiple tunnels going back to HQ and all seem to be slower than their speeds would dictate, 10-15mbps throughput on IPSEC tunnel, and a 400 MB broadband internet connection. Question I have is, if all tunnels terminate on HQ, under same IP, would this cause the impact? Or should all of our B2B's be on different IP's within our assigned public subnet? Why are they all slow?
@james.heyworth; I would open a new thread with this question. Same issue, different boxes.
I would suspect you have asymmetric bandwidth A.K.A. cable modem/Spectrum Internet. FiOS is symmetrical. You subscribe to 100 Mbps, you get that both ways. Spectrum's 300 MB offering gives you 300 down and (I think) only about 10-20 Mbps up. If these lines are leased, this probably will not apply. You didn't say.
1. can both sides see the near max (400Mbps down/? bps up, 500Mbps down/? bps up) bandwidth with local speed test sites?
2. Is the bandwidth between two location's public/interface IPs outside the tunnel closer to the smallest number of down/up both sides? (to test it, needs an iPerf server or other test tools on both ends)
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.