Everything is slow while connected to the SSL VPN. File transfers regardless of their size are slow, browsing directories, accessing applications, iPerf tests are slow...
Per the 300D datasheet the SSL-VPN Throughput is 350Mbps. I am getting nowhere near that. I performed a test from my house where my internet speed is 100Mbps down/ 20Mbps up.
The SSL VPN speed results are as follows: 16.1Mbps write, 33.8Mbps read. I then connected to the same Fortigate 300D through a IPSec VPN and got these results: 22.4Mbps write, 90.4Mbps read which basically is the max speed of my home internet connection. I understand that the SSL VPN will have slightly more overhead but this is absurd.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Occasionally, SSL VPN performance can be slower than expected. Since the SSL VPN encapsulates a TCP connection within another TCP connection, this can cause interference between timeouts, and other issues. The following external web site provides more information: http://sites.inka.de/bigred/devel/tcp-tcp.html In FortiOS 5.4, it is possible to use DTLS to address this problem. DTLS has the same security as SSL, but uses UDP instead of TCP. This can improve performance drastically.Solution
To enable DTLS on SSL VPN, run the following commands:config vpn ssl settings set dtls-tunnel enable/disable end
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1705 | |
1093 | |
752 | |
446 | |
230 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.