|
|
jessica six wrote:
I'm curious about any known issues regarding running
OpenVPN (ethernet bridging) through ssh tunnels.
I've seen some info indicating that it could cause
problems:
http://openvpn.net/papers/BLUG-talk/12.html
Has anyone had problems or seen situations where the
tunnel is consuming all available bandwidth by retry
floods?
First -- there's no reason to tunnel through SSH, since OpenVPN will use
OpenSSL for a crypto layer in TCP mode. Not that you couldn't; I'm just
not sure what the point is. (If there are firewalling issues or such,
then that would make sense: Just turn off the crypto on one layer or
another so that you're not taking more of a hit than you need to).
Second -- yes, I've seen TCP-based VPNs bog down. It doesn't always
happen, and there are folks who report that they've used them for a
substantial period of time without issue; however, it /does/ indeed happen.
Third -- if you're bridging, you're going to be using more bandwidth
than if you were routing (particularly if the networks you're bridging
together have a substantial amount of broadcast traffic), and thus are
more likely to run into this kind of issue than you would be otherwise.
______________________
OpenVPN mailing lists
https://lists.sourceforge.net/lists/listinfo/openvpn-users
|