Greetings,
I am just finishing the implementation of a site to site link that is using city wide fiber connections recently laid out by an ISP. I contracted to have an ASA 5505 installed in each office to provide a secure, encrypted VPN tunnel using the 100Mb connections.
The router engineer was able to get the fiber VLAN and VPN connection working just fine. He also encrypted the tunnel between the 2 devices. The connection works, but the performance is plain dreadful. Throughput and transfer speeds are closer to the old 1Mb T1 line.
He suggested removal of the encryption piece and then monitor performance. Sure enough, the performance jumped up to speeds appropriate for the fiber bandwidth.
Is that huge hit in performance and throughput degradation normal when using an ASA encrypted VPN tunnel? I understand that using any type of encryption would affect performance, but I never imagined it could have that big of impact. Is it possible the engineer does not have everything configured properly?
Thanks
Jeff
I am just finishing the implementation of a site to site link that is using city wide fiber connections recently laid out by an ISP. I contracted to have an ASA 5505 installed in each office to provide a secure, encrypted VPN tunnel using the 100Mb connections.
The router engineer was able to get the fiber VLAN and VPN connection working just fine. He also encrypted the tunnel between the 2 devices. The connection works, but the performance is plain dreadful. Throughput and transfer speeds are closer to the old 1Mb T1 line.
He suggested removal of the encryption piece and then monitor performance. Sure enough, the performance jumped up to speeds appropriate for the fiber bandwidth.
Is that huge hit in performance and throughput degradation normal when using an ASA encrypted VPN tunnel? I understand that using any type of encryption would affect performance, but I never imagined it could have that big of impact. Is it possible the engineer does not have everything configured properly?
Thanks
Jeff