I'm running an OpenVPN server on my old Dlink router DIR-825. It's very old and at 100 % cpu load it delivers up and down vpn speeds of around 13 Mbps.
That's no longer enough for me as i would like to be able use 100+ Mbps bandwidth while connected to my vpn. So i'm trying to figure out which hardware my new OpenVPN server should run on.
I don't need a lot of fancy stuff or strong encryption. I just need speed as it's for pulling 1-4 streams from a hdhomerun.
Would the NanoPi R2S do the job or would i need something bigger?
definitely switch to wireguard. I doubt that flashing openwrt remotely would be particularly safe. Wireguard on a RPi works well for me. I don't have benchmarks but I'd be shocked if it weren't 100Mbps, and it wouldn't surprise me at all if it could hit 500.
My current installed build doesn't support WG - only newer builds support WG, but can't flash the newer builds as the build is 14 MB and the linux partition only is ~8MB ...or it could also be that i'm a rookie to all this
root@skovbrynet:~# cd /tmp
root@skovbrynet:/tmp# wget http://download1.dd-wrt.com/dd-wrtv2/downloads/betas/2020/11-24-2020-r44863/dlink-dir825-c1/dir825c1-firmware.bin
Connecting to download1.dd-wrt.com (185.84.6.100:80)
saving to 'dir825c1-firmware.bin'
dir825c1-firmware.bi 100% |********************************| 13.9M 0:00:00 ETA
'dir825c1-firmware.bin' saved
root@skovbrynet:/tmp# write dir825c1-firmware.bin linux &
root@skovbrynet:/tmp# Image too big for partition: linux
linux: Invalid argument
^C
root@skovbrynet:/tmp# cat /proc/mtd
dev: size erasesize name
mtd0: 00050000 00010000 "RedBoot"
mtd1: 007b0000 00010000 "linux"
mtd2: 00525000 00010000 "rootfs"
mtd3: 00170000 00010000 "ddwrt"
mtd4: 00010000 00010000 "nvram"
mtd5: 00010000 00010000 "FIS directory"
mtd6: 00010000 00010000 "board_config"
mtd7: 00800000 00010000 "fullflash"
As a test I enabled the wireguard vpn on my phone and got basically similar speed test results with wireguard as without... limiting factor was the wifi signal, data rates around 100-120Mbps. So an RPi4 can do at least 120Mbps wireguard.
If you still wanted to use OpenVPN for whatever reason (or anything else that uses AES) you could've at least been able to use crypto hardware acceleration on Rockchip SoCs which the RPi4 lacks.