The content of this topic has been archived on 4 May 2018. There are no obvious gaps in this topic, but there may still be some posts missing at the end.
Hello,
I'm looking for a wireless router, that allows at least 20Mbit/s VPN throughput. The VPN connections should be of type 'L2TP over IPsec' with AES256 encryption. Is there any OpenWrt supported router that can reach this throughput?
Best Regards,
Jörg
Hello,
AR7161 based devices should be quite fast although encrpytion is not supported by hardware acceleration. A small (not very scientific) benchmark can be found at http://wiki.openwrt.org/doc/howto/vpn.i … erformance
Best regards.
Markus
Hello Markus,
thank you very much for posting this benchmark. I didn't expected that the Atheros AR7161 is that fast, without hardware acceleration.
Currently I use a Draytek Vigor 2920n which has hardware acceleration (Infineon Danube Chipset), but it reaches just 15MBits/s. But my biggest problem with that router is the extremely unstable firmware - it reboots several times a day.
Best Regards,
Jörg
Hi,
remember that IPsec will add additional overhead for consistency (SHA1). Although I have no IPsec setup to saturate my 16M line i think the Atheros should be capable to provide the full bandwidth. Just for comparison: An old Lancom DSL-I/1611 66 MHz Power Quicc gives 2 Mbit software AES128+MD5 throughput.
Regards,
Markus
(Last edited by birnenschnitzel on 6 Dec 2011, 21:28)
Hello Markus,
one more question. I'm now thinking about buying a Netgear WNDR3700v2 or WNDR3800. If I also use WLAN with AES256 encryption, is that encryption calculated by the same processor or does the WLAN chip has it's own encryption unit?
Best Regards,
Jörg
the encryption of wlan-traffic (WEP, WPA, WPA2) is done by the wifi-card/-chipset. Wlan-traffic will have no or only minimal influence on the cpu,so don't worry about that.
Hello,
I decided to buy a WNDR 3800 an will report which throughput I will reach with my real life VPN.
Thank you very much,
Jörg
Just a little update for you,
with the SHA1 patch from http://wiki.openwrt.org/doc/howto/vpn.i … ha1.tuning you can expect 23 MBit/sec for AES256/SHA1 based tunnels. From my tests this should be a close to real life numbers
Markus
Netgear WNDR3700v1, AR7161@680MHz, 64MB RAM, 8MB Flash, GbE, USBx1, Dual-radio, Dual-band
Netgear WNDR3700v2, AR7161@680MHz, 64MB RAM, 16MB Flash, GbE, USBx1, Dual-radio, Dual-band
Netgear WNDR3800v1, AR7161@680MHz, 128MB RAM, 16MB Flash, GbE, USBx1, Dual-radio, Dual-band
D-Link DIR-825-B1/B2, AR7161@680MHz, 64MB RAM, 8MB Flash, GbE, USBx1, Dual-radio, Dual-band
Buffalo WZR-HP-AG300H, AR7161@680MHz, 128MB RAM, 32MB Flash, GbE, USBx1, Dual-radio, Dual-band, WiFi switch
Buffalo WZR-HP-G300NH, AR9132@400MHz, 64MB RAM, 32MB Flash, GbE, USBx1, WiFi switch
Buffalo WZR-HP-G300NH2, AR7242@400MHz, 64MB RAM, 32MB Flash, GbE, USBx1, WiFi switch
Buffalo WZR-HP-G450H, AR7242@400MHz, 64MB RAM, 32MB Flash, GbE, USBx1, 3T3R, WiFi switch
TP-Link TL-WR1043ND, AR9132@400MHz, 32MB RAM, 8MB Flash, GbE, USBx1
Linksys WRT400n, AR7161@680MHz, 32MB RAM, 8MB Flash, Dual-radio, Dual-band
Ubiquiti RouterStation, AR7161@680MHz, 64MB RAM, 16MB Flash, USBx1
Ubiquiti RouterStation Pro, AR7161@680MHz, 128MB RAM, 16MB Flash, GbE, USBx1
Mikrotik RB450G, AR7161@680MHz, 256MB RAM, 512MB Flash, GbE (WIP)
Mikrotik RB750G, AR7161@680MHz, 32MB RAM, 64MB Flash, GbE (?)
Mikrotik RB750GL, AR7242@400MHz, 64MB RAM, 64MB Flash, GbE (?)
Seagate DockStar, ARM9@1.2GHz, 128MB RAM, 256MB Flash, GbE, USBx4
Linksys WRT610Nv2, BCM4718@480MHz, 64MB RAM, 8MB Flash, GbE, USBx1, Dual-radio, Dual-band (WIP)
ASUS RT-N16, BCM4718@480Mhz, 128MB RAM, 32MB Flash, GbE, USBx2 (WIP)
Is there any way to compare the computing power of the MIPS/ARM CPUs? http://wiki.openwrt.org/doc/hardware/cpu
How do the diverse CPUs compare regarding to high IPsec throughput or simple routing or whatever with one another?
I think all the above SoC incorporate a 24Kc CPU. How about the smaller 4Kc or 24KE or 34K?
Also, how big is the performance difference between hard IP core and soft IP cores?
An example: http://dev.gentoo.org/~armin76/arm/nwbuildtimes.xml
While A and B are different microarchitectures, I think C and D are both Soft IP Cores of the same microarchitecture. One by nVidia the other by Texas Instruments.
The discussion might have continued from here.