Hi All,
I’m hoping someone else has already solved this issue, or at least know what could be wrong. I’ve recently created a VPN client endpoint in AWS, and am connecting to it using OpenVPN Connect v3 on MacOS. The connection is nice and stable, and for doing things like server admin, looking at dashboards and the like which require little bandwidth its great The trouble I’m having is that the connection rate doesn’t seem to want to get above 200-300kb/s. Things like file uploads via ssh / scp just don’t want to play ball. I’ve tried this from a few different machines on numerous networks, ie. Gigabit business line, home fibre broadband, 4g network – the performance is the currently about the same regardless of the available bandwidth which is bizarre. As a test, if I try to crudely force some traffic through the tunnel eg. ssh user@aws-service-name 'dd if=/dev/zero bs=1GB count=3 2>/dev/null' | dd of=/dev/null status=progress I see a spike in the connection stats graph in OpenVPN Connect, and the process bails after a couple of seconds at best. The tunnel stays up. Eg of the output: bash: line 1: 388 Killed dd if=/dev/zero bs=1GB count=3 2> /dev/null 6080+0 records in 6080+0 records out I have tried recreating the VPN client in AWS to use UDP rather than TCP, same thing. Something I have considered is that the certs I’ve used are using quite strong hashing for the keys, could this be causing me issues? I’m reluctant to create new certs but am considering this as the next thing to try as part of a process of elimination approach. My client settings look like this: client dev tun proto udp remote vpn.cvpn-endpoint-blah.prod.clientvpn.eu-west-2.amazonaws.com 1194 remote-random-hostname resolv-retry infinite nobind remote-cert-tls server cipher AES-256-GCM verb 3 <ca> -----BEGIN CERTIFICATE----- … -----END CERTIFICATE----- </ca> <cert> -----BEGIN CERTIFICATE----- … -----END CERTIFICATE----- </cert> <key> -----BEGIN RSA PRIVATE KEY----- … -----END RSA PRIVATE KEY----- </key> reneg-sec 0 Any help / suggestions would be greatly appreciated. Thanks
_______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
