I am experiencing some strange behaviour: I had a 826 router on an ADSL circuit running Internet access and VPN. The download speed of unencrypted Internet traffic is as expected. Over the time the crypto performance of the 826 did not meet my requirements anymore, so I replaced it with an 1802 to gain crypto performance.
I configured both routers basically the same and it works.
But: The performance of the 1802 downloading even clear text traffic is very bad. I get about 1Mbit/s when using the 826 but never more than 100Kbit/s with the 1802.
I already replaced the 1802 with a different model (so it is not a HW problem) and there are no obvious errors at the ATM interface or in the log.
This is the ATM part of the config, same on both:
no ip address
ip tcp adjust-mss 1452
no atm ilmi-keepalive
dsl operating-mode auto
hold-queue 224 in
interface ATM0.1 point-to-point
ip address X.X.X.X 255.255.255.0
ip access-group 101 in
ip access-group 102 out
ip nat outside
ip inspect internet-out out
crypto map vpn
The differences in the rest of the config are only device dependent.
I created the 1802 config out of the 826. There are some differences e.g. ospf (which the 826 did not support). As well the original 826 just had one tunnel and for the 1802 I added two more tunnels for debugging purposes.
Find both complete configs attached.
Regarding performance measurement I first copied a large file back and forth over the VPN tunnel. I expected the 1802 beeing a lot faster, but it was even slower than the 826. After that I configured NAT and tried direct downloads from the internet and monitored the ATM interface. It is very obvious that the 1802 interface does not see more than about 150kbit/s. The 826 gets 1,5Mbit.
Before that I issued a call with the ISP (Telefonica) and they came on site with there own router (an 800 as well) and tested performance without any problems.
Btw. the IOS on the 1802 is
C180X Software (C180X-ADVIPSERVICESK9-M), Version 12.3(8)YI
the 826 is
C820 Software (C820-K9OSY6-M), Version 12.2(4)YA3
I searched already for bugs at CCO, but this is very confusing.
Hi everyone, I would like to thank you in advance for any help you can provide a newcomer like myself!
Im studying the 100-105 book by Odom and am currently on the topic of Port security. I purchased a used 2960 and I'm trying to follow a...
While deploying a number of 18xx/2802/3802 model access points (APs), which run AP-COS as their operating platform. It can be observed on some occasions that while many of their access points were able to join the fabric WLC withou...
I am going to design and build an LAN network under a tunnel underground with long distance between the switches.
I will have 2 Catalyst switches and 8 Industrial IE3000, and they will be connected with fiber.
For now I am planning on use Layer-2 s...