Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
asher
Contributor

speed test between ipsec gateway peers

Jump to solution

Hello

 

we have multiple remote sites that all connected with site to site ipsec to central gateway.

all sites are connected with private ISP lines with different speeds.

before we connected the checkpoint clusters on each site we test line speed with 2 laptops and use IPERFv3 to test the speed.

there is any option to check speed with tools like iperf between gateways to central gateway ?

 

there is post that the test is made with wget to URL on External internet,

but here there is no external internet , so the spees can made only from gateways peers.

 

 

 

2 Solutions

Accepted Solutions
HeikoAnkenbrand
Champion
Champion

Use an server and a client.

Client IPERF          <-->             FW Gateway 1         <==== VPN tunnel ====>            FW Gateway 2        <-->         IPERF Server

Server side:

# iperv3 -s > iperv server

Client side:                                

# iperv3 -c <iperv server ip> -n 64                           > iperv client for small tcp packets
# iperv3 -c <iperv server ip> -u -n 64                      > iperv client for small udp packets
# iperv3 -c <iperv server ip> -u -n 1460                  > iperv client for large udp packets

View solution in original post

asher
Contributor

its works but the syntax is little different

http://deice.daug.net/netcat_speed.html

 

View solution in original post

0 Kudos
Reply
5 Replies
HeikoAnkenbrand
Champion
Champion

Hi @asher 

You can test with the IPERF tool from two private networks over the VPN tunnel!

IPERF <-->  FW Gateway 1   <==== VPN tunnel ====>    FW Gateway 2  <--> IPERF

What I find more interesting is what exactly you want to test. In principle, there are several performance metrics:

  • Throughput (Bandwidth)
  • Connection rate
  • Packet rate
  • Concurrent connections
  • Latency

You can read more about performance metrics here:
R80.x - Gateway Performance Metrics 

0 Kudos
Reply
HeikoAnkenbrand
Champion
Champion

Use an server and a client.

Client IPERF          <-->             FW Gateway 1         <==== VPN tunnel ====>            FW Gateway 2        <-->         IPERF Server

Server side:

# iperv3 -s > iperv server

Client side:                                

# iperv3 -c <iperv server ip> -n 64                           > iperv client for small tcp packets
# iperv3 -c <iperv server ip> -u -n 64                      > iperv client for small udp packets
# iperv3 -c <iperv server ip> -u -n 1460                  > iperv client for large udp packets

View solution in original post

asher
Contributor

yes we already test it but we want to test it directly from peers , there is no any GAIA tools for that ?

 

0 Kudos
Reply
Daniel_
Contributor

Inside GAiA you can use nc. Untested(!) it should work like this

peer1
# nc -l listenserver-IPA 1024 >/dev/null

peer2
# dd if=/dev/urandom count=65535 bs=1500 | nc  listenserver-IPA 1024

0 Kudos
Reply
asher
Contributor

its works but the syntax is little different

http://deice.daug.net/netcat_speed.html

 

View solution in original post

0 Kudos
Reply