Softether performance on virtual server

Post your questions about SoftEther VPN software here. Please answer questions if you can afford.
Post Reply
ivica.glavocic
Posts: 5
Joined: Thu Dec 04, 2014 7:08 am

Softether performance on virtual server

Post by ivica.glavocic » Wed Jan 10, 2018 2:46 pm

Softether installed on old P4 physical CentOS6 x64 machine with 2 interfaces (LAN + WAN) works perfectly on 40/10 Mbps link. SSTP throughput is download 40 Mbps, upload 10 Mbps.

Same Softhether server installed on same OS and same link as XEN virtual machine has limited throughput of 8 Mbps in download and same for upload.

Softether is bridged to eth0 interface. Only difference is log entry on virtualized server:
"SID-LOCALBRIDGE-1": The physical Ethernet interface "eth0" has an MTU value set to 1514. It is necessary to send and receive an Ethernet packet which has 1835 bytes. However, changing the MTU to 1835 failed. This physical Ethernet interface or device driver might be unable to process an Ethernet packet which has more 1,514 bytes (payload size: 1,500 bytes). In such case, the larger tagged-VLAN packets than 1,514 bytes cannot be transmitted. You should replace the current physical Ethernet adapter to another which supports Jumbo Frames. You can also try to update the device driver. Another possible method is to enable Jumbo Frames on the operating system or device driver settings.

Interfaces on physical machine are:
eth0: Intel(R) PRO/1000 Network Connection
eth1: VIA Rhine II

Interfaces on virtual machine are (both eth0 and eth1)
xen_netfront: Initialising Xen virtual ethernet driver

What is the problem with throughput on virtual Softether? How can I make virtualized server to be as fast as physical machine?

Thanks, regards
Ivica

ivica.glavocic
Posts: 5
Joined: Thu Dec 04, 2014 7:08 am

Re: Softether performance on virtual server

Post by ivica.glavocic » Fri Jan 12, 2018 4:30 pm

No replies so I will reply to myself. All performance issues are solved when I bridged Softether with tap interface, and then bridged tap with eth0 using standard Linux br0 bridge. I have full bandwidth now and also I can access Softether itself when connected with VPN (SSTP, OpenVPN, L2TP/IPSEC) from Internet. Solution for CentOS is easy, no additional scripts to enable bridge after boot, just usual config in /etc/sysconfig/network-scripts/ifcfg-*.
I am suprised that this is not official solution from Softether team on Linux platform.

desperados
Posts: 34
Joined: Tue May 20, 2014 10:15 am

Re: Softether performance on virtual server

Post by desperados » Tue Jan 01, 2019 9:29 am

hi
how you create tap-eth0 bridge?
thanks

sky59
Posts: 124
Joined: Tue Sep 11, 2018 5:58 pm

Re: Softether performance on virtual server

Post by sky59 » Tue Jan 01, 2019 12:01 pm

Also interested, any idea why it improves performance?

cmd wh0ami
Posts: 125
Joined: Sun Jul 16, 2017 6:58 pm

Re: Softether performance on virtual server

Post by cmd wh0ami » Fri Jan 04, 2019 2:07 am

I run Softether server on OpenVZ VPS's... I have 15 of them...

I get 30mbps download and 10mbps upload on average.

I bridge to tap_interface

In Softether server manager I:
stop softether from listening on all ports except 443
disable L2TP/IPsec
disable Azure
disable MS-SSTP
disable SecureNAT
disable the built in DHCP server and I use dnsmasq instead
I use AES 256 / SHA 256 encryption (which should make softether slower than using AES 128 / SHA)

In Softether server config I:
disable the dynamic dns server
disable udp acceleration

In Softether client I:
disable Nat-T
set client to make 16 TCP connections
enable half duplex mode
disable udp acceleration (which is suppose to make softether faster when enabled)

And I only use the RTM versions of Softether... Never Beta
VPN Discord invite: https://discord.gg/QByKXA9

sky59
Posts: 124
Joined: Tue Sep 11, 2018 5:58 pm

Re: Softether performance on virtual server

Post by sky59 » Fri Jan 04, 2019 4:00 am

@ wh0ami,

Any idea why using tap interface in-between should improve performance?

Could it be /if it is even true/ than SE tap device is optimal for SE while eth0/wlan0 must be always somehow re-identified?
Every time it is used by SE?


But linux is then more compatible and uses tap device also more efficient?

May be on real device /not VM/ it will not improve anything

desperados
Posts: 34
Joined: Tue May 20, 2014 10:15 am

Re: Softether performance on virtual server

Post by desperados » Fri Jan 04, 2019 8:36 am

my performance goes down after upgrading xen from 6.5 to 7.6
the problem is mainly rdp protocol, ping http and ssh seem ok
i really dont understand what's wrong

sky59
Posts: 124
Joined: Tue Sep 11, 2018 5:58 pm

Re: Softether performance on virtual server

Post by sky59 » Fri Jan 04, 2019 10:04 am

This is to say the performance has nothing to do with 'tap' device?

Or it does have = SE hub does not recognize eth0 directly so good so tap device in between can help?

I think you should try it

desperados
Posts: 34
Joined: Tue May 20, 2014 10:15 am

Re: Softether performance on virtual server

Post by desperados » Fri Jan 04, 2019 2:14 pm

i've tried yesterday to create bridge between eth0 and tap0 with no success, ping over 2000ms

thisjun
Posts: 2369
Joined: Mon Feb 24, 2014 11:03 am

Re: Softether performance on virtual server

Post by thisjun » Mon Feb 04, 2019 7:00 am

I think the loop is happed.
What configure did you do?

Post Reply