[Swan] IPSec throughput : Comparison of plain firewall with IPSec with crypto=null
Elison Niven
elison.niven at cyberoam.com
Mon Jul 15 16:06:50 EEST 2013
Hi,
I did some IPSec throughput measurement tests with crypto=null to
calculate the overhead using NETKEY compared to normal routing.
Hardware: 3 GHz Quad core Intel CPU with 4 GB RAM.
OS : Fedora 16 with Linux Kernel 3.6.11
Number of Tunnels = 2
Throughput with simple routing (No IPSec) > 10 Gbps
IPSec Throughput with Phase 2 encryption algorithm = null < 5 Gbps
Is this normal? I was expecting it to be around 8-9 Gbps.
--
Best Regards,
Elison Niven
More information about the Swan
mailing list