this post was submitted on 14 Nov 2023
1 points (100.0% liked)

Homelab

22 readers
1 users here now

Rules

founded 1 year ago
MODERATORS
 

Hello

Today I have this configuration on three sites :

2 proxmox VE server on site 1 and 2 with M720Q i5-8400T, 32 Go RAM with a LXC Wireguard on a specific VLAN (tagged) with this network config

For site 1 : VLAN 10 LAN, VLAN 11 DMZ, VLAN 12 COREVPN
For site 2 : VLAN 50 LAN, VLAN 51 DMZ, VLAN 52 COREVPN
For site 3 : 1 R220 with 32 Go RAM, VLAN 1 LAN, VLAN2 DMZ, VLAN3 COREVPN, VLAN4 VPNMOBILITY with a pfSense Firewall

A site-to-site vpn is up between each sites

I reach around 600 Mbit/s symetric on VPN on each sites, but the 2, 3 first days only, after we have signifiant slow down between link between site 1 and 2 (two LXC)

I already tried to restart wireguard only on LXCs but nothing, I already tried to flush iptables and leave full open, nothing too. The only solution I was found is to planify a reboot each 3 days on LXC only.

We never rebooted and have any issue with pfSense Firewall KVM with mobiles clients VPN (iPhone, windows, etc) and between pfSense and LXC sometimes we have slow down, reboot LXC only solve problem too

Do you think it is better to switch to a KVM Virtual Machine instead of LXC ? Or maybe a bad setting on LXC

Do you think it is better to switch to a KVM Virtual Machine instead of LXC ?

top 2 comments
sorted by: hot top controversial new old
[โ€“] murdaBot@alien.top 1 points 11 months ago (1 children)

Lower your MTU to 1380 and try again.

[โ€“] mixman68@alien.top 1 points 11 months ago

Hello Already tried